Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3696E5F/3DA3D320189711ED8C936BD2F1222468/BBD7FCD2732511EE8177F96F4AD9E6FC.roa
File: BBD7FCD2732511EE8177F96F4AD9E6FC.roa (raw, json)
Hash identifier: ETbkRfWBiQKQIv/HBotMdHRy2JjPbPpo2ZGYcvIRbHg=
Subject key identifier: 4D:2F:ED:0C:70:6B:74:13:6D:9D:7E:63:49:17:0B:F9:6A:8D:11:46
Certificate issuer: /CN=F3696E5FAF/serialNumber=5375CF4CA1643B08C341BDA79D8BE105BDC3C48B
Certificate serial: 0206
Authority key identifier: 53:75:CF:4C:A1:64:3B:08:C3:41:BD:A7:9D:8B:E1:05:BD:C3:C4:8B
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/U3XPTKFkOwjDQb2nnYvhBb3DxIs.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3696E5F/3DA3D320189711ED8C936BD2F1222468/BBD7FCD2732511EE8177F96F4AD9E6FC.roa
Signing time: Wed 25 Oct 2023 11:00:40 +0000
ROA not before: Wed 25 Oct 2023 11:00:36 +0000
ROA not after: Fri 25 Oct 2030 11:00:36 +0000
asID: 25818
IP address blocks: 102.64.96.0/20 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3696E5F/3DA3D320189711ED8C936BD2F1222468/U3XPTKFkOwjDQb2nnYvhBb3DxIs.crl
rsync://rpki.afrinic.net/repository/member_repository/F3696E5F/3DA3D320189711ED8C936BD2F1222468/U3XPTKFkOwjDQb2nnYvhBb3DxIs.mft
rsync://rpki.afrinic.net/repository/afrinic/U3XPTKFkOwjDQb2nnYvhBb3DxIs.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 27 Nov 2024 00:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 518 (0x206)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3696E5FAF/serialNumber=5375CF4CA1643B08C341BDA79D8BE105BDC3C48B
Validity
Not Before: Oct 25 11:00:36 2023 GMT
Not After : Oct 25 11:00:36 2030 GMT
Subject: CN=6538f558-f2d8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:40:69:26:80:fc:95:59:32:45:f3:0f:92:49:
c1:f1:7c:bc:07:a5:52:8a:ed:15:c2:5f:a0:23:17:
58:d3:cf:26:5a:7c:00:63:78:57:b2:7c:c7:19:80:
43:94:5f:52:22:b9:8f:05:a0:2b:fa:b3:f0:f2:df:
15:bc:fa:ea:c8:66:b3:5b:e2:ae:39:73:7c:06:67:
79:5c:12:88:0c:cd:7b:8b:6d:0e:df:1d:82:35:d0:
8e:3a:e6:78:90:1b:5c:0a:f7:c5:a5:88:12:b1:b6:
9d:29:43:9b:fc:fd:67:a7:aa:45:a6:8c:e5:c2:46:
af:fe:83:1c:82:df:a8:1f:2b:07:f4:21:22:31:5d:
ca:50:a6:0d:18:0b:85:a4:8b:d8:f0:b5:5c:6b:45:
8c:17:bb:47:3a:01:74:70:aa:af:33:85:a4:41:5a:
fc:67:ce:04:be:fb:34:b0:88:15:4c:e4:a9:a0:df:
6d:29:fa:01:e8:67:9b:f2:9f:d6:5f:6a:e5:23:1e:
19:a7:5a:d2:b3:e7:1f:dc:35:d5:f3:77:fa:06:61:
25:1e:f8:65:ee:20:f5:d6:17:44:05:b7:ea:2b:0a:
70:16:f7:6b:3a:b0:3a:4b:08:70:78:2f:0a:c4:37:
00:f0:2a:05:00:3f:e3:38:42:71:b1:e5:77:65:44:
7f:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:2F:ED:0C:70:6B:74:13:6D:9D:7E:63:49:17:0B:F9:6A:8D:11:46
X509v3 Authority Key Identifier:
keyid:53:75:CF:4C:A1:64:3B:08:C3:41:BD:A7:9D:8B:E1:05:BD:C3:C4:8B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3696E5F/3DA3D320189711ED8C936BD2F1222468/U3XPTKFkOwjDQb2nnYvhBb3DxIs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/U3XPTKFkOwjDQb2nnYvhBb3DxIs.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3696E5F/3DA3D320189711ED8C936BD2F1222468/BBD7FCD2732511EE8177F96F4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.64.96.0/20
Signature Algorithm: sha256WithRSAEncryption
16:33:c4:e0:2a:4f:2f:8f:3d:2f:a6:36:be:8d:7a:37:01:56:
f8:ee:12:65:0b:1d:00:14:35:d0:18:a1:37:d5:12:51:83:c3:
e4:37:8d:ed:25:f6:30:1a:47:31:fc:2d:66:ca:e2:c1:a6:d3:
4a:e3:96:86:0c:0e:23:5c:10:12:ff:66:f0:1c:cc:eb:d5:11:
d4:6f:f0:63:e5:82:a7:da:ed:26:67:4e:17:40:83:cf:81:9f:
92:40:dd:58:1c:2e:b8:19:de:55:eb:ad:7b:0f:44:5b:01:d3:
1b:50:09:01:f4:57:13:e5:c0:51:77:7c:fa:dc:f6:ee:af:9f:
9c:81:ff:66:87:1d:d7:45:37:e8:e0:35:1d:ee:45:5a:e6:78:
3e:71:d5:24:20:86:7c:be:9c:75:6b:2d:71:32:fe:ca:85:1a:
79:5a:3e:0a:b6:1f:59:75:22:3e:b5:32:f6:a0:86:cc:0f:2a:
53:8d:97:50:30:95:f9:af:bd:de:02:c5:b5:0f:b3:46:a3:0f:
17:06:13:20:40:d1:a1:7e:ea:bf:e3:c3:5c:2c:4c:8c:6c:c2:
cb:b6:06:c1:72:c1:3a:80:ca:f6:33:58:39:f9:ad:bb:1d:03:
2e:97:3c:1a:0f:65:f5:d3:2b:06:8d:e0:20:2e:dd:cd:a0:16:
d1:79:dd:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 03:00:08 2024 by rpki-client on console-fra.rpki-client.org