Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3696E5F/3DA3D320189711ED8C936BD2F1222468/854B5332695511EEBE8EB37E4AD9E6FC.roa
File: 854B5332695511EEBE8EB37E4AD9E6FC.roa (raw, json)
Hash identifier: qMpIZlL1JG7Cxt6AalljPSNuG/WpcR3cp/px8PtSZDw=
Subject key identifier: 90:12:D9:12:05:0B:65:76:BB:F9:E6:14:C5:76:2F:57:4E:0D:CF:BE
Certificate issuer: /CN=F3696E5FAF/serialNumber=5375CF4CA1643B08C341BDA79D8BE105BDC3C48B
Certificate serial: 01ED
Authority key identifier: 53:75:CF:4C:A1:64:3B:08:C3:41:BD:A7:9D:8B:E1:05:BD:C3:C4:8B
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/U3XPTKFkOwjDQb2nnYvhBb3DxIs.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3696E5F/3DA3D320189711ED8C936BD2F1222468/854B5332695511EEBE8EB37E4AD9E6FC.roa
Signing time: Thu 12 Oct 2023 23:17:33 +0000
ROA not before: Fri 13 Oct 2023 23:17:29 +0000
ROA not after: Sun 13 Oct 2030 23:17:29 +0000
asID: 25818
IP address blocks: 102.177.123.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3696E5F/3DA3D320189711ED8C936BD2F1222468/U3XPTKFkOwjDQb2nnYvhBb3DxIs.crl
rsync://rpki.afrinic.net/repository/member_repository/F3696E5F/3DA3D320189711ED8C936BD2F1222468/U3XPTKFkOwjDQb2nnYvhBb3DxIs.mft
rsync://rpki.afrinic.net/repository/afrinic/U3XPTKFkOwjDQb2nnYvhBb3DxIs.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 493 (0x1ed)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3696E5FAF/serialNumber=5375CF4CA1643B08C341BDA79D8BE105BDC3C48B
Validity
Not Before: Oct 13 23:17:29 2023 GMT
Not After : Oct 13 23:17:29 2030 GMT
Subject: CN=65287e8c-d8c8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:87:96:85:9e:78:bd:81:a4:cf:ae:e9:03:de:
a0:96:a9:ab:6a:81:b9:3b:71:d6:7b:d2:96:d8:6c:
b9:b8:2f:dd:d2:46:e0:b2:97:20:3a:c4:6a:d8:29:
82:e8:9e:7a:9d:34:72:0e:d6:46:a1:03:24:cf:2b:
cf:b9:66:05:73:1e:90:f6:d2:7e:74:ca:04:0e:0d:
cf:2b:28:9e:54:02:e9:32:02:54:a2:f3:22:7a:a9:
ba:a0:62:5c:56:c5:74:41:3c:66:f2:f2:0c:3e:09:
7c:0c:0f:aa:9a:90:23:f8:dc:35:a0:4f:ce:05:a0:
52:d5:a2:e7:c4:8b:08:e1:82:02:05:84:fa:8e:5d:
d0:be:b6:c8:a1:d2:12:4c:f3:dd:13:a1:45:2a:ba:
fe:da:1e:17:b4:e1:1a:54:50:7e:a4:c1:8b:66:32:
b9:bf:fa:de:af:84:2a:28:bc:53:28:98:1c:bf:56:
37:9c:71:84:81:dd:b2:c0:44:0d:67:24:fc:ed:d5:
80:62:43:39:ac:1a:a4:ef:b7:df:fe:09:c3:72:2f:
b6:a4:72:52:6c:bb:e1:48:32:c2:c8:f7:02:6b:6d:
82:8a:55:60:bd:2b:2c:e6:69:90:7f:de:08:2e:91:
98:11:53:2a:71:7e:8a:14:fd:c9:1c:b5:13:8b:f8:
17:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:12:D9:12:05:0B:65:76:BB:F9:E6:14:C5:76:2F:57:4E:0D:CF:BE
X509v3 Authority Key Identifier:
keyid:53:75:CF:4C:A1:64:3B:08:C3:41:BD:A7:9D:8B:E1:05:BD:C3:C4:8B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3696E5F/3DA3D320189711ED8C936BD2F1222468/U3XPTKFkOwjDQb2nnYvhBb3DxIs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/U3XPTKFkOwjDQb2nnYvhBb3DxIs.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3696E5F/3DA3D320189711ED8C936BD2F1222468/854B5332695511EEBE8EB37E4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.177.123.0/24
Signature Algorithm: sha256WithRSAEncryption
3b:1b:76:63:4f:50:fe:2b:75:c8:e5:3d:d0:79:ac:ac:47:77:
94:e8:1e:c2:6f:d1:5f:27:35:65:86:64:a3:a4:92:57:f5:cf:
6e:0e:57:25:4d:bc:bd:f0:2d:c8:79:06:00:78:cf:d4:c0:01:
31:35:45:08:cb:4c:71:38:55:3f:7a:80:dd:f4:ac:ca:75:34:
3b:63:9a:c1:ba:73:5b:dd:f2:f6:63:b7:72:9e:65:2f:32:8e:
87:5f:07:19:da:0b:ef:3f:08:e9:11:63:ed:c1:f7:98:d3:01:
fe:30:ce:a5:bb:25:95:2e:1d:a4:04:28:94:37:53:9d:fb:66:
50:85:6a:f7:f0:fa:d8:b4:0c:79:60:d7:cd:5a:66:39:fb:5d:
e6:93:2c:70:73:09:15:ba:cb:07:a9:db:03:c0:03:99:18:12:
dc:63:be:39:58:27:24:04:1a:d2:a2:4b:f6:00:91:a9:12:b1:
53:79:c6:09:1c:f4:72:f1:9c:95:a3:ac:f8:eb:47:ea:57:01:
d5:17:40:04:61:ef:1a:e3:18:2a:4c:b8:62:04:46:67:4c:f1:
41:ee:6c:4b:b7:6d:23:3f:dc:c3:ac:88:cd:d9:23:79:38:f1:
e4:69:ae:e3:12:f4:14:0d:42:00:98:36:ba:27:97:d7:72:a0:
15:0b:43:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:05:15 2024 by rpki-client on console-ams.rpki-client.org