Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3696E5F/3DA3D320189711ED8C936BD2F1222468/B91DC424695511EEB0AD5F7F4AD9E6FC.roa
File: B91DC424695511EEB0AD5F7F4AD9E6FC.roa (raw, json)
Hash identifier: xF9Bk5Mz40aREsF1B2crStPFc7HilkjnEG2UlUsQDKU=
Subject key identifier: AE:8F:9A:92:FF:29:C4:5A:A2:1A:6D:ED:7B:A8:68:D6:80:14:EC:2D
Certificate issuer: /CN=F3696E5FAF/serialNumber=5375CF4CA1643B08C341BDA79D8BE105BDC3C48B
Certificate serial: 01EF
Authority key identifier: 53:75:CF:4C:A1:64:3B:08:C3:41:BD:A7:9D:8B:E1:05:BD:C3:C4:8B
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/U3XPTKFkOwjDQb2nnYvhBb3DxIs.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3696E5F/3DA3D320189711ED8C936BD2F1222468/B91DC424695511EEB0AD5F7F4AD9E6FC.roa
Signing time: Thu 12 Oct 2023 23:18:59 +0000
ROA not before: Fri 13 Oct 2023 23:18:56 +0000
ROA not after: Sun 13 Oct 2030 23:18:56 +0000
asID: 25818
IP address blocks: 102.177.124.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3696E5F/3DA3D320189711ED8C936BD2F1222468/U3XPTKFkOwjDQb2nnYvhBb3DxIs.crl
rsync://rpki.afrinic.net/repository/member_repository/F3696E5F/3DA3D320189711ED8C936BD2F1222468/U3XPTKFkOwjDQb2nnYvhBb3DxIs.mft
rsync://rpki.afrinic.net/repository/afrinic/U3XPTKFkOwjDQb2nnYvhBb3DxIs.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 495 (0x1ef)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3696E5FAF/serialNumber=5375CF4CA1643B08C341BDA79D8BE105BDC3C48B
Validity
Not Before: Oct 13 23:18:56 2023 GMT
Not After : Oct 13 23:18:56 2030 GMT
Subject: CN=65287ee3-c1f5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:c3:ed:b8:8d:18:05:95:a3:8e:59:19:b4:6c:
b0:b8:56:e4:43:28:ef:cd:83:81:c8:38:ec:05:c5:
ff:b4:3e:68:71:1f:2e:6e:c3:c0:44:d8:e2:0f:1a:
8d:6b:dd:dd:84:d6:d5:8e:3a:be:b2:43:8c:71:c2:
8a:1e:48:c1:6d:9b:8b:12:c6:ab:47:69:3a:75:7e:
4b:be:ec:cf:15:24:74:ea:34:5f:5d:c4:74:6a:bf:
78:98:24:0e:71:d2:f3:a0:17:76:bd:34:7e:00:2a:
53:48:3b:28:22:48:06:a9:3f:b1:8b:32:1f:27:cb:
b9:7c:8c:af:c1:54:77:ad:44:7e:e7:e9:25:02:7b:
39:34:bb:ff:10:38:55:45:8c:1b:ce:06:54:cb:23:
48:a8:cb:80:f6:3c:98:14:11:1e:ac:ef:a5:d7:2b:
d9:d1:1d:2f:a5:df:d6:65:af:bf:fc:ac:7d:86:b2:
22:02:b9:ca:db:48:4b:82:75:48:4d:f7:c6:1a:11:
aa:63:65:03:c7:e5:bf:45:4f:33:46:4a:1b:0c:98:
41:e0:56:8f:79:ee:ee:95:16:02:2e:06:51:f8:2f:
ef:31:2e:44:32:35:b3:38:4c:f5:59:c3:8c:67:84:
a8:a5:07:7e:e5:c7:61:c0:7a:f6:9c:a2:3e:7c:82:
1d:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:8F:9A:92:FF:29:C4:5A:A2:1A:6D:ED:7B:A8:68:D6:80:14:EC:2D
X509v3 Authority Key Identifier:
keyid:53:75:CF:4C:A1:64:3B:08:C3:41:BD:A7:9D:8B:E1:05:BD:C3:C4:8B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3696E5F/3DA3D320189711ED8C936BD2F1222468/U3XPTKFkOwjDQb2nnYvhBb3DxIs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/U3XPTKFkOwjDQb2nnYvhBb3DxIs.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3696E5F/3DA3D320189711ED8C936BD2F1222468/B91DC424695511EEB0AD5F7F4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.177.124.0/24
Signature Algorithm: sha256WithRSAEncryption
b9:a4:ad:7a:30:17:e8:d4:c2:0f:f9:d6:35:55:c4:e5:e9:86:
67:88:ae:90:3c:9b:bf:d9:1c:ab:3f:b6:5b:b1:13:33:80:25:
34:b5:94:f0:03:f1:6d:fa:df:cb:0b:c4:29:84:fb:66:9a:e5:
ed:e0:e7:2d:be:5f:51:4a:b1:13:e2:80:e6:5f:25:68:b1:59:
0b:35:0e:37:38:e9:9a:40:8e:4a:89:a3:3a:df:8d:60:ec:21:
14:3a:c4:6d:65:4d:eb:05:44:a6:e6:f7:5e:dc:97:cc:1f:94:
1b:c2:90:e8:c5:eb:21:de:aa:bf:ac:cb:e2:1c:9d:0f:af:3d:
c6:0e:c9:9a:04:a7:a8:48:d5:d1:93:67:f1:68:32:28:a7:60:
d5:8c:6b:08:8e:65:7b:b7:5f:57:71:9d:97:85:28:a4:9f:29:
ab:00:90:86:61:8f:21:4f:83:87:2f:6d:8e:9e:0f:5d:b7:30:
98:2a:50:2a:09:5f:f2:3f:29:89:d4:85:df:82:73:8f:3c:6b:
79:7d:0d:1a:05:b0:a1:3e:7f:d7:0d:08:14:85:93:54:af:a1:
d0:b1:80:ad:ba:9c:2a:0a:b4:d5:36:54:67:bc:5a:ea:54:48:
79:81:31:bc:1e:b9:51:76:68:f0:88:79:2b:9d:ff:8d:f7:c6:
45:2c:cd:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:05:15 2024 by rpki-client on console-ams.rpki-client.org