Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36AE219/52BAC3D8231011EF92871F3A7DDC24C2/8F09B9704F4811EF95C0F883762E951A.roa
File: 8F09B9704F4811EF95C0F883762E951A.roa (raw, json)
Hash identifier: Jb7IC1uL5aUvVn+T0mFpr5lxOWcWzHI+l9IojCLU5sE=
Subject key identifier: 6D:13:CB:E2:48:7B:D0:76:D2:2F:8D:A6:7C:B4:AF:F6:45:26:78:6D
Certificate issuer: /CN=F36AE219AF/serialNumber=91C99E457967B9929B2EDE7979728B0FE2639AD9
Certificate serial: 49
Authority key identifier: 91:C9:9E:45:79:67:B9:92:9B:2E:DE:79:79:72:8B:0F:E2:63:9A:D9
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/kcmeRXlnuZKbLt55eXKLD-Jjmtk.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36AE219/52BAC3D8231011EF92871F3A7DDC24C2/8F09B9704F4811EF95C0F883762E951A.roa
Signing time: Wed 31 Jul 2024 14:24:13 +0000
ROA not before: Wed 31 Jul 2024 14:24:10 +0000
ROA not after: Mon 31 Jul 2034 14:24:10 +0000
asID: 329278
IP address blocks: 102.212.245.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36AE219/52BAC3D8231011EF92871F3A7DDC24C2/kcmeRXlnuZKbLt55eXKLD-Jjmtk.crl
rsync://rpki.afrinic.net/repository/member_repository/F36AE219/52BAC3D8231011EF92871F3A7DDC24C2/kcmeRXlnuZKbLt55eXKLD-Jjmtk.mft
rsync://rpki.afrinic.net/repository/afrinic/kcmeRXlnuZKbLt55eXKLD-Jjmtk.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 21 Feb 2025 03:01:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 73 (0x49)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36AE219AF
Validity
Not Before: Jul 31 14:24:10 2024 GMT
Not After : Jul 31 14:24:10 2034 GMT
Subject: CN=66aa490d-bbe0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:29:95:a5:2b:23:29:fb:a7:5f:28:54:9a:9b:
c5:3d:be:3e:63:07:7c:f9:89:03:1c:a8:26:0d:51:
58:1b:2a:ce:b4:09:34:92:43:c9:e3:fc:be:42:85:
11:b3:d3:d1:1b:56:28:4c:cb:4d:1c:ed:fd:5a:3d:
73:e9:26:09:12:a6:74:39:60:46:61:dd:a7:f3:03:
14:69:28:9a:4f:ed:c9:bf:f5:35:79:b8:21:6b:6b:
dc:af:e9:7a:7c:8c:db:1d:67:d8:51:28:1f:69:bb:
6b:65:aa:86:01:b2:a9:16:53:20:8c:48:f9:38:e1:
85:e8:90:e1:dc:65:46:83:c5:46:d8:82:ea:9e:50:
79:19:b8:62:9b:d6:49:d8:01:e4:89:a5:cd:03:45:
d8:e7:8a:1c:88:49:e5:09:96:03:01:29:6c:a7:e8:
93:cf:c6:8d:a2:a0:9d:65:0d:7c:7f:28:94:5d:e2:
53:30:1f:65:b2:7c:de:1c:af:e4:80:e2:05:6d:34:
ab:2d:8e:71:a2:dc:3f:26:f2:66:45:e4:cb:14:06:
0a:0c:c7:a5:92:01:0c:ee:87:07:b9:3c:13:68:5f:
83:ab:86:b0:3c:95:7a:27:77:36:bb:2a:4b:89:f0:
e8:33:41:45:6b:02:98:4b:a1:b8:51:36:29:51:87:
91:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:13:CB:E2:48:7B:D0:76:D2:2F:8D:A6:7C:B4:AF:F6:45:26:78:6D
X509v3 Authority Key Identifier:
keyid:91:C9:9E:45:79:67:B9:92:9B:2E:DE:79:79:72:8B:0F:E2:63:9A:D9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36AE219/52BAC3D8231011EF92871F3A7DDC24C2/kcmeRXlnuZKbLt55eXKLD-Jjmtk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/kcmeRXlnuZKbLt55eXKLD-Jjmtk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36AE219/52BAC3D8231011EF92871F3A7DDC24C2/8F09B9704F4811EF95C0F883762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.212.245.0/24
Signature Algorithm: sha256WithRSAEncryption
89:28:ee:9f:a6:b5:3f:40:d3:e2:f2:b6:c8:5f:d2:85:05:d5:
34:3c:96:95:21:eb:06:b0:af:18:5b:eb:ed:35:8e:f2:3e:7f:
1f:24:59:62:bd:eb:06:b8:6f:a7:8a:59:ff:28:2b:0a:74:f2:
88:9a:55:5a:d7:5c:27:46:ba:77:48:c6:9b:0b:a0:8a:69:51:
e5:7e:62:53:d0:7e:e5:b2:a4:08:9e:96:56:b5:79:a9:5d:19:
5e:c7:24:89:c0:db:5b:a1:17:30:fd:1a:5d:c3:dd:5c:4c:0e:
01:04:ad:c1:3d:72:b8:c5:75:62:0f:91:4e:a0:b4:f7:d7:53:
1a:fb:a3:ed:3f:47:07:62:ea:92:c7:8e:60:8f:23:0a:ac:83:
20:d5:cb:8a:26:16:25:8a:01:0e:6d:79:23:60:60:55:83:1f:
1c:25:7b:f3:e5:63:81:78:5b:a5:62:15:43:1f:a8:7b:26:53:
82:fe:46:cf:98:87:7a:24:e0:59:2e:fc:39:cf:84:22:a5:46:
69:16:c4:67:84:4b:a3:ca:40:a0:c4:33:d2:6d:06:ad:ef:ff:
91:2c:c8:62:2f:57:72:eb:ed:0f:33:45:39:ab:0b:23:4a:56:
73:c6:7b:eb:c7:1b:7c:1e:b1:55:15:58:97:76:5c:2e:95:08:
ce:11:70:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 20:48:56 2025 by rpki-client