Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/2AC95A9E518711EDA40F219BF1222468.roa
File: 2AC95A9E518711EDA40F219BF1222468.roa (raw, json)
Hash identifier: ZgJQjtKIRCcorxW7xlD/4uikH4fCo62iVe9jVhZM3m4=
Subject key identifier: 15:DD:AB:AB:4A:81:B0:0A:A5:CA:B7:BC:61:EA:08:AA:86:F3:41:91
Certificate issuer: /CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Certificate serial: 0870
Authority key identifier: 48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/2AC95A9E518711EDA40F219BF1222468.roa
Signing time: Fri 21 Oct 2022 21:27:30 +0000
ROA not before: Sat 22 Oct 2022 21:27:26 +0000
ROA not after: Mon 21 Oct 2024 21:27:26 +0000
asID: 212238
IP address blocks: 102.129.132.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.mft
rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 28 Apr 2024 00:04:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2160 (0x870)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Validity
Not Before: Oct 22 21:27:26 2022 GMT
Not After : Oct 21 21:27:26 2024 GMT
Subject: CN=63530ec2-6457
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:3b:49:08:6b:35:ee:da:4d:48:56:e6:a1:90:
91:f1:a2:af:de:1f:9d:d1:d9:49:81:f2:13:40:a4:
db:cb:a7:35:b9:eb:04:36:e1:48:7d:82:3d:3f:f0:
65:88:d2:52:fe:3b:ba:a2:56:d6:ff:ea:52:70:04:
d7:2e:aa:68:3a:e9:7b:35:b0:f2:36:d0:43:4a:25:
63:90:49:b5:8b:44:10:a0:61:8c:47:fd:bb:72:bb:
b8:ba:e3:45:54:ab:e0:2f:ee:02:52:5f:3e:54:a8:
31:93:87:8f:fc:bb:ec:eb:c9:f8:a4:06:9a:97:1e:
ac:75:39:3a:52:c0:f2:3a:a1:a1:da:8b:72:b0:d3:
20:38:48:72:6a:51:be:7b:2b:54:3d:83:d1:06:a4:
05:a5:18:8a:09:4a:aa:36:53:ea:e2:ab:25:c8:75:
63:c8:e9:e3:3b:bf:04:5a:08:e6:2c:1f:c3:22:26:
ed:0c:30:c4:45:fd:91:02:d4:a3:00:21:ab:6a:9b:
9f:05:11:41:f0:c9:c3:bf:e7:eb:87:b1:e1:97:44:
83:3d:0e:27:49:f6:4d:a1:d7:02:b3:80:17:c6:d2:
22:5b:67:29:7f:09:41:02:bd:35:0c:4b:39:6b:be:
46:37:40:36:0b:60:90:cd:b6:a1:e0:e5:db:02:47:
c0:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:DD:AB:AB:4A:81:B0:0A:A5:CA:B7:BC:61:EA:08:AA:86:F3:41:91
X509v3 Authority Key Identifier:
keyid:48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/2AC95A9E518711EDA40F219BF1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.129.132.0/24
Signature Algorithm: sha256WithRSAEncryption
03:cd:54:8c:4c:b8:89:d5:82:90:83:0f:bb:1d:30:09:8d:62:
80:91:e3:bc:62:4a:14:1a:e2:26:4a:20:db:b2:58:e6:a2:f3:
01:f6:04:39:1c:5b:e4:e5:f9:a7:c0:3e:a1:e5:cb:10:45:fb:
df:49:a6:6d:fa:57:ee:33:79:61:b8:49:db:97:11:9f:20:52:
cd:1f:e4:93:33:19:21:50:74:74:31:c9:79:8a:7b:d2:4f:f7:
ab:15:5e:3a:3e:63:b3:83:e1:73:51:3d:5b:2a:c4:2a:7f:d9:
81:b2:64:6d:c4:68:69:3d:d5:5d:70:fb:f8:27:e9:a3:9f:51:
b8:6c:2c:9d:1d:3c:80:da:b3:31:83:51:57:88:72:52:46:ce:
0d:2b:28:e4:a9:52:10:35:a7:8c:ef:0e:f8:fc:80:93:2d:3e:
04:bc:f0:31:7d:50:00:3d:b0:ee:33:c9:2b:b0:8d:48:31:d2:
67:36:55:a7:3d:b6:96:fb:bb:e3:03:a3:0a:92:f7:a1:aa:d8:
b1:a1:e4:3d:eb:99:8f:88:a1:76:45:92:80:cd:0d:0c:00:6a:
85:4e:4e:71:38:4a:55:69:5c:4b:22:bc:07:6b:71:eb:bc:e3:
a9:18:3f:78:2b:41:c6:a7:dd:99:82:02:95:11:92:fa:78:61:
ff:f3:cf:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 26 11:02:08 2024 by rpki-client on console-ams.rpki-client.org