Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/3BAC283E759611EF8CD018B3762E951A.roa
File: 3BAC283E759611EF8CD018B3762E951A.roa (raw, json)
Hash identifier: PRAqcxRLRaI4TqQwDzyGrTiQ488Ow0Pe36lATLg9Zd8=
Subject key identifier: 86:AF:01:16:96:A1:C7:29:F1:0E:38:13:EB:94:BD:A5:BB:22:C2:D4
Certificate issuer: /CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Certificate serial: 11FF
Authority key identifier: 48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/3BAC283E759611EF8CD018B3762E951A.roa
Signing time: Wed 18 Sep 2024 08:15:58 +0000
ROA not before: Wed 18 Sep 2024 08:15:55 +0000
ROA not after: Fri 18 Sep 2026 08:15:55 +0000
asID: 212238
IP address blocks: 102.129.239.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.mft
rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4607 (0x11ff)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Validity
Not Before: Sep 18 08:15:55 2024 GMT
Not After : Sep 18 08:15:55 2026 GMT
Subject: CN=66ea8c3e-d234
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:e2:10:f6:a8:2e:4c:9a:c1:eb:7f:e9:8f:a8:
56:83:82:2c:5e:ca:1e:d8:d5:ef:4a:32:34:18:5d:
0f:c3:65:b1:52:04:4e:ad:38:64:15:ec:52:90:cf:
bf:c3:5d:62:6f:67:6f:75:5d:bc:e2:0f:a8:ca:f1:
4f:6b:e8:77:16:fa:6c:07:23:60:db:7a:12:11:fd:
8a:23:ec:4c:9a:47:90:df:ad:b8:23:11:1c:75:bc:
62:8f:b2:53:e1:7d:52:3d:e1:13:bb:3c:93:8e:5c:
ce:c9:57:3e:b7:35:c3:92:1b:5b:f3:6c:6b:8c:11:
84:d7:77:82:02:bc:c9:58:e8:36:6a:19:34:8e:da:
c4:16:62:dc:0e:02:7e:61:1c:69:5a:b8:47:19:1d:
85:5b:3e:09:a6:4c:fa:b9:a1:b0:ad:08:f4:d4:2c:
e5:68:f8:7d:1f:2d:3a:1a:c6:57:2f:19:ee:20:4a:
ce:e5:28:e8:c2:54:ff:da:cc:14:2a:d9:05:26:7a:
de:5c:82:d1:18:3b:4d:e3:50:a4:c5:76:7b:73:c9:
d4:f0:3d:27:35:58:ec:b8:35:0d:ec:18:4a:77:83:
7e:85:fe:35:86:d5:a9:df:49:07:6d:19:b1:5e:d1:
e2:8f:9e:09:95:24:dc:78:3c:d8:06:45:dd:57:08:
bf:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:AF:01:16:96:A1:C7:29:F1:0E:38:13:EB:94:BD:A5:BB:22:C2:D4
X509v3 Authority Key Identifier:
keyid:48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/3BAC283E759611EF8CD018B3762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.129.239.0/24
Signature Algorithm: sha256WithRSAEncryption
da:a6:95:bb:d5:c9:17:2d:f5:a8:27:7e:37:8b:09:e1:8a:79:
92:55:e6:3a:1c:3d:b5:d9:85:c1:31:52:83:18:32:56:6a:9e:
46:e0:03:b0:98:c0:fa:34:0a:d3:fb:e4:88:0c:c0:af:28:41:
f7:4a:3f:58:c1:4b:78:ce:cb:db:8e:31:f1:6c:24:03:f2:80:
3b:be:35:b5:9f:e6:3b:16:26:b0:eb:4d:46:2c:7f:7e:a9:6e:
00:7d:bb:df:fb:28:25:df:46:1f:24:c1:09:3b:7a:c6:4b:82:
5d:12:e3:b9:7b:8a:20:a4:75:8e:d9:78:af:de:2e:3f:2f:e7:
06:38:18:dc:c6:87:db:e7:67:0d:e6:78:69:4a:15:26:ed:f9:
5c:ff:68:2c:11:20:18:a6:90:a6:70:4b:c5:70:b3:e6:94:4f:
dd:52:d3:97:3b:be:25:46:ba:2f:5f:f4:44:21:f6:1a:1b:fe:
8f:7b:5a:91:5d:20:11:45:c0:f3:28:ee:33:0d:d6:53:d5:03:
8d:39:8c:60:12:55:4f:6e:05:8b:94:a5:9f:56:d4:5b:40:72:
3c:79:48:55:8a:cd:4e:22:70:f2:3b:6e:25:01:d9:9b:b8:72:
7a:2b:88:b0:33:50:43:26:a4:4a:c8:f6:74:4b:64:1c:73:f3:
73:76:ab:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:10:15 2024 by rpki-client on console-fra.rpki-client.org