Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/66378C6E9DE211EF931F13A7762E951A.roa
File: 66378C6E9DE211EF931F13A7762E951A.roa (raw, json)
Hash identifier: pjNtJxHcsCO/9+llqiea3ROyZWnoLUyMf/HONgTsWT0=
Subject key identifier: 71:A9:41:AE:16:36:35:86:21:2A:C2:60:78:8A:76:D4:3D:E0:6C:DC
Certificate issuer: /CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Certificate serial: 129D
Authority key identifier: 48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/66378C6E9DE211EF931F13A7762E951A.roa
Signing time: Fri 08 Nov 2024 15:01:57 +0000
ROA not before: Fri 08 Nov 2024 15:01:54 +0000
ROA not after: Sat 07 Nov 2026 15:01:54 +0000
asID: 147176
IP address blocks: 102.129.139.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.mft
rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4765 (0x129d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Validity
Not Before: Nov 8 15:01:54 2024 GMT
Not After : Nov 7 15:01:54 2026 GMT
Subject: CN=672e27e5-b20f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:ee:46:1f:4b:de:b3:ff:a1:30:57:b4:a5:e9:
48:1b:3c:ea:29:63:a5:c0:82:2b:13:d0:7f:16:d6:
89:70:47:a7:24:c8:62:38:a1:d0:41:33:8f:a7:93:
77:7e:10:59:17:d4:22:45:3b:a5:89:e7:e4:cc:6f:
8f:12:51:68:85:26:12:43:60:49:2f:5f:db:58:32:
2b:da:b8:86:2c:4b:9f:9a:9d:92:11:e2:c8:26:8e:
ea:35:bb:6c:bd:d8:80:29:65:d9:53:17:9c:ba:78:
fd:2b:0c:24:de:58:3d:30:a2:e6:4a:4d:8f:3c:ef:
50:dd:0f:94:ee:e2:d0:5d:ff:6f:dc:58:d9:88:ec:
fa:d1:18:e6:47:80:8b:e7:8c:33:38:a4:13:fe:4f:
32:f0:ea:4e:74:ab:65:e5:68:7c:72:94:1d:bb:33:
26:2e:47:01:a8:7f:23:31:93:8a:9b:32:d4:71:2a:
c3:04:df:88:8a:ad:64:51:f1:80:5e:8a:82:5c:f4:
45:b9:02:50:5e:a4:b1:2b:83:80:66:74:99:53:ea:
b9:7e:64:f1:c3:7f:32:d1:12:59:e2:74:9f:9a:22:
31:0c:ab:d4:84:e8:21:d2:fa:b2:45:22:ba:00:78:
a2:79:63:a5:13:23:14:b0:b4:cf:9d:52:dd:22:4c:
da:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:A9:41:AE:16:36:35:86:21:2A:C2:60:78:8A:76:D4:3D:E0:6C:DC
X509v3 Authority Key Identifier:
keyid:48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/66378C6E9DE211EF931F13A7762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.129.139.0/24
Signature Algorithm: sha256WithRSAEncryption
1b:92:d7:24:b7:10:f5:3e:3f:c0:23:b9:9f:89:64:84:77:e3:
48:eb:29:24:ed:e3:56:7f:e6:c8:41:1c:fb:5a:e7:d7:04:c7:
fc:ae:c7:2b:07:e7:8a:0f:61:10:93:89:76:55:38:97:78:45:
dc:f0:b4:b2:a4:13:cd:25:a8:4b:31:e4:fe:11:e4:a9:18:d1:
b6:d5:80:49:20:aa:9d:29:b3:2a:12:35:03:01:75:16:e9:6d:
eb:1b:d0:79:54:a6:98:1d:85:2b:fc:a6:34:2f:81:84:56:66:
81:7d:86:9e:1b:ee:14:e1:9c:13:d0:66:19:6e:74:71:d4:91:
a6:4f:d2:8c:be:c0:ae:b1:9f:d1:57:2e:c9:aa:81:d4:64:06:
5e:cd:ec:24:97:9d:38:d2:3b:87:0e:fb:8e:02:a6:f9:88:dd:
92:9e:ac:6a:69:64:74:cd:22:f6:4c:52:63:88:6d:02:1f:a9:
1e:bc:bf:e3:4a:99:d8:ec:13:9a:a9:37:7b:de:68:12:36:03:
2f:d9:d4:d8:20:0d:3f:d8:f5:4b:2b:f4:92:72:5c:ff:72:f8:
fe:0f:5a:25:bd:3a:89:63:db:55:3e:24:e8:16:8b:da:ca:19:
e4:10:a1:f1:90:cc:17:13:4f:92:ed:5e:67:b8:dd:65:52:33:
f1:a9:16:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:05:24 2024 by rpki-client on console-ams.rpki-client.org