Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36A6924/EFD9E414DE6311EFB38DFE54762E951A/9343B656DE6511EFAF948D61762E951A.roa
File: 9343B656DE6511EFAF948D61762E951A.roa (raw, json)
Hash identifier: zDYsubxhkHYMHfjJPFrGHDpArkGFwI5Ms1TbXtuvEN8=
Subject key identifier: 7F:D9:5E:D8:C7:B7:3C:B9:3C:EB:2E:54:48:4D:4F:D1:A3:2D:A8:C8
Certificate issuer: /CN=F36A6924AF/serialNumber=54F19FDA4AF0575A91AAD4E4E6F635A64E7A8FEC
Certificate serial: 02
Authority key identifier: 54:F1:9F:DA:4A:F0:57:5A:91:AA:D4:E4:E6:F6:35:A6:4E:7A:8F:EC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/VPGf2krwV1qRqtTk5vY1pk56j-w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36A6924/EFD9E414DE6311EFB38DFE54762E951A/9343B656DE6511EFAF948D61762E951A.roa
Signing time: Wed 29 Jan 2025 17:22:12 +0000
ROA not before: Wed 29 Jan 2025 17:22:07 +0000
ROA not after: Fri 29 Jan 2027 17:22:07 +0000
asID: 329414
IP address blocks: 102.209.124.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36A6924/EFD9E414DE6311EFB38DFE54762E951A/VPGf2krwV1qRqtTk5vY1pk56j-w.crl
rsync://rpki.afrinic.net/repository/member_repository/F36A6924/EFD9E414DE6311EFB38DFE54762E951A/VPGf2krwV1qRqtTk5vY1pk56j-w.mft
rsync://rpki.afrinic.net/repository/afrinic/VPGf2krwV1qRqtTk5vY1pk56j-w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 06 Apr 2025 00:06:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2 (0x2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36A6924AF
Validity
Not Before: Jan 29 17:22:07 2025 GMT
Not After : Jan 29 17:22:07 2027 GMT
Subject: CN=679a63c3-29f9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:e3:18:32:49:c7:6e:98:4b:52:60:1b:ad:0c:
f1:6f:27:54:88:9f:c2:93:48:fc:59:60:23:d4:8e:
b2:ec:e5:95:fb:c0:04:23:ba:52:d9:d6:48:85:a2:
3f:8c:c2:75:a3:33:3f:e4:f0:d2:f4:7f:b4:06:13:
03:b4:e1:72:36:3a:87:21:89:66:04:1c:00:64:66:
e3:18:7d:a7:91:32:a4:09:6f:a9:cb:08:35:06:9b:
82:b3:13:d3:0d:03:51:25:65:b7:82:fb:c6:08:55:
df:16:ee:20:f8:cc:12:47:3d:9e:5d:e3:df:bb:23:
26:09:74:0a:bb:dd:c9:37:81:23:70:36:9e:2f:de:
06:b7:35:8c:74:73:9b:5e:c8:87:d8:a3:1c:b0:42:
17:c0:d2:2e:29:c9:1f:9c:78:71:8f:26:58:42:98:
d5:d2:2f:e7:59:48:b9:92:ec:33:db:ce:a9:b6:60:
68:1c:27:d3:42:ee:56:df:7e:80:f1:3f:70:1d:7e:
9a:0f:f2:c3:9d:e5:59:7b:4e:09:ea:da:bf:c0:15:
50:be:b9:e6:c3:bf:ca:2a:59:34:19:67:ce:4f:7c:
31:31:4a:82:1f:43:ab:ef:d9:68:0b:a2:06:9c:37:
47:61:84:94:81:fc:66:a6:a4:c5:86:59:1b:f8:38:
3a:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:D9:5E:D8:C7:B7:3C:B9:3C:EB:2E:54:48:4D:4F:D1:A3:2D:A8:C8
X509v3 Authority Key Identifier:
keyid:54:F1:9F:DA:4A:F0:57:5A:91:AA:D4:E4:E6:F6:35:A6:4E:7A:8F:EC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36A6924/EFD9E414DE6311EFB38DFE54762E951A/VPGf2krwV1qRqtTk5vY1pk56j-w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/VPGf2krwV1qRqtTk5vY1pk56j-w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36A6924/EFD9E414DE6311EFB38DFE54762E951A/9343B656DE6511EFAF948D61762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.209.124.0/22
Signature Algorithm: sha256WithRSAEncryption
a3:a7:b4:4a:f8:1b:45:e3:73:b3:0a:2d:f2:cd:e7:30:9f:0f:
e7:2d:41:eb:fb:df:bf:b4:89:04:c9:66:d0:35:fe:29:1d:01:
79:c0:18:7a:5a:36:69:20:3e:ac:b6:b4:bc:9d:04:ab:82:ba:
c2:67:a1:cb:60:1d:18:b9:2e:d4:78:c0:ee:e4:b9:86:90:bf:
ae:44:4d:5d:bc:b6:78:33:1f:8f:3b:33:88:de:58:f8:d1:ef:
72:58:4c:d8:1a:d3:b7:42:ee:81:8e:07:50:4e:86:1e:d1:c9:
9f:41:79:8a:20:27:7b:0d:ef:d9:2b:73:4d:f8:8d:48:8f:69:
db:bd:8d:b6:6d:94:70:f9:3a:c8:3f:22:91:c4:4b:76:9d:d4:
c3:96:88:f6:4f:66:45:e7:76:01:4f:47:7f:ed:11:ff:91:2d:
14:e9:8e:8e:b3:98:1b:6e:a3:ac:89:20:db:57:19:63:18:ee:
2b:ea:cc:5d:df:ac:87:76:ba:17:cc:b2:52:94:c3:13:59:f3:
8e:20:53:fc:dc:ab:d2:40:1e:40:0f:f1:2c:aa:91:b0:59:66:
87:98:1f:94:5e:44:96:3b:29:ac:57:cc:7c:74:b1:7f:19:27:
ee:23:78:73:76:fc:0c:48:9f:a0:66:d1:c6:32:45:b2:3b:63:
14:5a:b4:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 10:57:57 2025 by rpki-client