Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/2F4284F07BB811EDB2AB09A4F1222468.roa
File: 2F4284F07BB811EDB2AB09A4F1222468.roa (raw, json)
Hash identifier: h6WjSzF/0FC/SfrWd2Y4r2wwN6Pvhgm5n+Lvi6aRKDU=
Subject key identifier: A4:23:E5:EF:22:CD:16:89:37:1C:22:46:82:BA:25:2C:B5:0B:AC:1D
Certificate issuer: /CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Certificate serial: 095A
Authority key identifier: 48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/2F4284F07BB811EDB2AB09A4F1222468.roa
Signing time: Wed 14 Dec 2022 14:04:12 +0000
ROA not before: Wed 14 Dec 2022 14:04:08 +0000
ROA not after: Sat 14 Dec 2024 14:04:08 +0000
asID: 397423
IP address blocks: 102.165.14.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.mft
rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2394 (0x95a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Validity
Not Before: Dec 14 14:04:08 2022 GMT
Not After : Dec 14 14:04:08 2024 GMT
Subject: CN=6399d7db-88f3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:b3:7c:22:ad:73:ce:97:16:50:a7:5b:d1:d6:
a5:d9:66:dc:87:ac:81:e8:07:8e:10:e6:1a:ab:e3:
7c:e9:dd:8f:70:02:81:54:66:95:b6:8f:a8:7f:03:
9d:61:ed:55:4e:d1:d0:35:1d:fa:32:3c:be:58:4e:
dc:96:4c:02:8c:cc:4c:c0:57:16:99:1c:2e:42:46:
9e:e0:12:b7:54:27:d9:41:f1:0d:54:20:b9:2e:78:
95:67:9e:c0:b5:57:45:81:8d:08:b0:c7:87:d2:35:
2d:ba:d5:af:eb:db:7a:99:e5:6c:e8:95:16:af:09:
f9:7c:fe:0a:12:87:d4:82:15:14:f6:77:0d:56:ec:
cb:15:d1:8b:b4:e1:90:d4:82:1a:e7:a7:cb:d7:b0:
50:56:c3:8d:84:53:b9:3f:6d:f4:5d:2c:ce:c3:2b:
a4:71:65:b3:9a:6a:2b:d0:fc:c6:84:a0:f9:2e:23:
37:8f:6a:fe:92:45:91:2e:cd:ae:9b:01:e9:62:7c:
f5:4b:50:66:a1:f5:43:bb:45:28:45:67:d7:06:f3:
54:33:1f:4e:99:9d:cf:34:d2:24:41:fa:11:a7:04:
54:cf:de:6d:ce:d8:c5:b1:6d:58:74:78:d1:4b:29:
a3:76:f9:e6:32:a1:68:67:1c:f9:89:91:7e:cf:56:
86:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:23:E5:EF:22:CD:16:89:37:1C:22:46:82:BA:25:2C:B5:0B:AC:1D
X509v3 Authority Key Identifier:
keyid:48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/2F4284F07BB811EDB2AB09A4F1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.165.14.0/24
Signature Algorithm: sha256WithRSAEncryption
40:2b:73:57:cf:3a:3f:86:9a:03:a6:9f:ba:4c:67:63:ff:fe:
fe:43:2f:01:da:13:24:0f:f9:d3:61:1a:1b:3b:ee:e1:d0:b2:
8b:e2:7c:c1:d7:62:08:fb:b1:57:a6:24:c4:55:02:fa:60:ea:
e2:83:e9:0e:58:30:64:38:c6:02:43:da:6e:4f:28:67:1a:03:
91:55:00:15:93:69:0c:85:b3:29:62:48:4e:4c:e0:0e:52:2b:
b3:81:02:6b:09:89:98:1c:36:f0:45:63:d9:54:fe:8c:e3:ee:
49:90:86:09:a1:28:d2:85:73:52:d3:74:63:cc:4f:df:35:6a:
07:3d:19:98:e3:f5:64:3f:fb:75:aa:ba:9d:ee:65:cf:9d:66:
db:2b:85:f2:a4:11:89:59:82:7a:14:76:69:28:03:e4:f3:6e:
74:53:69:91:71:79:b2:38:2f:65:de:64:d2:ad:36:db:de:8b:
e4:3e:a3:07:58:2b:03:50:ce:6d:dc:46:7b:09:fb:c4:c1:69:
9f:5f:56:88:16:bb:e3:4f:fc:c8:70:d2:07:68:e3:8c:c0:3c:
01:73:0e:77:f4:d2:aa:9c:b2:7f:a9:a4:78:13:c3:5a:17:2f:
ac:db:18:68:d6:6b:20:bc:52:d9:a7:45:45:6d:e4:27:a8:2d:
6a:ff:6d:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:10:15 2024 by rpki-client on console-fra.rpki-client.org