Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3696E5F/3DA3D320189711ED8C936BD2F1222468/AEA509EA695411EEB0052B7C4AD9E6FC.roa
File: AEA509EA695411EEB0052B7C4AD9E6FC.roa (raw, json)
Hash identifier: XScV3QWAzuM2DYSCzJ4FRDjSF03CmS13+qopxF3W36M=
Subject key identifier: 51:9C:61:B8:58:75:49:4D:D3:BC:E5:6F:45:23:EF:BB:DF:31:4E:BD
Certificate issuer: /CN=F3696E5FAF/serialNumber=5375CF4CA1643B08C341BDA79D8BE105BDC3C48B
Certificate serial: 01E7
Authority key identifier: 53:75:CF:4C:A1:64:3B:08:C3:41:BD:A7:9D:8B:E1:05:BD:C3:C4:8B
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/U3XPTKFkOwjDQb2nnYvhBb3DxIs.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3696E5F/3DA3D320189711ED8C936BD2F1222468/AEA509EA695411EEB0052B7C4AD9E6FC.roa
Signing time: Thu 12 Oct 2023 23:11:32 +0000
ROA not before: Fri 13 Oct 2023 23:11:29 +0000
ROA not after: Sun 13 Oct 2030 23:11:29 +0000
asID: 25818
IP address blocks: 102.177.119.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3696E5F/3DA3D320189711ED8C936BD2F1222468/U3XPTKFkOwjDQb2nnYvhBb3DxIs.crl
rsync://rpki.afrinic.net/repository/member_repository/F3696E5F/3DA3D320189711ED8C936BD2F1222468/U3XPTKFkOwjDQb2nnYvhBb3DxIs.mft
rsync://rpki.afrinic.net/repository/afrinic/U3XPTKFkOwjDQb2nnYvhBb3DxIs.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 27 Nov 2024 00:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 487 (0x1e7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3696E5FAF/serialNumber=5375CF4CA1643B08C341BDA79D8BE105BDC3C48B
Validity
Not Before: Oct 13 23:11:29 2023 GMT
Not After : Oct 13 23:11:29 2030 GMT
Subject: CN=65287d24-1558
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:4f:58:c7:36:ad:b2:e9:59:8d:26:ac:20:85:
33:3a:ef:d0:17:7a:5c:4e:63:86:0d:95:73:31:be:
5c:8a:e7:95:f7:a0:90:e3:30:aa:6f:85:0a:f9:e2:
a8:d4:b7:b4:eb:4f:ba:8a:d9:35:5f:3b:a1:86:ee:
e4:dc:f2:94:14:d4:66:2b:34:de:54:9d:05:87:92:
3a:6c:71:2a:ba:80:04:79:bd:e7:02:1f:fd:72:91:
40:10:81:7f:93:38:bb:56:3b:6c:aa:2a:d9:2a:d6:
6e:95:e4:b2:35:5b:b6:3c:bc:09:c7:cc:07:5f:a6:
c3:9f:81:50:f3:d2:92:41:4a:9e:f6:41:fa:a7:d2:
cf:8c:ad:8f:e8:7e:25:a7:5b:c1:1e:10:fa:6f:c8:
a1:da:71:a3:14:ca:ea:f8:8b:c1:e7:7e:6d:f0:63:
20:30:12:54:58:f4:68:b8:ed:58:1d:0d:bb:d9:dd:
ad:b9:f5:34:fd:70:29:89:53:13:2f:19:06:33:c9:
5e:be:98:ba:74:c0:41:f8:9b:2d:b1:17:85:f3:d7:
74:33:52:f7:4a:e6:f9:a0:71:90:4e:b4:9b:3e:a7:
da:8e:a5:e1:e0:8c:48:53:e8:7e:7c:6a:c0:c1:f0:
2d:b3:c0:6a:31:35:62:ea:93:50:d8:32:4e:9d:0d:
7b:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:9C:61:B8:58:75:49:4D:D3:BC:E5:6F:45:23:EF:BB:DF:31:4E:BD
X509v3 Authority Key Identifier:
keyid:53:75:CF:4C:A1:64:3B:08:C3:41:BD:A7:9D:8B:E1:05:BD:C3:C4:8B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3696E5F/3DA3D320189711ED8C936BD2F1222468/U3XPTKFkOwjDQb2nnYvhBb3DxIs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/U3XPTKFkOwjDQb2nnYvhBb3DxIs.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3696E5F/3DA3D320189711ED8C936BD2F1222468/AEA509EA695411EEB0052B7C4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.177.119.0/24
Signature Algorithm: sha256WithRSAEncryption
89:a0:84:28:15:6a:8e:08:ea:1a:05:15:85:27:f7:86:20:f2:
a8:0f:d4:a9:e0:da:b4:9b:e0:7b:15:9d:58:45:36:92:38:0b:
85:72:ac:58:d9:86:ed:78:14:d6:43:59:6b:be:78:d6:96:ae:
57:d6:b1:e9:27:69:db:54:dc:f2:9d:9a:54:40:1d:7d:54:30:
87:4b:d5:d9:e1:af:2d:6e:4d:a4:69:e7:30:99:18:d7:f5:4b:
c1:18:9c:74:7f:1a:93:19:42:05:ca:1f:55:e4:ce:10:68:d0:
8a:95:eb:85:7c:5d:1e:0a:ea:3e:1d:56:dd:a8:55:1f:08:5b:
80:b4:2d:73:58:d1:00:46:0a:80:5f:d6:72:9a:12:66:ce:b3:
91:75:fc:34:30:95:ce:61:fe:ed:40:a6:b9:a5:42:bf:d8:d7:
6a:4b:e1:e3:25:34:f9:ab:36:fc:e4:77:d7:a6:47:83:4c:8d:
bb:a8:8a:83:aa:61:15:b7:b8:77:85:44:40:c8:2f:23:f4:9b:
65:d0:ff:81:c0:ce:67:02:4d:96:29:d8:d6:d2:75:13:ee:66:
2f:f3:41:58:61:f6:2f:a8:ef:5c:96:a5:64:84:a4:f4:dd:aa:
69:ed:d7:5f:98:90:a3:2f:44:6e:16:37:7e:59:cd:6d:0e:a0:
95:34:b1:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 02:48:39 2024 by rpki-client on console-ams.rpki-client.org