Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/0C33FE1CBFEC11ED8068F284F1222468.roa
File: 0C33FE1CBFEC11ED8068F284F1222468.roa (raw, json)
Hash identifier: wsgQvToTtafvuFkJlJzo3HzKguHq8bisV+HsFjWnh/U=
Subject key identifier: 4A:0F:51:D8:0B:47:26:8B:9F:3D:4B:36:7C:81:0C:EB:04:2A:0C:79
Certificate issuer: /CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Certificate serial: 0AC6
Authority key identifier: 48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/0C33FE1CBFEC11ED8068F284F1222468.roa
Signing time: Sat 11 Mar 2023 09:06:46 +0000
ROA not before: Sat 11 Mar 2023 09:06:40 +0000
ROA not after: Sat 08 Mar 2025 09:06:40 +0000
asID: 266400
IP address blocks: 102.165.25.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.mft
rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2758 (0xac6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Validity
Not Before: Mar 11 09:06:40 2023 GMT
Not After : Mar 8 09:06:40 2025 GMT
Subject: CN=640c44a6-91d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:37:f7:0c:9b:8b:93:85:50:80:79:94:88:fa:
1b:6b:84:75:98:5b:d2:dd:bb:67:42:e0:5a:23:54:
cd:99:02:16:83:be:07:49:a4:dd:12:0f:40:18:5e:
86:36:24:e7:dd:5b:ae:55:9d:44:2a:a6:a9:03:66:
98:b3:7a:82:99:df:bc:72:fb:03:ae:fc:da:8c:e4:
4a:73:d3:b1:ec:d9:51:c8:1a:c7:f8:9b:e6:d0:59:
5a:5f:30:52:a1:a7:b4:5d:72:ed:21:8b:fe:ad:6c:
2a:b4:2c:e3:ab:21:06:64:16:5b:dc:d1:7a:e5:61:
b8:7c:42:9b:0c:d0:40:3f:23:af:0c:85:27:27:1b:
24:ad:7b:5c:47:96:de:aa:26:92:c1:07:c3:40:70:
6f:4e:2a:18:00:c6:47:92:9c:d2:0f:80:ea:cc:3e:
a6:0e:f4:41:ce:01:0f:2f:ff:d4:06:cc:71:bf:7f:
8a:be:95:d9:f1:c3:0f:51:99:d5:9d:1b:78:a2:ae:
9c:2d:9b:46:51:97:86:67:4d:2c:7b:9c:53:58:80:
79:eb:67:25:53:d9:3e:f9:a3:bb:11:78:08:92:c9:
87:f4:11:e9:c5:c4:4c:28:a7:19:a4:4b:8a:34:b4:
68:d2:0f:2b:2c:81:c3:5b:74:d3:cf:e4:8f:60:07:
32:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:0F:51:D8:0B:47:26:8B:9F:3D:4B:36:7C:81:0C:EB:04:2A:0C:79
X509v3 Authority Key Identifier:
keyid:48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/0C33FE1CBFEC11ED8068F284F1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.165.25.0/24
Signature Algorithm: sha256WithRSAEncryption
cd:7e:c1:1d:62:90:8f:0d:45:4c:c4:fd:c2:39:72:d8:37:96:
9a:a3:c9:96:ff:78:31:9a:a0:73:3a:a8:96:39:27:8c:96:ce:
aa:af:65:f4:58:d8:2d:25:97:37:df:c5:42:29:fd:ac:83:30:
c6:78:08:d6:83:5a:a7:8a:45:94:68:cc:a0:83:14:a5:79:26:
79:8d:dd:fa:ae:33:82:c7:87:06:21:57:a0:de:02:dd:35:a3:
22:63:a3:94:c9:4a:c5:a7:47:7b:ea:d6:ee:ad:85:6b:61:d1:
c3:96:2b:d7:59:32:ed:2c:00:ec:4f:6e:3f:dd:6d:9e:fb:f1:
ff:89:a7:97:8e:2b:ff:81:8d:45:cb:52:e3:62:7f:7f:f2:71:
11:a5:25:73:13:1c:35:b1:44:7f:ff:ec:35:5a:a1:8c:0d:1b:
cf:b1:4a:1c:c5:6a:7e:e9:70:ba:46:c7:cc:ab:e8:80:a1:6c:
e3:47:a1:b2:da:f0:fd:f2:f5:ac:52:d3:0c:ba:36:37:55:71:
e4:ba:f8:88:bd:3a:56:f9:b8:66:b9:79:fc:dd:af:bf:75:8c:
e7:7a:1f:d4:2b:19:6d:f4:97:92:c8:1f:1f:b9:58:c6:c4:d2:
21:27:b1:92:dd:e1:85:18:04:86:9a:2a:93:94:83:e3:49:83:
bd:73:c5:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 01:30:20 2024 by rpki-client on console-fra.rpki-client.org