Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/0E3D8884E78E11EE8C3E9872775412E6.roa
File: 0E3D8884E78E11EE8C3E9872775412E6.roa (raw, json)
Hash identifier: oJtVSsEoI26ovb+1lN55xLAgMGc04sBpOsFS4cePy4Q=
Subject key identifier: 71:3F:CB:57:CE:11:27:88:FD:C3:9D:7F:CB:A1:02:78:22:60:69:97
Certificate issuer: /CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Certificate serial: 0FE7
Authority key identifier: 48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/0E3D8884E78E11EE8C3E9872775412E6.roa
Signing time: Thu 21 Mar 2024 14:19:41 +0000
ROA not before: Thu 21 Mar 2024 14:19:36 +0000
ROA not after: Sat 21 Mar 2026 14:19:36 +0000
asID: 61317
IP address blocks: 102.129.220.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.mft
rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4071 (0xfe7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Validity
Not Before: Mar 21 14:19:36 2024 GMT
Not After : Mar 21 14:19:36 2026 GMT
Subject: CN=65fc41fc-4dc4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:05:1a:b6:ce:7c:8e:b1:e2:b2:e8:f7:e1:36:
ae:7e:05:21:81:39:37:be:7c:11:e7:64:82:a8:fa:
8d:0f:12:bc:fd:bc:d0:03:de:9a:ec:fd:a5:04:96:
1e:bf:65:b5:e7:3f:52:93:be:07:25:de:b3:a1:f2:
96:61:40:a6:a8:50:f8:b3:d5:17:69:96:cb:67:11:
50:94:21:aa:0f:0c:a6:90:b1:4e:8b:e0:f3:ac:1c:
b6:73:fc:b4:c4:14:9d:15:59:cd:4e:72:89:f9:78:
2c:b1:a1:b8:ba:37:f5:a1:08:43:de:d9:77:5f:f6:
0e:4b:d4:2c:56:6e:2a:cb:09:e0:38:19:2f:46:ac:
51:a1:18:54:01:bf:d4:ee:c6:3e:cb:dd:7e:07:b6:
be:b1:c3:e3:d7:55:80:29:32:fe:62:a3:ed:86:dc:
91:1a:1c:ef:24:92:f9:ad:f9:8a:99:04:d7:1f:4e:
8f:68:4a:b8:2d:61:c7:2e:6f:cd:d4:d9:3d:1f:29:
68:d3:41:19:74:f4:4c:55:93:b5:07:e5:79:b7:d8:
84:9d:1f:34:31:6a:79:e6:67:7f:89:c7:06:3c:c8:
4b:19:31:ee:ed:c3:55:41:28:55:ab:8a:21:bc:dd:
3a:4c:4f:f9:14:f0:08:62:a3:eb:09:e7:3a:92:cb:
3b:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:3F:CB:57:CE:11:27:88:FD:C3:9D:7F:CB:A1:02:78:22:60:69:97
X509v3 Authority Key Identifier:
keyid:48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/0E3D8884E78E11EE8C3E9872775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.129.220.0/24
Signature Algorithm: sha256WithRSAEncryption
7e:4b:d8:b7:2a:24:84:dd:01:d8:9c:5f:ef:ab:85:fa:bb:5a:
fa:51:3f:58:d6:76:2d:4b:2b:b1:92:4c:8a:8d:52:27:12:d6:
8e:57:1b:f4:bb:56:59:fe:75:d4:f0:f7:07:4e:78:2c:be:0d:
fb:3f:42:b5:ea:ec:c0:77:a4:5f:fd:18:59:5c:d6:91:c6:0a:
8d:96:ca:d1:ca:5c:55:e6:61:3a:ff:f6:2e:e0:1b:e7:d0:dd:
86:69:b1:bd:9d:af:89:f7:2f:9e:7a:82:c1:16:a3:4e:61:16:
c1:fd:56:c1:63:0f:56:db:7d:85:df:0e:56:08:06:e9:98:45:
1b:9c:40:46:40:ff:ed:00:d3:ea:7c:b4:aa:9a:a3:63:86:80:
8b:5f:f4:83:62:8e:45:a8:c4:99:92:3a:91:77:82:ac:61:a6:
59:05:0b:2f:b2:27:7d:20:cb:6b:ec:ea:5a:e0:79:b5:59:02:
15:58:af:0b:28:d6:12:4e:d0:a9:c6:57:10:4b:16:de:42:9f:
30:5e:9a:40:d7:14:8b:ee:22:f8:28:d5:cd:f7:8a:0d:4b:03:
13:65:71:e3:9c:99:ce:91:61:af:cb:d9:3b:e6:a1:59:5d:cf:
de:8f:8e:7e:6e:98:70:b2:bd:ea:44:6f:62:58:7f:ed:f3:23:
71:01:15:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 01:30:20 2024 by rpki-client on console-fra.rpki-client.org