Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/28105C16D0AD11EE8859EB70775412E6.roa
File: 28105C16D0AD11EE8859EB70775412E6.roa (raw, json)
Hash identifier: ve/W7Xra/nY61iKPzYpDS8a+j42vj5HhNyI1i0u1kOg=
Subject key identifier: 5E:84:AE:9E:CC:EA:47:64:92:DE:54:39:54:1B:9E:27:40:7E:D3:7C
Certificate issuer: /CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Certificate serial: 0F65
Authority key identifier: 48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/28105C16D0AD11EE8859EB70775412E6.roa
Signing time: Wed 21 Feb 2024 11:34:22 +0000
ROA not before: Wed 21 Feb 2024 11:34:18 +0000
ROA not after: Sat 21 Feb 2026 11:34:18 +0000
asID: 61317
IP address blocks: 102.165.52.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.mft
rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3941 (0xf65)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Validity
Not Before: Feb 21 11:34:18 2024 GMT
Not After : Feb 21 11:34:18 2026 GMT
Subject: CN=65d5dfbd-3208
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:2d:28:7a:44:72:63:21:f5:58:7f:fd:2d:ac:
8c:a4:1d:21:fe:c2:b3:93:2a:79:d4:91:8e:41:09:
37:df:30:ec:b8:07:ec:38:23:e2:c1:da:bd:4d:55:
55:b8:38:3c:bc:a1:48:7f:89:d4:03:29:c3:d5:e3:
8f:ba:ad:75:ef:db:34:5a:48:5a:b4:c5:fa:f5:1c:
17:17:37:8a:d7:45:d7:b6:c5:bb:0a:ed:a9:5b:f3:
99:93:3b:c5:63:b9:a5:a1:15:cd:2f:50:26:a3:30:
77:30:34:ef:a0:fc:e9:95:8e:07:f1:d8:c4:02:39:
5d:24:86:48:27:2d:53:e1:77:da:fa:12:37:4f:15:
f4:3b:41:8c:75:97:66:f7:3c:b0:df:8e:50:a3:e4:
4b:7b:fd:84:08:97:bd:d6:96:08:6d:91:15:32:18:
3b:b1:bd:59:9d:cb:32:74:90:0d:de:39:de:07:9b:
09:75:4d:b7:f8:33:bc:06:8c:b7:0a:ce:88:14:a7:
b5:a6:58:ba:88:02:3f:91:af:65:43:a7:29:ed:e2:
7a:e6:2a:b2:0e:09:f6:7d:26:f3:91:a8:4e:70:0f:
b7:44:74:2f:07:b3:c3:03:2f:84:ef:0c:d7:c1:ec:
0f:e7:c3:33:d6:9a:41:8f:e8:e9:ec:aa:c7:d7:d0:
b9:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:84:AE:9E:CC:EA:47:64:92:DE:54:39:54:1B:9E:27:40:7E:D3:7C
X509v3 Authority Key Identifier:
keyid:48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/28105C16D0AD11EE8859EB70775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.165.52.0/22
Signature Algorithm: sha256WithRSAEncryption
5c:57:89:dd:4f:ce:87:eb:95:37:7c:59:17:dd:3a:71:44:2b:
0f:cd:db:b3:30:d5:20:dc:1b:64:ac:a4:f0:31:72:80:35:e1:
08:99:b2:0f:bd:76:53:54:c6:81:4e:eb:61:03:1c:6e:0e:8b:
9d:9f:c2:ea:bb:90:46:ec:e5:e5:38:77:5e:ab:5a:8f:ad:fc:
7e:3c:87:0e:47:1e:a5:bc:18:38:a1:ea:d8:ac:da:44:85:39:
83:3c:f1:68:ad:63:a2:c5:7d:6e:80:ad:49:0f:27:b7:d7:4b:
10:2d:06:86:18:a8:48:33:34:a0:68:16:39:04:c5:a6:f1:15:
93:0a:1a:a8:8f:e1:85:39:7d:fd:0f:20:2f:0e:98:d0:b1:10:
2f:f4:57:a8:7c:81:38:6f:20:62:a4:cb:01:06:90:f4:47:41:
25:8d:2e:3e:07:76:87:35:44:37:9d:cf:6d:24:ce:c5:e0:ad:
6e:7f:47:dc:4f:7b:aa:7a:31:0e:d6:a7:a7:a9:12:4b:be:9f:
c9:7c:19:29:1f:12:24:10:28:56:5a:a0:27:89:0c:79:2e:a1:
26:9b:ea:31:77:00:b0:b1:54:6d:6b:36:51:16:d1:34:bb:38:
73:79:d8:ca:28:a9:4f:41:5d:3b:37:03:35:40:19:45:24:76:
f3:54:85:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 01:30:20 2024 by rpki-client on console-fra.rpki-client.org