Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/5B0047F8553E11ED9BF24AC9F1222468.roa
File: 5B0047F8553E11ED9BF24AC9F1222468.roa (raw, json)
Hash identifier: ekouFmLTsQA7An6RplQ+gQEh9I2RIwChE0wjWdn/Tww=
Subject key identifier: C2:9B:5D:78:33:BF:0C:DA:E6:C1:91:5B:A9:E9:57:5E:8A:B4:44:B9
Certificate issuer: /CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Certificate serial: 08AB
Authority key identifier: 48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/5B0047F8553E11ED9BF24AC9F1222468.roa
Signing time: Wed 26 Oct 2022 14:56:22 +0000
ROA not before: Wed 26 Oct 2022 14:56:19 +0000
ROA not after: Sun 27 Oct 2024 14:56:19 +0000
asID: 212238
IP address blocks: 102.129.159.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.mft
rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 26 Apr 2024 00:05:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2219 (0x8ab)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Validity
Not Before: Oct 26 14:56:19 2022 GMT
Not After : Oct 27 14:56:19 2024 GMT
Subject: CN=63594a96-e328
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:d8:ae:7e:28:3c:cc:da:9b:79:5e:b8:41:ec:
6f:39:59:8d:1a:05:c4:15:de:fc:92:f1:16:50:11:
82:02:26:c2:fd:18:e5:23:04:6e:36:3d:ea:89:b3:
94:ad:06:ae:33:98:52:a6:22:1c:d9:fd:ff:1e:0d:
ec:59:2e:1a:fd:c8:b8:2a:8f:22:92:ae:8c:5d:d9:
06:9f:ba:42:f1:7e:88:07:75:4c:8d:84:55:21:7c:
3e:97:a6:41:d0:cc:fd:46:9d:c9:03:a5:1e:79:5f:
fb:2a:bc:7f:04:d6:29:c6:e9:3c:85:62:37:d6:c1:
5b:40:41:6b:47:3a:85:4b:c1:65:a8:08:34:22:c9:
08:3a:69:9d:a1:5d:a1:c0:86:3f:6f:5c:28:17:3a:
4a:d3:1a:f1:c5:bb:48:90:42:01:7c:b5:b4:6c:78:
2b:9c:04:45:4c:96:93:36:c2:c6:ee:47:e8:e2:39:
eb:0a:35:d9:2f:64:77:0b:fe:74:38:da:47:88:6a:
39:a5:92:8a:db:9f:0b:32:c2:7c:06:3a:1b:bd:1c:
1a:dd:fe:03:da:f2:dd:85:1b:a6:10:5c:bf:c6:61:
ac:09:71:30:de:45:53:d2:7e:43:e8:12:bc:76:8c:
57:c9:1e:22:86:c9:ac:62:1e:b6:a5:2f:90:eb:ec:
a5:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:9B:5D:78:33:BF:0C:DA:E6:C1:91:5B:A9:E9:57:5E:8A:B4:44:B9
X509v3 Authority Key Identifier:
keyid:48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/5B0047F8553E11ED9BF24AC9F1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.129.159.0/24
Signature Algorithm: sha256WithRSAEncryption
63:96:66:0e:b4:93:51:1c:4c:1d:92:7f:17:ec:7b:79:3f:80:
67:91:22:0e:c8:d0:3a:a9:49:66:4e:e0:e0:8a:61:67:49:f1:
af:00:8d:91:3b:53:77:33:20:3d:99:78:d9:1a:c3:bf:48:98:
ae:8c:c9:94:39:7a:af:91:37:57:11:e2:99:83:79:f3:21:c3:
a9:ae:31:5e:41:1d:9d:06:f4:f7:23:9c:a3:3d:76:68:aa:00:
f2:1c:d8:e3:cc:7f:f7:e2:23:e6:5c:05:7d:77:59:56:ab:ec:
95:1a:b2:4e:e5:0b:fd:6a:26:7c:7c:b0:20:65:b5:c4:bf:9a:
9d:c8:9c:22:8c:8c:2a:6e:7f:c9:12:a6:4d:9b:ec:99:7f:d0:
45:5c:1d:51:18:07:1b:6f:a2:59:9e:69:ed:21:e6:8d:eb:5e:
a5:4b:96:dc:fc:5b:b0:38:2f:b7:6a:65:67:00:d9:38:5b:6f:
07:8a:45:0c:5f:26:c6:13:e1:09:cb:e9:2b:9a:6c:e6:9d:fe:
0e:22:25:93:98:40:d1:90:8a:e9:56:c4:01:ed:59:73:44:ac:
dd:70:c3:53:94:13:9b:5f:db:1b:e4:7d:28:32:e5:b0:5d:b2:
ea:09:6f:17:2d:2c:04:da:f1:8e:0d:ad:da:ae:c7:36:bb:10:
e0:58:b4:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 24 01:56:22 2024 by rpki-client on console-ams.rpki-client.org