Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/1B8B7F14A95411EE98CE3B67775412E6.roa
File: 1B8B7F14A95411EE98CE3B67775412E6.roa (raw, json)
Hash identifier: QqZY0YYSP3ujnPTEMoOKVVHfmRFbP2K50ihz1yOi+98=
Subject key identifier: 98:F3:8D:54:00:96:57:21:0A:BD:1F:E6:2D:45:B2:D5:3B:60:7F:10
Certificate issuer: /CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Certificate serial: 0EB9
Authority key identifier: 48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/1B8B7F14A95411EE98CE3B67775412E6.roa
Signing time: Tue 02 Jan 2024 09:48:40 +0000
ROA not before: Tue 02 Jan 2024 09:48:37 +0000
ROA not after: Sat 03 Jan 2026 09:48:37 +0000
asID: 6315
IP address blocks: 102.129.218.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.mft
rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 06 May 2024 00:04:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3769 (0xeb9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Validity
Not Before: Jan 2 09:48:37 2024 GMT
Not After : Jan 3 09:48:37 2026 GMT
Subject: CN=6593dbf8-799b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:04:18:11:e3:ec:f9:7c:43:3f:e9:13:1d:ab:
c9:ab:bb:38:a6:69:3a:8d:0a:11:41:03:07:64:07:
0a:8a:8b:3f:3f:b0:cc:61:89:ac:51:05:3a:d9:26:
29:46:14:2d:d7:1d:d1:63:cd:f3:60:0e:99:55:24:
32:85:d2:de:53:0b:b5:e7:25:b2:1f:a8:6d:45:ca:
c6:7b:74:0c:e7:e4:72:ea:cb:80:c4:e7:30:55:2d:
46:5d:bc:58:93:3b:05:23:f6:8c:fd:0b:a0:bc:8e:
63:1e:78:59:47:f0:34:9d:3b:db:df:b6:22:c0:7d:
86:ce:61:5c:ab:05:76:f3:82:6d:a1:8e:94:9a:b7:
cc:5b:64:ea:9c:6e:0e:6d:f3:c6:33:5f:ba:97:c9:
cf:6e:94:82:93:e0:ae:20:c6:6c:4c:3b:ce:a6:e9:
62:c0:63:61:e4:f3:33:00:b4:df:c9:dd:09:3f:73:
1e:f8:1d:ae:8d:9c:52:03:19:63:6a:17:20:7f:a1:
cd:4c:5b:ad:8e:95:95:e8:59:92:cf:9c:fe:44:1a:
07:88:d3:96:c8:e3:94:2d:24:05:54:61:f3:8d:20:
75:b2:8c:a6:64:8b:95:eb:d5:cb:f3:ed:48:ec:de:
e7:98:8a:f3:0a:47:87:0c:e5:5d:2f:1e:3d:70:f9:
8d:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:F3:8D:54:00:96:57:21:0A:BD:1F:E6:2D:45:B2:D5:3B:60:7F:10
X509v3 Authority Key Identifier:
keyid:48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/1B8B7F14A95411EE98CE3B67775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.129.218.0/24
Signature Algorithm: sha256WithRSAEncryption
34:2a:dd:b6:4e:e0:ae:0e:e9:ad:4c:fd:e9:8b:38:4a:95:24:
8a:e4:4a:da:95:d9:4f:42:26:6a:1b:3a:17:7f:dc:13:15:5d:
ce:fa:90:e9:3e:ad:f2:8a:f8:be:c3:d7:24:01:0e:55:a3:08:
47:6a:88:7c:c8:d7:d9:0e:6a:f5:0e:17:a3:22:c8:57:00:c4:
f3:40:a1:80:b2:06:50:da:75:3d:c1:12:45:ff:d1:e9:5d:11:
e7:73:4c:b5:5e:5c:6c:32:55:5b:ee:c3:a5:67:ed:7b:54:6b:
99:92:d1:90:d0:56:14:12:7e:7a:fe:9f:b5:96:a8:c5:1b:d4:
d4:bf:09:f0:c0:a6:6e:bb:ab:6e:41:19:89:c7:48:fc:bf:da:
70:10:99:d5:99:00:50:32:93:76:a9:07:f7:fb:f4:c5:cc:72:
9d:7b:62:c2:e6:93:63:a9:99:18:6f:a1:24:be:2b:5c:bf:22:
25:8c:24:f8:28:49:e0:69:54:d4:45:c5:c6:84:4e:28:7a:5c:
d5:90:5a:91:d2:3e:f2:8d:fc:ba:3c:d1:9d:d1:b8:71:a1:6e:
da:40:1b:ff:3e:51:e2:22:38:86:1e:eb:4f:1c:37:05:a1:25:
63:b9:9e:8a:30:bf:0e:3f:2f:2f:0f:b5:18:e8:a4:3f:07:e2:
9e:75:02:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 4 02:37:58 2024 by rpki-client on console-fra.rpki-client.org