Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/37A43ABA24B511EF9A2984F87CDC24C2.roa
File: 37A43ABA24B511EF9A2984F87CDC24C2.roa (raw, json)
Hash identifier: LBtEhDDMds2Z+PQ5MeLjURDzPooR0UUedOuulJPYTaM=
Subject key identifier: C2:5D:22:B6:C5:1D:58:2F:C5:10:53:B3:B3:E4:D5:32:F3:3A:6C:CB
Certificate issuer: /CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Certificate serial: 10B3
Authority key identifier: 48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/37A43ABA24B511EF9A2984F87CDC24C2.roa
Signing time: Fri 07 Jun 2024 10:03:41 +0000
ROA not before: Fri 07 Jun 2024 10:03:38 +0000
ROA not after: Sun 07 Jun 2026 10:03:38 +0000
asID: 13213
IP address blocks: 102.129.242.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.mft
rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4275 (0x10b3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Validity
Not Before: Jun 7 10:03:38 2024 GMT
Not After : Jun 7 10:03:38 2026 GMT
Subject: CN=6662dafd-fdc7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:a1:4b:af:98:14:fb:f0:20:24:57:1f:7a:ef:
95:32:93:76:1a:3d:39:67:54:13:e7:0a:4c:76:6f:
f3:c8:8b:7d:01:5d:9b:06:7b:44:6a:bf:fa:09:fc:
57:9b:48:20:d5:45:45:14:90:04:7c:9e:3a:09:71:
38:b0:7d:e4:56:9d:bc:7d:ef:f8:67:62:8d:32:eb:
3f:20:9b:71:7e:cd:95:f4:72:77:e6:10:d6:9a:b4:
82:f6:ef:a9:e7:53:03:da:89:eb:56:d4:70:dc:93:
04:b4:1e:b9:c3:73:a3:3d:dc:b9:d5:53:fc:87:1d:
40:8b:df:07:e6:c4:21:e1:bf:59:20:09:c6:64:e3:
78:4c:51:e6:f8:72:20:56:0e:64:44:1a:72:cf:9a:
5d:5e:f6:1e:de:bb:6c:d5:01:67:3f:d5:e6:ae:96:
67:f8:0f:f4:45:18:85:50:06:d5:ee:e7:6e:59:92:
80:2f:03:ea:42:19:2a:39:9d:ce:7f:e8:ca:fd:58:
cb:a5:2b:c2:dd:a7:14:4c:c8:69:8d:2a:2c:ca:8a:
df:50:2c:e8:7e:33:51:3c:cc:73:fe:34:6c:45:9b:
ca:48:ff:06:9a:a2:fb:1a:b6:15:93:b9:1d:51:2a:
db:aa:89:2c:80:0d:15:be:0b:1b:24:06:fc:dd:ad:
b9:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:5D:22:B6:C5:1D:58:2F:C5:10:53:B3:B3:E4:D5:32:F3:3A:6C:CB
X509v3 Authority Key Identifier:
keyid:48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/37A43ABA24B511EF9A2984F87CDC24C2.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.129.242.0/24
Signature Algorithm: sha256WithRSAEncryption
57:c1:bb:4f:06:6f:b9:6c:72:c7:d3:78:f5:61:80:c8:29:03:
c2:1e:38:6e:f7:08:a7:1f:76:6b:cc:41:82:3d:a3:ca:8d:96:
89:9a:1d:4d:4a:1f:95:74:13:01:55:15:1e:73:b1:0b:14:85:
ca:eb:30:51:fa:c5:5a:22:87:77:a0:e9:1b:04:db:96:d8:3b:
af:08:f5:94:a4:f0:ac:e0:cc:d4:14:4e:15:8f:d3:10:b9:6a:
e3:fa:1a:5c:f5:cb:41:f5:09:4d:81:38:53:96:34:1c:2c:32:
c6:20:d5:af:ff:70:5e:a5:ba:e5:e8:e1:a9:54:ab:8f:70:fb:
86:b5:8d:74:68:4c:4c:ed:9f:c9:72:76:5b:7e:2b:d1:6a:b2:
e8:d3:2c:5a:c3:2a:27:b7:0a:26:a1:73:88:23:30:2e:9b:27:
12:9f:e3:17:26:b0:e6:db:25:3b:b0:b7:74:48:42:9d:97:4d:
5d:bd:76:78:33:2d:3f:06:e5:bf:10:48:8b:a5:e3:33:8b:2d:
ec:bb:4e:25:79:d9:ca:bc:4e:bf:1c:48:67:47:eb:f7:37:c5:
8c:d4:81:0f:2c:eb:e8:76:0c:a7:67:a5:ef:ae:a3:b3:ac:a3:
3b:af:99:67:ee:7f:d7:0e:fc:a0:d6:96:29:e6:db:95:c5:4e:
98:e3:36:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:10:15 2024 by rpki-client on console-fra.rpki-client.org