Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36B70EF/8F798B325A6611EABB216F4BF8AEA228/C67DA3FA616011EB8E25557BF8AEA228.roa
File: C67DA3FA616011EB8E25557BF8AEA228.roa (raw, json)
Hash identifier: lOtZThOqYZOrSs5z/Nz31HkfsJ0LpZIFin3wqJk1shU=
Subject key identifier: 37:04:90:64:A7:36:BC:B5:C7:11:43:B9:3B:47:9E:A0:0E:91:78:F2
Certificate issuer: /CN=F36B70EFAF/serialNumber=D0BE67D045B33F05A5871510399E709C98F6D77D
Certificate serial: 0163
Authority key identifier: D0:BE:67:D0:45:B3:3F:05:A5:87:15:10:39:9E:70:9C:98:F6:D7:7D
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/0L5n0EWzPwWlhxUQOZ5wnJj2130.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36B70EF/8F798B325A6611EABB216F4BF8AEA228/C67DA3FA616011EB8E25557BF8AEA228.roa
Signing time: Thu 28 Jan 2021 12:03:04 +0000
ROA not before: Thu 28 Jan 2021 12:02:59 +0000
ROA not after: Tue 01 Jan 2030 12:02:59 +0000
asID: 328337
IP address blocks: 102.134.66.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36B70EF/8F798B325A6611EABB216F4BF8AEA228/0L5n0EWzPwWlhxUQOZ5wnJj2130.crl
rsync://rpki.afrinic.net/repository/member_repository/F36B70EF/8F798B325A6611EABB216F4BF8AEA228/0L5n0EWzPwWlhxUQOZ5wnJj2130.mft
rsync://rpki.afrinic.net/repository/afrinic/0L5n0EWzPwWlhxUQOZ5wnJj2130.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 27 Apr 2024 00:04:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 355 (0x163)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36B70EFAF/serialNumber=D0BE67D045B33F05A5871510399E709C98F6D77D
Validity
Not Before: Jan 28 12:02:59 2021 GMT
Not After : Jan 1 12:02:59 2030 GMT
Subject: CN=6012a7f8-1444
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:ab:5e:fb:67:07:ce:58:33:ae:39:92:20:14:
ec:30:65:d1:7c:c5:ef:b8:8e:bc:df:6b:9f:19:24:
1f:28:45:23:a0:de:f3:67:ca:82:ca:12:fc:14:b4:
56:be:28:d1:32:3e:a3:2a:db:30:bd:c9:50:99:f7:
3d:a5:8f:78:83:b8:c4:a8:69:65:53:51:fc:bd:af:
f4:e2:e2:73:f3:0b:bc:df:d4:eb:d2:79:64:a1:67:
6d:b9:3d:27:62:f2:4d:6f:96:6c:c7:c4:8f:bb:6b:
98:0e:ca:63:ef:bb:10:14:8d:59:30:03:ff:63:a6:
8e:0d:11:6a:66:10:2c:1f:d8:51:c0:5d:df:ce:2f:
ab:4f:14:4b:b6:df:c6:86:6d:54:46:12:f9:e2:c4:
25:a3:2d:d7:0e:0d:87:2b:96:97:02:21:f1:7d:2b:
57:54:c4:84:4e:2a:7e:13:cd:63:61:e2:b0:f3:ce:
1c:2a:32:bc:bc:d7:a0:d7:3c:16:70:e7:a5:8b:8b:
1f:17:62:c8:3b:06:fa:33:e7:91:4b:63:fd:91:5b:
91:d8:3c:87:36:e8:b3:90:cd:d4:49:b2:3e:ad:d9:
f3:59:c3:eb:cb:8b:b8:e0:fd:49:56:98:ca:c3:52:
f8:e7:df:5b:80:11:90:b7:96:17:24:ad:50:2b:a0:
c8:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:04:90:64:A7:36:BC:B5:C7:11:43:B9:3B:47:9E:A0:0E:91:78:F2
X509v3 Authority Key Identifier:
keyid:D0:BE:67:D0:45:B3:3F:05:A5:87:15:10:39:9E:70:9C:98:F6:D7:7D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36B70EF/8F798B325A6611EABB216F4BF8AEA228/0L5n0EWzPwWlhxUQOZ5wnJj2130.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/0L5n0EWzPwWlhxUQOZ5wnJj2130.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36B70EF/8F798B325A6611EABB216F4BF8AEA228/C67DA3FA616011EB8E25557BF8AEA228.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.134.66.0/24
Signature Algorithm: sha256WithRSAEncryption
66:ce:57:87:9e:c8:06:b1:44:92:84:c5:60:33:a3:d3:a8:f6:
ec:bb:56:be:7f:d7:64:3e:ee:af:1f:60:c4:7e:d0:c8:89:e0:
34:9a:bd:0d:14:c4:a2:12:15:d9:14:9f:ea:04:7d:08:b8:e0:
21:06:3f:25:64:d3:41:17:b9:55:e3:d2:d1:8d:f7:64:c4:85:
35:af:9c:83:9d:6d:56:99:47:41:98:da:8f:90:14:e9:17:17:
62:ce:e6:fc:de:17:48:a3:46:d6:85:73:d7:f7:cc:d5:fe:cb:
26:b0:94:41:1c:c8:b4:4f:9b:c8:33:02:06:e8:65:d9:19:71:
d8:81:c4:5c:db:6d:ff:ef:03:b8:5f:2c:8f:f0:56:5a:69:7d:
94:c2:78:47:a4:50:0a:c9:bc:c0:87:f0:05:0b:7c:1f:cc:31:
64:23:30:82:22:17:98:21:c9:83:dc:21:6a:b1:7e:21:f8:13:
13:ae:01:13:60:f6:95:73:fe:6e:0a:59:6b:dd:7c:ae:72:33:
64:19:ad:03:f5:2e:6c:1d:bd:f1:2c:98:7c:8f:cb:72:f0:0a:
0a:33:a6:38:a6:b2:83:c6:6c:f5:25:1e:03:c9:9b:17:1a:bb:
9f:46:51:ff:e2:f9:33:3b:71:21:8b:69:d3:46:63:09:b2:58:
57:63:14:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 25 02:05:22 2024 by rpki-client on console-fra.rpki-client.org