Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/3CF11B5628DD11EFB675B7297DDC24C2.roa
File: 3CF11B5628DD11EFB675B7297DDC24C2.roa (raw, json)
Hash identifier: Xv2CRqGEjiA6BiEqpLJQ63arKOTSNNie03GxYntP2LY=
Subject key identifier: BE:E9:91:59:0F:7B:07:61:34:7A:23:DF:2F:DE:D5:64:F6:30:7B:31
Certificate issuer: /CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Certificate serial: 10DE
Authority key identifier: 48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/3CF11B5628DD11EFB675B7297DDC24C2.roa
Signing time: Wed 12 Jun 2024 17:00:15 +0000
ROA not before: Wed 12 Jun 2024 17:00:11 +0000
ROA not after: Sat 13 Jun 2026 17:00:11 +0000
asID: 262287
IP address blocks: 102.129.192.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.mft
rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4318 (0x10de)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Validity
Not Before: Jun 12 17:00:11 2024 GMT
Not After : Jun 13 17:00:11 2026 GMT
Subject: CN=6669d41f-7387
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:db:d3:69:42:78:03:87:bb:03:86:02:13:7c:
03:a4:96:a0:a7:aa:fc:a4:bb:3d:18:69:d0:15:fa:
11:09:36:3c:b8:8e:b5:62:e8:e0:2f:b0:03:23:77:
11:0b:97:58:f8:37:e1:6f:73:e0:62:d0:dd:22:ce:
6f:68:38:77:c5:b9:0c:63:7f:86:84:39:62:7b:5e:
ac:cc:8c:99:d6:47:fb:99:d7:7e:ce:91:65:44:94:
0c:49:59:61:90:10:d2:0d:ae:9b:42:c4:1e:11:b0:
f1:a5:c2:db:3c:b0:d0:a2:01:0a:23:62:47:4a:46:
5d:85:fd:56:5f:2d:21:f4:2e:a3:aa:65:46:7f:79:
12:6b:3f:ab:cf:ed:7b:57:98:2e:b7:3d:5f:6c:4a:
2c:a5:4b:d7:dc:69:51:08:eb:6a:f5:05:fb:39:07:
45:d6:e9:a7:f7:8f:9f:89:8b:13:34:03:4d:cd:9b:
8c:0d:e0:b0:9a:fd:88:b9:b4:17:3d:dd:a2:46:d9:
ba:b0:77:95:ff:91:53:77:6c:dc:d6:ec:27:2f:84:
6d:2f:91:3a:f0:ad:e2:f8:25:80:98:db:4c:fc:5b:
c0:08:6f:68:e8:74:1c:20:85:ce:9c:ce:fc:16:7e:
2d:44:eb:31:e4:37:c2:34:e9:4f:31:d6:55:a6:ad:
b0:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:E9:91:59:0F:7B:07:61:34:7A:23:DF:2F:DE:D5:64:F6:30:7B:31
X509v3 Authority Key Identifier:
keyid:48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/3CF11B5628DD11EFB675B7297DDC24C2.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.129.192.0/24
Signature Algorithm: sha256WithRSAEncryption
01:5d:0b:3e:c0:57:96:74:e6:a4:bc:74:c5:1d:74:79:49:84:
79:c6:d1:f5:d2:a8:5b:94:59:f6:d1:0c:b8:38:a8:55:ea:95:
14:20:52:3e:74:09:38:62:9f:f3:70:43:7e:21:6f:3d:b3:19:
de:94:47:11:85:97:32:15:81:fb:07:20:66:17:75:45:60:76:
7d:d1:01:d3:25:f4:f9:64:60:6f:bb:f4:ae:c5:fb:21:1a:81:
c3:98:dc:0b:4b:0f:cb:83:4b:53:4b:43:c5:fe:4b:d3:61:d1:
d3:85:7b:ed:97:73:83:7d:c8:0f:76:c0:fb:2f:b1:88:78:46:
75:b6:05:1d:e0:71:4c:22:3b:0f:93:e0:62:4d:5b:48:8a:45:
cb:dc:5a:3b:f7:57:62:67:f4:3f:d7:02:ed:74:da:c0:40:0c:
f3:ec:d8:58:6b:df:e7:5d:b7:be:fa:03:2c:a3:ff:58:41:e0:
08:98:d5:e0:1a:1c:0e:90:8e:85:0f:48:1e:b0:06:94:eb:22:
c8:b5:c1:2a:a1:75:3c:d7:26:26:4d:8e:83:d2:c3:c5:c3:8a:
fe:29:3b:a5:cc:be:e9:e0:a4:66:25:c2:bb:29:44:af:43:f1:
fa:29:45:39:28:29:d8:34:d8:0f:d3:b9:94:9d:a0:e0:0e:70:
43:1b:a3:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:10:15 2024 by rpki-client on console-fra.rpki-client.org