Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/5836B27624B511EFAF9EABF87CDC24C2.roa
File: 5836B27624B511EFAF9EABF87CDC24C2.roa (raw, json)
Hash identifier: 3dBPLGKDIs6h0/rYG3dJSg8QigkbpnPlbxG/h1yc4/I=
Subject key identifier: 2C:45:9D:F9:C6:51:27:97:06:7C:F1:9C:8D:72:D2:80:9D:9B:EA:E4
Certificate issuer: /CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Certificate serial: 10B5
Authority key identifier: 48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/5836B27624B511EFAF9EABF87CDC24C2.roa
Signing time: Fri 07 Jun 2024 10:04:36 +0000
ROA not before: Fri 07 Jun 2024 10:04:33 +0000
ROA not after: Sun 07 Jun 2026 10:04:33 +0000
asID: 13213
IP address blocks: 102.129.202.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.mft
rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 27 Nov 2024 00:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4277 (0x10b5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Validity
Not Before: Jun 7 10:04:33 2024 GMT
Not After : Jun 7 10:04:33 2026 GMT
Subject: CN=6662db34-6cf0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:74:d6:49:0b:07:d5:17:7a:ee:73:35:3d:7b:
74:90:91:a4:54:ed:94:9e:60:b9:a4:53:b5:b3:76:
71:dc:5d:57:19:05:7f:92:b8:b9:b7:c4:c3:d8:67:
b5:0b:33:23:a6:c0:bd:b2:ab:a0:47:8a:0a:dd:ef:
59:1d:74:f4:91:81:fc:06:e8:50:64:d6:ca:e6:25:
06:c1:db:a7:0a:7f:96:8c:e9:c4:ac:7a:02:72:c1:
f3:30:d7:73:f4:43:ee:b4:bb:d6:af:24:f2:77:ce:
9a:77:77:cd:73:4a:02:5b:3b:ba:4c:94:e4:8c:b8:
2e:7a:bb:6a:a4:71:65:84:7b:b4:b5:10:c8:ae:de:
90:83:d6:c6:f4:f7:9b:4d:f2:92:68:c6:45:af:1e:
af:a3:7b:6e:2c:66:38:a6:18:31:cc:61:82:a8:7f:
ea:e2:ce:7d:d0:2f:9a:4d:d3:1d:81:d8:ca:9e:cc:
ed:71:52:9a:b8:e2:77:5b:62:45:50:7d:14:d5:3f:
3d:16:ae:7b:46:75:c4:ed:12:0f:f0:89:e8:c0:1f:
95:bd:f1:00:89:66:69:8e:2c:fa:ad:11:ec:cc:2a:
14:04:d5:ef:d4:74:2d:8f:da:79:26:73:20:3c:48:
f5:78:fe:3d:6c:af:e3:e5:75:54:c7:75:ed:91:d6:
b3:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:45:9D:F9:C6:51:27:97:06:7C:F1:9C:8D:72:D2:80:9D:9B:EA:E4
X509v3 Authority Key Identifier:
keyid:48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/5836B27624B511EFAF9EABF87CDC24C2.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.129.202.0/24
Signature Algorithm: sha256WithRSAEncryption
d9:71:b9:84:26:18:0b:f9:13:a6:ae:db:7d:32:33:a3:35:52:
e9:f6:f7:42:60:06:0a:69:21:17:f3:8d:84:15:54:81:a4:68:
b0:d5:05:f1:f0:8c:5a:0a:2a:6f:48:4e:9b:92:15:86:a9:47:
87:3a:85:0b:fa:52:6f:3a:96:e1:02:76:3a:a0:9b:04:29:f7:
a3:54:d5:05:98:26:2e:c0:ed:46:2b:0d:15:66:6b:fb:8c:59:
32:90:9e:8a:67:c5:9f:65:63:92:10:4f:2d:99:7a:45:57:76:
13:4c:5e:74:0c:4a:38:99:7e:af:58:2f:fc:07:74:9a:e5:23:
cd:3f:eb:f7:ab:6c:7d:e6:05:0a:81:83:23:ce:d2:a6:69:1d:
09:11:5d:74:e4:a7:cd:34:04:b3:29:bc:bc:c4:d5:3a:16:f9:
0c:6c:b4:11:8e:91:3a:c2:f7:15:7a:61:53:73:2a:1d:1d:9b:
90:02:18:a2:ef:12:d0:79:da:1d:7b:8a:7b:79:79:d0:ff:13:
13:af:a9:f4:13:b3:6c:3c:71:07:06:1a:48:7a:06:1a:bf:d7:
0d:28:4e:c1:30:28:dd:e8:94:6c:39:21:de:ff:88:12:45:d1:
aa:ff:99:98:50:dc:54:f3:da:60:77:2b:31:a5:9a:72:93:90:
de:dd:c9:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 03:00:13 2024 by rpki-client on console-fra.rpki-client.org