Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/099E2CD8E78F11EE9A769D78775412E6.roa
File: 099E2CD8E78F11EE9A769D78775412E6.roa (raw, json)
Hash identifier: nvvurHVnAQo25MO6E4ptQMh1Qp75rsCgmNMY1LEO7QM=
Subject key identifier: 63:E5:0D:57:F2:A9:67:02:6F:5E:F3:87:89:6C:31:C7:BF:27:A7:00
Certificate issuer: /CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Certificate serial: 0FE9
Authority key identifier: 48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/099E2CD8E78F11EE9A769D78775412E6.roa
Signing time: Thu 21 Mar 2024 14:26:42 +0000
ROA not before: Thu 21 Mar 2024 14:26:39 +0000
ROA not after: Sat 21 Mar 2026 14:26:39 +0000
asID: 29802
IP address blocks: 102.129.220.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.mft
rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 18 Feb 2025 00:06:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4073 (0xfe9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36C58D6AF
Validity
Not Before: Mar 21 14:26:39 2024 GMT
Not After : Mar 21 14:26:39 2026 GMT
Subject: CN=65fc43a2-2fd0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:62:fe:40:af:72:8c:cf:8c:56:1f:f3:d5:5d:
33:8c:98:2d:e0:7b:e9:6b:26:d0:52:49:2f:d6:9c:
8e:5a:b4:6e:29:58:cb:42:99:89:62:5d:a4:00:fe:
99:27:0a:af:eb:3b:ea:d3:63:3a:e7:44:a1:a0:7b:
d6:a0:64:1a:e4:c9:d8:51:6a:4c:81:1e:10:db:21:
01:23:e1:c3:f2:0d:8a:fb:30:c7:7a:68:2f:1e:84:
1c:b7:90:4c:64:a3:70:4f:21:8e:3d:7f:70:b4:5f:
0c:c0:0f:69:f0:6f:8b:86:5c:cc:95:f6:a0:60:54:
93:73:a5:07:95:b3:17:7e:b2:30:b9:26:07:2e:af:
d2:31:e0:5b:83:a1:93:a3:91:78:d4:fb:28:84:09:
c8:49:68:2e:86:a5:ca:73:77:3f:18:10:7d:f9:0a:
1c:c9:cd:99:a6:ec:8e:ac:92:aa:03:3e:c2:44:c7:
8f:3a:29:e6:d8:9c:36:a9:ed:f5:99:95:9c:a4:4b:
6c:c9:c4:d4:12:0a:af:e5:21:06:16:10:bb:64:7e:
51:ed:85:eb:62:8f:4f:36:fc:73:6d:8e:46:82:a8:
cd:f2:f9:15:74:25:cf:1b:5a:5f:2a:4e:8a:b1:9d:
f3:a7:63:6e:b8:f0:45:3e:15:3d:14:7c:fd:70:ac:
aa:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:E5:0D:57:F2:A9:67:02:6F:5E:F3:87:89:6C:31:C7:BF:27:A7:00
X509v3 Authority Key Identifier:
keyid:48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/099E2CD8E78F11EE9A769D78775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.129.220.0/24
Signature Algorithm: sha256WithRSAEncryption
d1:2d:24:6f:97:31:8a:40:eb:65:ad:92:3a:1e:ca:06:e1:9d:
ac:77:1b:3c:1b:46:3b:87:15:0f:9e:8c:e1:4a:a1:9c:d4:fb:
e7:c3:a1:6f:4b:57:8b:0b:72:46:38:b8:23:83:67:ec:16:df:
04:9b:cc:e5:b8:b4:89:cb:b3:95:99:80:2c:63:6b:ab:04:42:
9b:26:94:f6:2e:c1:54:f1:93:41:51:47:b4:4d:78:aa:f9:37:
65:6f:e3:61:75:b5:eb:11:d2:67:db:20:a9:d9:fb:f2:b0:8b:
cb:c6:56:71:cf:47:57:09:6d:f0:71:10:74:91:91:0e:d8:c9:
af:1e:ef:58:6d:eb:ca:73:ff:f9:2b:93:c1:67:dd:eb:57:04:
0b:cd:ac:90:26:61:cd:00:7c:d8:85:73:03:cd:36:c8:b8:2b:
e5:f3:5b:e2:02:a9:91:38:eb:db:3f:7d:aa:75:00:f0:e2:bc:
2a:7f:87:c9:d0:3f:ec:90:b0:e4:72:97:08:f8:1f:d2:a3:95:
48:71:5b:3a:97:0d:c2:ae:3a:aa:fb:8d:76:da:ab:59:1d:72:
d9:3e:2d:85:d8:28:3d:62:61:11:82:83:08:ba:36:05:fc:c5:
63:e5:04:38:8f:bf:1d:ed:85:a4:38:ed:71:5a:93:f8:cb:ff:
07:48:0b:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 15:19:49 2025 by rpki-client