Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/21A61728E5E111EE9380224E775412E6.roa
File: 21A61728E5E111EE9380224E775412E6.roa (raw, json)
Hash identifier: fxtoIDBxBZtLGgCeg3j26WrbbM93EI51zQ5SK6h3iJM=
Subject key identifier: E0:BE:2B:0E:D7:C6:04:F4:24:A4:A9:1C:05:5B:9C:B9:51:08:0B:D4
Certificate issuer: /CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Certificate serial: 0FDD
Authority key identifier: 48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/21A61728E5E111EE9380224E775412E6.roa
Signing time: Tue 19 Mar 2024 11:09:19 +0000
ROA not before: Tue 19 Mar 2024 11:09:15 +0000
ROA not after: Thu 19 Mar 2026 11:09:15 +0000
asID: 397423
IP address blocks: 102.129.150.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.mft
rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 06 May 2024 00:04:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4061 (0xfdd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Validity
Not Before: Mar 19 11:09:15 2024 GMT
Not After : Mar 19 11:09:15 2026 GMT
Subject: CN=65f9725f-cb63
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:7a:e5:bc:2e:ad:7d:06:b7:b6:37:36:fc:10:
56:ff:de:15:95:07:25:5a:25:c4:a6:ad:a3:b0:62:
12:30:63:60:cc:50:d0:57:db:93:32:cb:57:da:a2:
25:42:ed:e7:42:68:04:d6:a6:34:bd:08:82:92:65:
8e:76:95:af:a0:40:9d:5f:82:f1:f4:1f:8d:62:8b:
7a:08:bd:6d:46:6a:05:a6:27:bc:ec:23:32:bd:17:
54:db:f4:5b:2a:1b:cb:ef:e9:a2:d5:e7:8f:f6:e0:
d0:13:58:9d:17:09:50:05:27:45:00:0b:5e:35:cc:
80:00:3b:3a:69:7b:56:ee:13:2a:16:e2:8b:19:15:
78:9f:8a:ce:24:0d:f8:17:4b:7a:82:00:dc:f0:bf:
7f:e4:f4:68:56:05:fb:82:cc:7d:6c:2a:9b:59:81:
66:27:42:a9:ef:28:43:60:97:b6:9f:e2:ca:41:12:
3f:d0:b4:4d:d6:5e:d1:3a:f2:6d:4d:ca:32:23:ed:
78:6e:a1:bd:37:68:fe:94:8f:41:f0:12:bd:ec:4e:
51:77:8c:2b:08:cd:10:70:15:b1:03:bb:e2:3e:f0:
d9:4c:df:af:ef:fb:70:cb:66:16:f3:ef:bc:8a:15:
57:73:3d:f1:b6:66:61:eb:58:69:92:7f:3a:a8:40:
5d:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:BE:2B:0E:D7:C6:04:F4:24:A4:A9:1C:05:5B:9C:B9:51:08:0B:D4
X509v3 Authority Key Identifier:
keyid:48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/21A61728E5E111EE9380224E775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.129.150.0/24
Signature Algorithm: sha256WithRSAEncryption
0d:e0:9e:92:f0:e9:d7:f7:e7:07:96:97:86:a0:bd:dd:2b:6a:
0e:4d:ed:b9:e8:6a:97:f4:bc:37:aa:de:9b:75:2b:95:47:52:
ca:c4:b7:ed:22:77:f5:61:81:4f:f3:92:57:f4:9b:c4:bf:53:
e1:68:42:96:b2:e0:91:d7:1a:66:db:24:45:b9:a4:92:5e:8f:
75:d4:74:6a:b7:a6:58:a8:6c:c3:c2:c6:3c:62:02:6e:07:aa:
ec:5a:6c:d3:96:39:9f:37:26:65:1d:d9:d9:55:cf:96:99:4a:
f7:4c:e4:16:45:80:90:67:6f:f3:49:5d:26:0b:38:8e:ae:fd:
f5:ea:1b:ed:9b:61:7b:84:38:15:66:24:39:91:4b:30:23:2b:
7c:d0:7b:fe:05:70:6f:ae:56:e9:e4:13:ac:34:9d:ee:ca:1f:
01:f9:1d:35:0e:f9:ea:57:15:7e:89:b3:0d:52:cd:e8:12:6a:
0f:56:87:e0:f2:cb:f2:99:8a:ff:74:ad:87:77:8a:18:a4:c1:
aa:af:c6:84:68:f4:f6:eb:f9:96:3d:cc:35:da:cf:48:77:79:
af:f5:de:77:9a:90:ed:2e:0d:8d:13:3f:b5:28:83:08:5b:0e:
02:c7:fd:af:38:b0:f0:03:66:49:5c:85:b7:14:34:2b:c9:8a:
8e:64:e7:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 4 02:37:58 2024 by rpki-client on console-fra.rpki-client.org