Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36B9B8F/84E1F6DC440411EFA393C656762E951A/7921BA68440811EFB7E56F6E762E951A.roa
File: 7921BA68440811EFB7E56F6E762E951A.roa (raw, json)
Hash identifier: OFKWVelsleyjCktlWeukpXxjLHKBpGPL6o0/dWVRFWo=
Subject key identifier: 9F:BF:53:E0:B6:A6:DA:E6:B5:72:96:55:45:F8:DA:11:18:BA:BE:BF
Certificate issuer: /CN=F36B9B8FAF/serialNumber=7F90DB1835F9EA7963A2794F5C3254358DF43EF4
Certificate serial: 03
Authority key identifier: 7F:90:DB:18:35:F9:EA:79:63:A2:79:4F:5C:32:54:35:8D:F4:3E:F4
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/f5DbGDX56nljonlPXDJUNY30PvQ.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36B9B8F/84E1F6DC440411EFA393C656762E951A/7921BA68440811EFB7E56F6E762E951A.roa
Signing time: Wed 17 Jul 2024 06:47:46 +0000
ROA not before: Wed 17 Jul 2024 06:47:42 +0000
ROA not after: Mon 31 Jul 2034 06:47:42 +0000
asID: 329322
IP address blocks: 102.211.68.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36B9B8F/84E1F6DC440411EFA393C656762E951A/f5DbGDX56nljonlPXDJUNY30PvQ.crl
rsync://rpki.afrinic.net/repository/member_repository/F36B9B8F/84E1F6DC440411EFA393C656762E951A/f5DbGDX56nljonlPXDJUNY30PvQ.mft
rsync://rpki.afrinic.net/repository/afrinic/f5DbGDX56nljonlPXDJUNY30PvQ.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 26 Oct 2024 00:05:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3 (0x3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36B9B8FAF/serialNumber=7F90DB1835F9EA7963A2794F5C3254358DF43EF4
Validity
Not Before: Jul 17 06:47:42 2024 GMT
Not After : Jul 31 06:47:42 2034 GMT
Subject: CN=66976911-a3b0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:a3:51:4d:84:d5:ea:9e:59:e1:a1:6f:2f:2b:
29:f4:b9:a6:cc:d1:9b:16:2c:fc:b7:ba:85:e5:de:
1e:56:24:25:ef:32:ab:f4:9c:d9:8d:21:6f:8a:2f:
a3:c8:39:7e:a4:5a:d1:97:f4:5e:65:20:44:55:a6:
d5:79:0f:46:7a:8a:82:26:74:10:60:3a:62:7b:ea:
5d:3d:97:87:92:f2:f1:f5:19:9c:7a:4d:ac:b1:a3:
7a:75:be:67:67:82:52:fc:7c:a7:f5:c9:64:7e:4c:
dc:e0:a5:fc:4a:4e:07:ea:59:d8:c4:6c:d4:0d:9f:
17:40:ab:c8:c9:e3:cf:d9:de:9f:ec:bd:20:cd:7e:
db:62:51:eb:31:04:ac:9c:bc:5b:62:04:a8:7d:d3:
62:b8:65:98:f7:ec:00:b8:0f:8f:f3:9f:35:6e:ee:
ac:25:c0:ec:bd:a4:79:6d:c4:77:81:33:fe:7e:65:
1e:6c:c4:a6:e8:80:21:5f:09:0a:04:00:45:ec:d9:
72:19:d2:cb:e7:0a:cf:08:ce:18:83:d1:1b:91:e9:
a3:8e:6e:1f:c8:d3:09:e1:ee:97:de:56:0a:c7:b9:
7c:ca:7c:5c:57:50:40:88:95:77:1b:94:21:5c:29:
0d:45:cb:a5:c1:25:ed:a9:6e:3f:88:dd:7b:89:5d:
26:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:BF:53:E0:B6:A6:DA:E6:B5:72:96:55:45:F8:DA:11:18:BA:BE:BF
X509v3 Authority Key Identifier:
keyid:7F:90:DB:18:35:F9:EA:79:63:A2:79:4F:5C:32:54:35:8D:F4:3E:F4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36B9B8F/84E1F6DC440411EFA393C656762E951A/f5DbGDX56nljonlPXDJUNY30PvQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/f5DbGDX56nljonlPXDJUNY30PvQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36B9B8F/84E1F6DC440411EFA393C656762E951A/7921BA68440811EFB7E56F6E762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.211.68.0/22
Signature Algorithm: sha256WithRSAEncryption
1b:0d:13:e9:ae:8b:14:87:e6:a3:29:19:06:48:5b:bd:d7:43:
af:78:44:54:90:00:00:ea:14:ee:97:07:0e:39:a2:7d:df:3b:
f1:c0:67:c4:33:74:60:9b:8b:00:2f:a1:e8:51:bb:8f:f1:73:
26:c8:47:e5:ec:29:7d:55:cc:be:ce:69:dc:ab:8d:f6:cc:cd:
89:14:cf:45:44:73:d1:c3:ec:8b:9f:ab:a4:62:58:72:23:a1:
cd:9e:db:71:7d:8d:ee:ae:2b:55:e5:d6:35:9a:14:17:55:42:
1d:65:b8:1f:c3:c3:c5:0b:57:f0:fc:be:8f:0e:31:70:84:75:
d3:b8:58:03:3e:23:55:31:aa:b2:a5:96:55:7a:24:1c:07:ac:
1a:d8:17:0b:84:e8:ef:db:91:5d:2c:6e:0c:4e:90:5c:67:91:
59:07:ec:13:bc:5e:f8:17:7b:89:15:ae:7c:9b:5b:1c:23:a6:
0a:a4:8a:78:72:87:d9:62:bd:70:aa:6b:f8:fa:bb:f5:31:6f:
87:65:91:75:f7:62:4e:9b:f5:50:c1:b6:fd:58:6e:7b:0e:22:
6d:02:0a:a1:82:17:15:38:09:f9:d8:b7:45:ec:f4:32:ca:03:
4d:36:38:98:23:62:f5:dc:78:47:bc:6a:14:c0:c7:5c:82:ee:
fd:ff:ad:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Oct 24 06:47:50 2024 by rpki-client on console-fra.rpki-client.org