Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36C588D/F2684ACA060C11EFAC45D53B017001B1/F6F6560C060E11EFB4E35F4C017001B1.roa
File: F6F6560C060E11EFB4E35F4C017001B1.roa (raw, json)
Hash identifier: GSvLQkr/waoSrA3GVFmHcevF4Ot+nEJtFB+O9JL751k=
Subject key identifier: 52:73:D9:3A:D3:84:89:53:A4:C0:CB:74:DA:F6:08:AB:A5:95:AE:1B
Certificate issuer: /CN=F36C588DAF/serialNumber=5969DCFB1154C14E0DD37D540ABE399070C059A1
Certificate serial: 02
Authority key identifier: 59:69:DC:FB:11:54:C1:4E:0D:D3:7D:54:0A:BE:39:90:70:C0:59:A1
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/WWnc-xFUwU4N031UCr45kHDAWaE.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36C588D/F2684ACA060C11EFAC45D53B017001B1/F6F6560C060E11EFB4E35F4C017001B1.roa
Signing time: Mon 29 Apr 2024 09:58:01 +0000
ROA not before: Mon 29 Apr 2024 09:57:58 +0000
ROA not after: Sat 29 Apr 2034 09:57:58 +0000
asID: 206283
IP address blocks: 102.215.192.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36C588D/F2684ACA060C11EFAC45D53B017001B1/WWnc-xFUwU4N031UCr45kHDAWaE.crl
rsync://rpki.afrinic.net/repository/member_repository/F36C588D/F2684ACA060C11EFAC45D53B017001B1/WWnc-xFUwU4N031UCr45kHDAWaE.mft
rsync://rpki.afrinic.net/repository/afrinic/WWnc-xFUwU4N031UCr45kHDAWaE.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2 (0x2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36C588DAF/serialNumber=5969DCFB1154C14E0DD37D540ABE399070C059A1
Validity
Not Before: Apr 29 09:57:58 2024 GMT
Not After : Apr 29 09:57:58 2034 GMT
Subject: CN=662f6f29-7aac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:ef:d3:84:21:48:b2:0c:9d:fb:25:cb:d2:fe:
2b:84:f3:5b:45:ec:b7:c4:5b:8d:5b:60:32:c0:aa:
ef:4d:70:44:6e:e9:5e:43:2e:96:39:3a:ff:ee:5c:
12:54:3d:65:9b:ec:15:29:ca:f0:76:7c:9e:e0:3b:
3a:fc:09:98:99:d1:23:77:55:b4:57:a9:bd:ea:81:
1d:ba:22:63:ed:11:54:b3:73:23:46:6d:37:79:be:
dc:f1:6a:ea:82:dd:e7:19:39:92:30:ef:45:e4:9a:
11:64:1c:16:d4:f7:71:39:ce:20:87:b0:11:89:b7:
45:ae:d5:d5:65:a4:a3:34:25:4b:21:37:6d:16:e6:
f9:a1:4f:5d:c5:8b:a4:dc:43:57:06:1c:fe:83:02:
3a:a1:67:e4:e2:a2:79:21:7b:1f:ed:da:5b:86:a0:
ed:ba:54:1e:94:9c:8d:3f:df:96:b0:c8:34:8d:18:
d1:9a:ef:f9:f1:e9:b4:ed:d0:a5:76:a6:f7:dc:00:
76:42:9c:b7:1c:e9:02:96:fa:19:d6:f0:39:46:6a:
9c:53:f8:1c:c3:38:b1:04:73:a0:85:9c:d9:91:d2:
ba:39:7b:c9:4e:ae:65:7f:45:ad:92:0d:67:36:12:
18:ec:62:6e:38:c9:34:8c:5b:72:8a:43:35:ec:08:
b8:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:73:D9:3A:D3:84:89:53:A4:C0:CB:74:DA:F6:08:AB:A5:95:AE:1B
X509v3 Authority Key Identifier:
keyid:59:69:DC:FB:11:54:C1:4E:0D:D3:7D:54:0A:BE:39:90:70:C0:59:A1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36C588D/F2684ACA060C11EFAC45D53B017001B1/WWnc-xFUwU4N031UCr45kHDAWaE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/WWnc-xFUwU4N031UCr45kHDAWaE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36C588D/F2684ACA060C11EFAC45D53B017001B1/F6F6560C060E11EFB4E35F4C017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.215.192.0/22
Signature Algorithm: sha256WithRSAEncryption
74:dc:43:1b:4a:9d:f5:e0:75:17:02:f9:6a:4a:96:c1:a5:32:
84:e0:45:93:06:86:8c:ac:5a:c2:ee:2a:3b:25:64:a5:70:c3:
be:65:63:ec:76:da:7b:85:7f:13:53:ea:0c:8c:da:59:a6:bb:
2f:03:97:19:17:5a:27:ab:a1:65:65:83:41:ff:5c:49:33:85:
15:bf:4c:e4:d0:e0:c8:1b:38:09:e1:46:52:ee:38:7e:31:c7:
da:9d:13:37:91:ab:d7:a0:ca:b6:c1:18:a7:0b:ce:ea:e2:13:
13:b6:94:66:3a:70:ca:c9:4f:45:4b:fe:98:27:7a:af:70:a9:
9f:68:8a:79:06:53:7f:6d:34:9b:0f:45:f8:e3:5f:f0:d4:1a:
60:a3:b2:3e:76:c4:7e:63:05:2a:b1:b6:2e:5d:78:93:63:67:
aa:4a:5a:84:d8:b3:ff:29:25:3f:f0:15:60:5f:ad:6a:00:2b:
49:4c:7d:e6:1a:53:6a:a2:24:c5:d2:32:44:2c:7a:96:91:24:
45:fa:3b:61:6a:a0:7f:c5:f2:3e:46:99:53:81:97:53:71:f1:
fe:b1:9f:36:28:7b:30:ad:32:82:88:6a:78:6a:94:53:70:18:
85:e7:3a:7d:57:98:72:9d:cf:e0:d7:92:73:b0:08:da:b8:e6:
cd:7e:45:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 03:52:59 2024 by rpki-client on console-fra.rpki-client.org