Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/4C6657D4B42D11ED81DC01F9F1222468.roa
File: 4C6657D4B42D11ED81DC01F9F1222468.roa (raw, json)
Hash identifier: 3zJlYfMnmcNSgy1wKpdJzfeCVyJIlXtTb339iDa0fZc=
Subject key identifier: A5:D0:7F:F3:BA:BA:53:2A:B9:0B:42:C9:AA:9B:06:3C:3D:DD:FE:3F
Certificate issuer: /CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Certificate serial: 0A72
Authority key identifier: 48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/4C6657D4B42D11ED81DC01F9F1222468.roa
Signing time: Fri 24 Feb 2023 10:23:37 +0000
ROA not before: Fri 24 Feb 2023 10:23:33 +0000
ROA not after: Sat 22 Feb 2025 10:23:33 +0000
asID: 61317
IP address blocks: 102.129.144.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.mft
rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 27 Apr 2024 00:04:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2674 (0xa72)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Validity
Not Before: Feb 24 10:23:33 2023 GMT
Not After : Feb 22 10:23:33 2025 GMT
Subject: CN=63f89029-fa8a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:c2:fd:16:52:47:10:5c:65:f0:bc:9c:16:20:
7f:4e:31:55:25:6f:bf:7f:0e:1c:76:08:b6:14:20:
46:c7:dd:6b:67:43:ad:19:aa:8e:5b:0a:23:20:ec:
a9:19:6d:74:1d:bb:48:d0:5e:8a:61:da:42:49:b6:
e8:f2:f3:19:0d:6a:c7:bf:ea:db:95:59:3d:d4:14:
60:d7:f3:2a:13:01:15:ec:b7:46:8f:0a:76:0e:17:
8d:da:c2:e1:8b:96:de:ce:e2:64:b3:f6:2f:4e:26:
a5:62:6e:a4:52:f4:b7:a8:a2:c4:fc:ae:59:8e:76:
ed:4c:9e:bf:45:e1:a8:7d:f1:d7:06:a1:a6:1a:1e:
ee:19:70:c4:38:20:dc:a9:f2:f3:8a:69:18:17:86:
28:57:f1:a1:9c:ee:e6:cd:f8:e4:0f:d6:04:fc:45:
c5:0a:87:9e:8b:50:d5:24:f5:13:f3:71:d5:ca:69:
9d:82:63:ca:04:7e:5c:12:ff:99:04:de:81:d0:cf:
3a:bb:6e:e9:56:10:27:48:b7:82:80:1a:1c:3a:eb:
08:35:a0:0f:69:cd:7c:69:34:17:da:45:eb:7d:d3:
b4:72:94:4b:cb:8b:87:cd:c2:f7:f3:6f:31:93:fb:
aa:de:7b:72:ba:cd:47:fe:92:cd:ae:ec:ff:f4:8a:
0b:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:D0:7F:F3:BA:BA:53:2A:B9:0B:42:C9:AA:9B:06:3C:3D:DD:FE:3F
X509v3 Authority Key Identifier:
keyid:48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/4C6657D4B42D11ED81DC01F9F1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.129.144.0/24
Signature Algorithm: sha256WithRSAEncryption
20:67:67:47:43:d7:85:8e:6a:5b:2f:79:84:4f:22:95:83:62:
5c:dc:7e:ac:4e:d3:7c:56:0b:1e:21:a4:fd:bd:79:e2:90:b2:
ff:76:6f:9a:66:1b:37:35:c1:14:7e:20:8f:2d:c0:e3:01:81:
85:e7:b1:bf:e9:9c:7e:9e:49:a5:c0:22:95:0c:d7:3c:d7:9e:
bc:79:5a:72:60:2c:2d:6e:ee:87:1c:32:ee:f9:dc:d6:84:a9:
d9:c1:f1:a7:19:7c:53:7b:b8:db:f4:f6:23:15:00:86:d4:dd:
96:14:87:63:94:56:e5:4a:fd:c4:8d:27:fa:7f:f5:7b:4a:13:
7b:f0:3c:10:27:f8:c8:c0:05:38:fc:f4:37:65:6a:b3:a8:91:
1e:f6:0a:1d:d6:73:0c:4c:16:51:e1:f4:b0:d1:fa:47:75:34:
0e:57:a8:db:16:27:8d:ce:63:00:e7:71:aa:1f:4c:af:56:ef:
62:20:7b:4b:ee:b2:83:34:d0:67:ee:e4:52:52:34:50:5d:2b:
8e:10:c2:be:13:5e:e6:a2:ab:f9:02:07:1b:88:a0:fb:dc:17:
e6:49:d6:e9:f3:7b:a0:38:05:65:4b:64:33:1e:36:52:e0:5a:
09:29:65:84:31:4f:8a:a8:50:cc:d7:50:68:e9:87:63:74:f8:
3d:e5:7a:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 25 01:20:38 2024 by rpki-client on console-fra.rpki-client.org