Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3698125/9ED7EB1E838411EEAF8131354AD9E6FC/7505B06024CD11EF9410DD1A7DDC24C2.roa
File: 7505B06024CD11EF9410DD1A7DDC24C2.roa (raw, json)
Hash identifier: vn59PtsA74MEKr6H9TKVqZemfFNq5OYAs+pWATJBHgA=
Subject key identifier: D3:74:B5:72:8C:5B:B4:32:44:1A:DE:2E:00:C0:CB:0C:8C:67:D3:A1
Certificate issuer: /CN=F3698125AF/serialNumber=3C79F0FCBBB0C041C8B4F6DEE103B02519516EF4
Certificate serial: D8
Authority key identifier: 3C:79:F0:FC:BB:B0:C0:41:C8:B4:F6:DE:E1:03:B0:25:19:51:6E:F4
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/PHnw_LuwwEHItPbe4QOwJRlRbvQ.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3698125/9ED7EB1E838411EEAF8131354AD9E6FC/7505B06024CD11EF9410DD1A7DDC24C2.roa
Signing time: Fri 07 Jun 2024 12:57:12 +0000
ROA not before: Fri 07 Jun 2024 12:57:09 +0000
ROA not after: Thu 07 Jun 2029 12:57:09 +0000
asID: 329227
IP address blocks: 102.212.68.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3698125/9ED7EB1E838411EEAF8131354AD9E6FC/PHnw_LuwwEHItPbe4QOwJRlRbvQ.crl
rsync://rpki.afrinic.net/repository/member_repository/F3698125/9ED7EB1E838411EEAF8131354AD9E6FC/PHnw_LuwwEHItPbe4QOwJRlRbvQ.mft
rsync://rpki.afrinic.net/repository/afrinic/PHnw_LuwwEHItPbe4QOwJRlRbvQ.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 216 (0xd8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3698125AF/serialNumber=3C79F0FCBBB0C041C8B4F6DEE103B02519516EF4
Validity
Not Before: Jun 7 12:57:09 2024 GMT
Not After : Jun 7 12:57:09 2029 GMT
Subject: CN=666303a8-4f5f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:db:68:5e:49:17:94:78:55:21:ec:4c:7d:16:
34:d4:d9:08:0c:3d:19:b6:97:67:db:70:f3:79:32:
e8:b4:37:06:81:f5:2f:d8:59:77:8d:74:7a:b6:29:
f4:91:73:7d:e0:46:d7:b2:34:7b:27:e9:33:11:79:
50:fa:81:8f:12:71:af:d4:65:23:65:63:65:0d:90:
e8:fb:a4:12:65:1e:e4:6f:66:da:72:63:79:64:3c:
ff:af:47:58:b7:b8:09:e3:37:ca:48:38:a0:77:1a:
d5:12:06:b8:ee:0e:13:dd:09:73:73:91:39:f1:8e:
42:af:b6:1b:0b:9a:a5:9a:85:f7:28:f5:a8:ad:29:
31:19:2c:93:f3:ca:54:2e:94:83:58:27:d0:f8:a3:
90:19:58:e8:57:b5:07:24:8e:74:a5:2a:0a:be:e9:
dd:7e:77:3b:e0:dc:2d:7d:7d:38:36:31:62:9d:5c:
d4:d6:40:6a:66:4d:ba:75:fc:4f:7d:e1:dc:cc:0d:
8c:14:79:83:2e:31:53:d2:85:48:53:b7:50:38:96:
ae:b3:18:e1:d3:63:42:ab:30:e2:0f:43:9d:99:3a:
e2:0b:ba:1d:ee:0b:e7:29:29:b7:06:7a:74:0a:38:
1d:f2:d2:5a:be:90:08:8a:cf:60:52:5f:38:a7:a5:
c3:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:74:B5:72:8C:5B:B4:32:44:1A:DE:2E:00:C0:CB:0C:8C:67:D3:A1
X509v3 Authority Key Identifier:
keyid:3C:79:F0:FC:BB:B0:C0:41:C8:B4:F6:DE:E1:03:B0:25:19:51:6E:F4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3698125/9ED7EB1E838411EEAF8131354AD9E6FC/PHnw_LuwwEHItPbe4QOwJRlRbvQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/PHnw_LuwwEHItPbe4QOwJRlRbvQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3698125/9ED7EB1E838411EEAF8131354AD9E6FC/7505B06024CD11EF9410DD1A7DDC24C2.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.212.68.0/22
Signature Algorithm: sha256WithRSAEncryption
a3:18:62:98:f0:97:f2:88:43:4d:49:d2:a8:3f:97:30:06:07:
48:3f:3e:92:55:4b:3f:a0:b5:8c:5b:9a:a7:5d:f0:9e:a2:e0:
68:f2:55:d8:c2:07:d6:83:5c:90:f3:dd:a0:a3:ed:bf:1b:f8:
61:c3:53:7b:65:1c:a5:07:83:93:7f:ac:d3:1f:d0:c3:c8:c0:
e1:6e:17:6a:b5:7a:f6:6f:67:81:58:06:e3:0b:16:d3:6e:84:
60:43:14:a5:4f:fd:1f:f0:ef:90:27:1a:1b:9c:5a:04:6e:54:
b6:73:11:4c:97:94:63:57:51:28:0f:8c:27:9f:49:1c:a6:6b:
ac:e8:76:d8:75:57:ab:6f:79:34:4f:7c:8f:6e:ce:f5:87:e8:
b9:ce:ec:dd:39:fb:ba:16:1d:93:f4:7a:46:de:ff:94:16:91:
09:88:2a:7e:94:a4:c2:6c:95:2a:47:9d:b9:84:30:84:ec:6e:
6a:f5:f7:fd:41:8d:a6:54:bb:8a:8a:84:9a:57:67:89:cc:da:
8f:f2:c8:24:95:af:ee:b1:c9:80:d6:12:bf:fe:74:26:39:09:
7a:60:62:5d:87:61:87:7b:2d:00:1e:f7:da:bf:96:fa:87:d2:
68:ac:50:9e:ff:de:d5:6a:b9:e5:8e:58:05:70:97:07:46:6b:
60:dd:47:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 03:52:57 2024 by rpki-client on console-fra.rpki-client.org