Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36B70EF/8F798B325A6611EABB216F4BF8AEA228/70076FD4A70B11EF8D62DB74762E951A.roa
File: 70076FD4A70B11EF8D62DB74762E951A.roa (raw, json)
Hash identifier: LcMYj3ITAdCe3LR23bnkb1n/C+36Ft00nt7b6GzWAhM=
Subject key identifier: 9C:42:8E:4F:23:B3:40:97:85:D1:7B:14:DB:89:1A:8F:3E:49:D0:71
Certificate issuer: /CN=F36B70EFAF/serialNumber=D0BE67D045B33F05A5871510399E709C98F6D77D
Certificate serial: 06FD
Authority key identifier: D0:BE:67:D0:45:B3:3F:05:A5:87:15:10:39:9E:70:9C:98:F6:D7:7D
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/0L5n0EWzPwWlhxUQOZ5wnJj2130.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36B70EF/8F798B325A6611EABB216F4BF8AEA228/70076FD4A70B11EF8D62DB74762E951A.roa
Signing time: Wed 20 Nov 2024 06:48:24 +0000
ROA not before: Wed 20 Nov 2024 06:48:21 +0000
ROA not after: Wed 01 Nov 2034 06:48:21 +0000
asID: 328337
IP address blocks: 102.134.65.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36B70EF/8F798B325A6611EABB216F4BF8AEA228/0L5n0EWzPwWlhxUQOZ5wnJj2130.crl
rsync://rpki.afrinic.net/repository/member_repository/F36B70EF/8F798B325A6611EABB216F4BF8AEA228/0L5n0EWzPwWlhxUQOZ5wnJj2130.mft
rsync://rpki.afrinic.net/repository/afrinic/0L5n0EWzPwWlhxUQOZ5wnJj2130.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1789 (0x6fd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36B70EFAF/serialNumber=D0BE67D045B33F05A5871510399E709C98F6D77D
Validity
Not Before: Nov 20 06:48:21 2024 GMT
Not After : Nov 1 06:48:21 2034 GMT
Subject: CN=673d8638-4b08
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:17:b2:76:21:86:fe:26:e2:46:89:4e:30:a0:
56:14:5e:79:bc:3b:1a:1b:b2:69:6a:db:55:c1:78:
c2:e8:dd:55:f5:6c:70:cb:9d:a0:f9:3e:04:94:2e:
28:37:25:ed:94:09:96:c8:d6:4b:2f:8a:0c:3b:e6:
17:67:20:a0:c6:9a:3f:43:74:cc:ad:02:6a:51:4e:
4d:43:1f:04:c4:b5:30:51:2d:09:74:37:ac:89:01:
da:38:d8:b5:4f:be:17:a7:a3:d7:35:69:48:4c:c8:
ab:1c:a1:c7:07:a6:83:24:e5:55:8d:db:97:bd:c9:
50:11:b8:fa:65:5a:6e:ed:b7:89:01:e2:8b:b0:08:
20:9f:c7:44:b4:d5:11:2d:fd:3a:52:32:94:92:a6:
25:ad:96:f7:22:d1:d7:b2:70:c9:91:f7:0f:1b:d3:
f1:a1:e4:78:fb:70:f5:58:a4:48:5f:39:bf:0f:2c:
50:4f:cd:8d:90:54:7c:8b:0e:d5:74:ab:69:6f:f0:
ea:f6:8e:9f:d7:47:1e:bf:4a:f9:c7:58:a0:6e:3f:
fc:cd:ab:5f:ed:08:65:9c:33:e6:e9:3b:7c:56:56:
dd:58:0f:7b:3f:38:a2:f7:02:ff:9d:c6:c5:51:53:
32:d7:fe:07:83:55:d0:80:81:35:3f:6e:56:2c:63:
89:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:42:8E:4F:23:B3:40:97:85:D1:7B:14:DB:89:1A:8F:3E:49:D0:71
X509v3 Authority Key Identifier:
keyid:D0:BE:67:D0:45:B3:3F:05:A5:87:15:10:39:9E:70:9C:98:F6:D7:7D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36B70EF/8F798B325A6611EABB216F4BF8AEA228/0L5n0EWzPwWlhxUQOZ5wnJj2130.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/0L5n0EWzPwWlhxUQOZ5wnJj2130.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36B70EF/8F798B325A6611EABB216F4BF8AEA228/70076FD4A70B11EF8D62DB74762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.134.65.0/24
Signature Algorithm: sha256WithRSAEncryption
57:18:da:35:d7:ca:48:bf:9c:88:1c:8e:d5:87:7e:ca:f2:6d:
8c:3d:c8:9e:16:51:75:f4:99:f5:db:7c:09:45:91:ea:15:a3:
55:45:a8:a2:fa:92:6f:52:90:0c:df:cb:9a:1f:00:e3:c1:89:
d7:32:5c:97:48:75:f5:8e:55:68:f7:25:6c:80:d5:75:4f:51:
12:6c:05:74:b5:af:84:92:00:f3:a7:e4:7f:d6:11:68:6c:3a:
8b:21:7b:0b:2d:17:4b:18:db:ab:7e:40:27:b2:a5:de:78:2c:
63:39:c7:27:01:fd:bb:cd:c2:3d:4e:3a:5d:11:4b:3c:c7:82:
27:c4:92:15:05:b2:83:c1:b1:70:47:82:70:c3:1e:41:51:b1:
68:d3:24:39:b3:1b:5a:35:2b:98:5c:61:15:92:35:08:ff:1c:
f0:01:4e:2b:e9:44:a3:73:2f:9d:39:51:3a:21:80:0e:ed:c5:
30:71:a8:73:f2:31:d8:0c:92:89:13:ac:70:fd:31:db:5e:4a:
58:1f:a0:bb:66:55:dd:51:34:b8:a9:3f:fc:d8:74:47:5b:73:
44:65:e5:b1:41:90:e5:a8:c4:90:c4:55:8c:b0:e8:9e:42:d3:
d2:5e:22:99:bf:24:26:8e:8c:c6:4a:cb:6e:56:ba:24:6d:0b:
01:c8:79:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:05:21 2024 by rpki-client on console-ams.rpki-client.org