Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36A32F5/034990A4710811EFA7A9E4A3762E951A/B505C262710911EF82F828AE762E951A.roa
File: B505C262710911EF82F828AE762E951A.roa (raw, json)
Hash identifier: xT25C22GG0twXqlKDHqtHM6ZD8MTGkUTk1OnWMySjRQ=
Subject key identifier: DE:78:B0:6E:45:B6:11:2E:BD:91:BF:E0:BD:FD:C1:34:8B:61:3B:6E
Certificate issuer: /CN=F36A32F5AF/serialNumber=15BC062B0B70E8F7F20B4A15BE0509005B7310CB
Certificate serial: 02
Authority key identifier: 15:BC:06:2B:0B:70:E8:F7:F2:0B:4A:15:BE:05:09:00:5B:73:10:CB
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/FbwGKwtw6PfyC0oVvgUJAFtzEMs.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36A32F5/034990A4710811EFA7A9E4A3762E951A/B505C262710911EF82F828AE762E951A.roa
Signing time: Thu 12 Sep 2024 13:19:58 +0000
ROA not before: Thu 12 Sep 2024 13:19:54 +0000
ROA not after: Tue 12 Sep 2028 13:19:54 +0000
asID: 329485
IP address blocks: 102.207.224.0/22 maxlen: 24
2c0f:4ac0::/32 maxlen: 64
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36A32F5/034990A4710811EFA7A9E4A3762E951A/FbwGKwtw6PfyC0oVvgUJAFtzEMs.crl
rsync://rpki.afrinic.net/repository/member_repository/F36A32F5/034990A4710811EFA7A9E4A3762E951A/FbwGKwtw6PfyC0oVvgUJAFtzEMs.mft
rsync://rpki.afrinic.net/repository/afrinic/FbwGKwtw6PfyC0oVvgUJAFtzEMs.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 26 Oct 2024 00:05:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2 (0x2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36A32F5AF/serialNumber=15BC062B0B70E8F7F20B4A15BE0509005B7310CB
Validity
Not Before: Sep 12 13:19:54 2024 GMT
Not After : Sep 12 13:19:54 2028 GMT
Subject: CN=66e2ea7e-53f0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:01:43:47:ab:a7:c5:53:94:9e:73:dd:4e:42:
a6:48:1c:f4:5a:05:93:f9:9e:f9:02:0b:62:d8:2d:
b6:fe:d6:a5:ff:b3:7f:98:72:e6:d0:99:f3:c1:45:
55:2b:7c:59:86:56:14:5d:9e:95:51:20:03:49:f2:
99:ec:89:9a:58:74:ba:ec:fe:34:c7:f5:1b:99:8c:
bc:15:1c:35:f9:d5:bc:bc:0a:dd:e6:e6:f0:28:64:
f9:7a:0d:36:3e:d8:9a:35:38:91:fd:ac:74:07:fa:
a1:29:6c:dc:59:94:27:8a:93:89:dd:be:32:c3:04:
ae:ae:c3:54:98:03:27:d1:b4:74:21:fe:09:d5:6f:
8a:eb:22:d3:e4:01:69:f5:36:8c:ca:76:62:be:d3:
02:25:b1:71:f0:39:21:c3:b1:17:cf:56:e1:6d:6b:
b4:d7:93:fa:8c:41:a5:63:77:d6:8f:6c:9f:28:f3:
8e:ee:2b:e0:f7:ec:36:27:60:71:bd:78:e9:7e:55:
ed:5d:c3:c9:05:95:cf:9a:66:43:1d:9e:32:eb:fa:
55:d3:8b:5e:21:8c:eb:f8:af:90:e5:5b:6e:1b:b1:
77:36:9a:ab:80:e9:16:14:af:cc:5a:c7:1c:5e:2d:
ea:fe:1e:c2:49:64:50:86:c5:ef:7c:be:dc:94:76:
d9:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:78:B0:6E:45:B6:11:2E:BD:91:BF:E0:BD:FD:C1:34:8B:61:3B:6E
X509v3 Authority Key Identifier:
keyid:15:BC:06:2B:0B:70:E8:F7:F2:0B:4A:15:BE:05:09:00:5B:73:10:CB
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36A32F5/034990A4710811EFA7A9E4A3762E951A/FbwGKwtw6PfyC0oVvgUJAFtzEMs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/FbwGKwtw6PfyC0oVvgUJAFtzEMs.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36A32F5/034990A4710811EFA7A9E4A3762E951A/B505C262710911EF82F828AE762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.207.224.0/22
IPv6:
2c0f:4ac0::/32
Signature Algorithm: sha256WithRSAEncryption
65:a0:1d:e8:54:03:45:e5:47:85:b0:52:6f:2d:7c:1c:93:cf:
bf:43:d8:4e:29:1f:94:80:bd:da:f7:6f:10:7f:79:11:c3:af:
fe:c0:d8:aa:83:84:a0:08:70:38:c3:95:92:a3:b0:71:6d:95:
2d:f6:b5:b0:40:ff:b4:2d:3b:0f:ce:ef:70:f2:17:46:64:98:
0c:ae:83:9a:bf:82:0c:6c:7f:89:04:7c:8a:82:3f:4b:93:92:
af:e5:3e:e7:b2:00:e0:ca:72:ec:37:eb:96:c6:21:d8:dc:85:
54:63:26:4e:63:06:92:92:32:c7:2b:d1:94:50:9e:7f:d2:5b:
5c:3f:07:90:1e:c8:e7:83:eb:5e:bf:63:2e:ad:e6:52:db:29:
bb:bd:e1:ff:5d:97:60:41:e6:2d:d5:ce:c3:c0:b1:64:ae:16:
22:43:ec:4c:f2:2f:41:f3:c6:fc:d9:14:26:91:6c:ce:19:94:
6a:0c:25:09:c3:54:f1:cd:ea:d2:41:b5:a5:f9:89:77:cb:06:
1c:db:46:1b:38:d2:bf:76:a0:95:5d:fb:a0:1e:b3:1c:3e:5b:
9b:da:b7:79:6a:54:19:dd:3a:5f:6b:62:85:ec:ff:2e:0e:53:
c3:42:98:de:11:65:27:12:70:e1:08:6d:3f:3b:5a:34:84:e9:
51:7d:a5:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Oct 24 07:10:24 2024 by rpki-client on console-ams.rpki-client.org