Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/22CF1438627E11EEBFE330534AD9E6FC.roa
File: 22CF1438627E11EEBFE330534AD9E6FC.roa (raw, json)
Hash identifier: lljpAyUl4WdykNKbEsufDtkBcS7T67z8VPJOrxIkpTA=
Subject key identifier: 50:10:FB:50:0D:6E:A7:1B:BB:FA:8D:78:B6:6D:82:33:64:50:BA:63
Certificate issuer: /CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Certificate serial: 0D9F
Authority key identifier: 48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/22CF1438627E11EEBFE330534AD9E6FC.roa
Signing time: Wed 04 Oct 2023 06:20:38 +0000
ROA not before: Wed 04 Oct 2023 06:20:33 +0000
ROA not after: Sat 04 Oct 2025 06:20:33 +0000
asID: 400810
IP address blocks: 102.129.185.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.mft
rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3487 (0xd9f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Validity
Not Before: Oct 4 06:20:33 2023 GMT
Not After : Oct 4 06:20:33 2025 GMT
Subject: CN=651d0436-dec0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:6f:7e:78:a1:52:57:67:fc:52:67:f5:50:29:
51:95:39:68:76:87:07:08:69:79:30:e7:41:a5:90:
69:4f:6a:3b:7c:2e:0c:4e:36:0b:13:bd:05:c3:af:
a3:b5:c7:b0:d3:6b:70:88:9a:f5:fc:8b:2d:ac:0f:
ac:22:50:71:a2:b7:56:ad:b2:62:e6:af:e3:32:4d:
9b:05:db:fe:0a:83:f1:fc:36:a2:22:a1:b4:b2:53:
7e:28:cd:f0:3f:3c:ee:be:f6:de:ef:9d:68:6d:d1:
b1:f9:d6:40:0b:36:6d:aa:f8:de:d7:65:0b:c3:6a:
a8:84:5b:3a:b0:4c:cb:a6:35:d8:7e:c8:bc:49:15:
71:08:6e:05:17:ca:1b:6e:71:04:9a:64:16:c1:5e:
1a:d0:27:b4:16:a7:3a:62:fa:33:89:6b:f3:c9:21:
60:b1:43:e5:d9:fc:e1:5d:bc:06:60:d9:09:3d:2f:
b2:f8:51:9c:52:6c:ff:83:09:5e:d6:48:a5:5b:58:
0b:b3:f9:fe:48:25:46:79:be:ff:47:ce:ca:1e:38:
3e:bd:43:ef:7d:1c:3c:24:26:35:02:c2:14:bd:d8:
7b:52:c1:cf:d4:e2:a2:e1:4d:7b:9c:06:34:08:e8:
19:90:d5:28:cc:ab:f2:8e:8d:7a:4e:1c:2e:7a:e9:
6d:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:10:FB:50:0D:6E:A7:1B:BB:FA:8D:78:B6:6D:82:33:64:50:BA:63
X509v3 Authority Key Identifier:
keyid:48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/22CF1438627E11EEBFE330534AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.129.185.0/24
Signature Algorithm: sha256WithRSAEncryption
35:9e:fc:2a:91:c3:26:4a:a5:d3:25:5c:f6:11:80:32:4c:25:
69:b1:13:04:aa:d3:06:80:87:90:41:76:e7:44:f3:24:06:bd:
0d:56:54:5b:36:be:7c:4c:b5:04:e3:98:b0:10:6f:b2:fb:fd:
d4:92:bd:4b:66:45:b5:27:d2:a7:13:c4:78:31:17:a1:a7:f5:
1a:dc:22:3d:8e:c8:d3:7a:ac:11:19:c1:c1:08:46:65:11:59:
3e:45:a3:e5:db:88:89:85:03:a6:15:a5:56:b2:1d:21:9d:5e:
5a:14:aa:40:97:c1:5f:98:6b:27:07:39:d9:25:de:79:08:ce:
7f:7c:8d:51:1f:57:bf:f2:38:2e:26:a3:c3:68:59:13:59:5c:
a4:1a:15:51:09:88:0d:17:41:17:b5:82:44:d1:d6:51:99:87:
fe:4c:f3:6d:a5:02:ea:0d:d3:c5:4c:16:81:e2:d6:92:f3:b9:
90:0e:00:0f:33:d3:30:ff:55:db:df:8a:30:49:76:ec:ac:d0:
4a:8e:1e:a1:eb:4b:8b:19:bd:76:62:87:13:7e:7f:d9:b4:84:
b4:8b:c7:25:58:8a:08:d9:c4:23:02:d5:3c:37:8e:43:89:f4:
ba:17:f9:98:ab:df:b8:cb:c5:84:be:3d:8f:4f:d5:48:46:55:
a1:85:f5:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:05:24 2024 by rpki-client on console-ams.rpki-client.org