Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/380E66065C3811EE9325D44D4AD9E6FC.roa
File: 380E66065C3811EE9325D44D4AD9E6FC.roa (raw, json)
Hash identifier: CW8qXdZenVWR9SLZX8Y8aHBa+QhGOPcX7zLaL+7fR0w=
Subject key identifier: D4:82:4C:2E:48:4A:89:D0:7A:AA:77:AD:33:0E:4E:45:9D:8F:A7:28
Certificate issuer: /CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Certificate serial: 0D85
Authority key identifier: 48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/380E66065C3811EE9325D44D4AD9E6FC.roa
Signing time: Tue 26 Sep 2023 06:45:02 +0000
ROA not before: Tue 26 Sep 2023 06:44:59 +0000
ROA not after: Sat 27 Sep 2025 06:44:59 +0000
asID: 212238
IP address blocks: 102.129.174.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.mft
rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 30 Apr 2024 00:04:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3461 (0xd85)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Validity
Not Before: Sep 26 06:44:59 2023 GMT
Not After : Sep 27 06:44:59 2025 GMT
Subject: CN=65127dee-c001
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:b3:93:61:ad:28:8d:ad:4b:6c:c2:ac:a8:36:
34:14:ef:ca:89:34:c6:c3:80:6f:e7:6c:90:56:7e:
66:60:31:d8:b7:db:2a:db:76:e1:65:67:95:55:6a:
84:e2:1d:65:8c:b2:9e:33:6f:51:e8:a9:e5:2a:de:
a4:d5:4b:74:8c:84:a2:10:ca:0a:57:c3:65:c5:47:
b5:70:12:ce:33:d7:8b:fb:b8:c2:12:07:e8:86:6a:
48:fd:68:95:49:0f:db:0b:02:e8:cb:0f:6f:0a:fa:
1b:38:54:7c:95:70:0a:de:e7:05:b6:59:8f:2c:36:
60:46:b9:a8:6f:5a:9e:7d:cb:9a:63:15:10:3c:42:
75:82:83:31:33:0d:70:59:20:5e:a7:49:18:02:ed:
30:0e:98:fa:66:46:d1:08:32:17:68:ad:19:52:00:
fb:5b:6b:91:40:5e:83:d8:69:f5:d8:df:3d:97:0f:
26:c2:60:b5:5c:6a:e3:a8:2c:aa:14:5a:7d:39:30:
5a:f7:90:ee:01:70:82:d8:d5:7e:d0:e2:ac:85:e9:
dd:cc:2d:29:34:2a:1f:b8:86:d5:48:af:93:cd:47:
4a:6c:4a:82:4d:6a:ce:55:3f:dc:c2:e4:3b:eb:06:
c4:d1:ed:35:44:e0:77:aa:8b:da:7b:91:e4:29:ef:
e1:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:82:4C:2E:48:4A:89:D0:7A:AA:77:AD:33:0E:4E:45:9D:8F:A7:28
X509v3 Authority Key Identifier:
keyid:48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/380E66065C3811EE9325D44D4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.129.174.0/24
Signature Algorithm: sha256WithRSAEncryption
99:55:10:9d:0b:13:ef:c4:44:3e:13:8f:21:4b:e0:ad:43:ee:
47:7e:35:28:bf:22:19:87:9c:12:4f:51:dc:74:e0:05:f7:b6:
58:4a:ec:fa:24:b3:17:88:0c:70:ca:25:dc:60:31:cb:68:99:
ff:5a:35:e2:17:58:bf:d8:70:34:9c:7b:c9:b0:6b:61:26:25:
54:bd:6c:7c:d6:bf:5c:bb:72:81:0e:22:48:69:3e:02:22:e7:
da:5d:f9:f0:8c:5e:eb:a5:ad:2f:fa:97:17:d2:75:3c:68:f4:
4c:2f:5e:12:d2:76:90:c1:a5:58:8d:34:12:cb:a3:4c:03:03:
31:f8:49:00:a4:ba:e1:bb:72:db:75:61:8a:b3:27:65:79:14:
7d:8d:c3:e6:88:66:82:78:2f:8e:79:5e:6e:ff:78:42:e8:42:
3a:03:36:39:5c:13:f8:f6:a5:26:50:95:f7:51:0e:32:95:bf:
51:ae:b8:80:72:b4:11:0e:19:15:2d:9c:45:a8:ba:e7:47:22:
7a:e0:dc:33:b0:34:6f:c5:52:74:3f:5a:d8:b8:5e:35:3b:c1:
76:31:3e:cc:0b:22:a7:6c:05:e8:95:63:56:2b:6f:df:7c:bf:
fd:69:d2:d0:d0:bc:c9:0f:36:d5:05:15:e7:61:75:df:ee:3d:
cc:e4:e4:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 28 03:11:12 2024 by rpki-client on console-ams.rpki-client.org