Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/05A419E2B42F11EDA4251480F1222468.roa
File: 05A419E2B42F11EDA4251480F1222468.roa (raw, json)
Hash identifier: j0SX+inueRaOk8pk5shKWe/CdN9UrfYhIb7IonWTQdU=
Subject key identifier: AD:7E:E7:EB:EE:52:73:64:D3:A9:47:65:C4:00:B3:AD:75:56:41:7C
Certificate issuer: /CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Certificate serial: 0A88
Authority key identifier: 48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/05A419E2B42F11EDA4251480F1222468.roa
Signing time: Fri 24 Feb 2023 10:35:57 +0000
ROA not before: Fri 24 Feb 2023 10:35:53 +0000
ROA not after: Sat 22 Feb 2025 10:35:53 +0000
asID: 61317
IP address blocks: 102.129.221.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.mft
rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 22 Apr 2024 00:04:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2696 (0xa88)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Validity
Not Before: Feb 24 10:35:53 2023 GMT
Not After : Feb 22 10:35:53 2025 GMT
Subject: CN=63f8930d-5ea0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:bb:3b:c7:41:f2:c5:1e:f5:5c:4d:b5:7d:5a:
e7:b6:98:50:8f:4c:00:09:09:cb:b5:3e:d8:9d:ab:
d1:b7:dd:ca:c1:dc:7b:25:e7:3c:be:5d:a0:e9:f5:
a2:14:9e:be:c1:13:51:87:11:7c:f6:53:11:bd:1f:
ef:a2:ed:73:b3:12:df:57:95:66:9e:8c:95:68:25:
bd:af:3d:72:43:8c:02:ea:e3:83:55:e3:10:11:6f:
4d:eb:7d:5e:47:71:90:96:d5:e2:c5:c5:06:f6:36:
5f:8a:0f:82:ed:ef:eb:7b:88:9f:57:6b:32:05:52:
bb:cc:11:bf:5c:2e:69:31:36:e2:19:1b:97:6c:58:
95:a7:5a:da:22:34:ae:3c:b3:b1:14:63:5a:b2:18:
db:65:6c:b2:cb:fd:55:4b:d4:55:d9:62:65:71:52:
68:f2:ac:d8:50:72:7c:78:d3:d6:f7:dc:06:13:5e:
24:0e:cb:c1:f7:9d:20:91:d9:3a:ae:7c:8b:37:76:
50:71:27:8a:f1:c7:7e:4e:fc:62:de:30:54:79:b5:
6b:8d:96:10:ec:6e:88:73:8c:04:77:35:a4:c8:67:
9c:29:2e:95:66:60:25:30:23:0c:8e:48:c3:15:9c:
99:b6:d8:e8:54:b3:19:ee:da:db:c5:dc:fc:d2:33:
f3:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:7E:E7:EB:EE:52:73:64:D3:A9:47:65:C4:00:B3:AD:75:56:41:7C
X509v3 Authority Key Identifier:
keyid:48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/05A419E2B42F11EDA4251480F1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.129.221.0/24
Signature Algorithm: sha256WithRSAEncryption
93:93:f2:19:e9:cc:29:b7:33:65:60:ee:47:f5:9a:1a:74:f4:
37:e7:74:00:a5:b7:2c:97:b5:92:f0:33:10:51:c7:f0:7e:b8:
8e:5b:67:f6:fa:9e:b1:ff:f4:12:f9:e8:3b:d8:8e:be:64:33:
12:34:83:e8:64:98:5e:42:7e:cd:39:7b:a8:d4:81:ca:74:b6:
ab:fd:45:4b:82:98:71:c6:d8:f2:08:6b:f6:f0:1a:85:2f:45:
08:fb:80:aa:63:1a:95:8e:95:cd:19:47:08:46:e0:fb:9a:87:
e7:31:18:2f:fa:68:0a:74:5a:f2:bd:6f:fe:f5:cc:f2:0d:58:
28:17:2e:42:45:7b:88:50:a4:e0:97:fa:ff:39:90:2e:c7:4e:
4f:45:34:95:9a:09:67:bd:33:92:1b:c7:0c:00:7e:b0:1d:6c:
ba:73:1f:7b:e5:10:6d:14:1b:aa:21:5d:36:66:61:8c:11:1b:
16:86:ec:bd:b9:26:d3:71:07:7f:05:d9:aa:d1:da:d4:f5:26:
13:bb:e6:5f:17:8c:d8:6c:87:72:d9:0a:b2:a6:9f:30:16:03:
f3:6c:de:3b:de:61:f0:aa:5a:4b:fd:af:60:9b:65:de:5a:09:
ce:87:a9:52:c8:d0:84:87:8b:bd:b6:76:cf:30:db:7c:81:c1:
26:b6:9a:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 20 02:39:36 2024 by rpki-client on console-ams.rpki-client.org