Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/68ACEE2C71B311EFBD60F95B762E951A.roa
File: 68ACEE2C71B311EFBD60F95B762E951A.roa (raw, json)
Hash identifier: cCD7N5yRrLe+cHuvhZu9bRYR5YzDElM/p6ozOkpngg0=
Subject key identifier: 21:37:7B:26:0E:41:45:E4:59:58:D3:60:05:59:17:56:20:6F:CF:5F
Certificate issuer: /CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Certificate serial: 11F0
Authority key identifier: 48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/68ACEE2C71B311EFBD60F95B762E951A.roa
Signing time: Fri 13 Sep 2024 09:34:44 +0000
ROA not before: Fri 13 Sep 2024 09:34:41 +0000
ROA not after: Sat 12 Sep 2026 09:34:41 +0000
asID: 54339
IP address blocks: 102.129.157.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.mft
rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4592 (0x11f0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Validity
Not Before: Sep 13 09:34:41 2024 GMT
Not After : Sep 12 09:34:41 2026 GMT
Subject: CN=66e40734-aa8c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:da:43:c9:d7:52:0b:32:cb:b7:fd:46:0a:01:
fa:b4:91:90:e4:7b:b4:e5:c3:14:84:9a:a9:1e:2c:
90:bf:b6:95:47:17:94:79:96:3d:4a:34:4e:15:f6:
48:48:44:13:e7:25:8d:ee:51:ea:32:db:9b:96:e0:
80:8f:76:ae:41:27:01:ab:ea:e8:ae:32:6f:bb:2d:
63:26:8d:2f:3b:22:1f:17:ff:18:f5:e4:11:d2:d9:
2d:85:c5:0f:c6:8c:ad:cd:92:15:eb:30:6c:87:67:
8c:6f:79:bd:0b:b3:0b:1a:9f:fd:18:2b:bd:c8:3a:
75:72:38:ca:29:7a:39:62:23:6f:1d:8e:7f:76:a7:
84:44:2d:7c:f3:53:22:1d:7a:95:56:c7:1e:79:3a:
03:da:c0:07:27:e9:78:9f:96:d1:18:28:6a:37:04:
18:6d:3c:19:98:11:00:df:cc:21:0e:51:01:3b:86:
61:f2:6a:3f:a1:e4:80:90:61:57:30:fb:44:00:94:
9e:2e:24:ae:a7:2a:bc:62:1a:87:db:73:f2:0f:c0:
3b:6f:87:1f:6f:1a:6c:3a:65:35:cc:45:23:f9:9a:
1c:26:fb:71:27:ab:9a:6f:41:67:2d:85:68:47:a1:
12:df:73:9b:8d:52:37:5a:cd:82:3a:f7:c9:34:5e:
7e:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:37:7B:26:0E:41:45:E4:59:58:D3:60:05:59:17:56:20:6F:CF:5F
X509v3 Authority Key Identifier:
keyid:48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/68ACEE2C71B311EFBD60F95B762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.129.157.0/24
Signature Algorithm: sha256WithRSAEncryption
cc:68:b8:c6:7b:e0:f6:ea:cf:e7:f4:1d:ae:8e:56:cf:50:59:
0d:c7:73:2b:f4:8e:a8:1f:24:2a:eb:b8:76:64:3b:1f:40:a7:
ef:08:38:7c:8e:ad:80:ac:b4:bd:97:e9:e9:3a:bd:0c:94:74:
1b:77:15:74:23:6e:a3:c5:aa:03:4f:99:36:2c:7d:d9:b7:aa:
26:fc:5d:bf:ce:06:84:53:01:b1:8f:03:93:3e:58:6f:69:dc:
96:20:16:78:67:b4:d9:03:75:aa:c8:f4:d3:96:e8:cc:87:93:
9e:75:32:89:32:fe:4d:5c:8b:c3:35:ac:0d:db:33:e5:de:39:
a1:e2:79:b7:f8:91:57:dc:30:b9:3a:7c:00:88:61:42:26:ff:
20:86:1a:21:b3:b1:e5:d9:86:63:02:22:b1:fa:dc:39:8b:73:
d5:65:5a:ea:3e:1a:30:60:a6:45:53:14:df:98:90:d1:39:f8:
17:c1:69:55:63:4b:b0:87:61:68:12:e4:04:e0:34:03:15:4d:
50:93:c9:e6:35:9d:b5:e2:3f:92:f6:32:87:9b:f3:5c:9b:9e:
3b:55:4b:0f:7f:ce:5c:53:90:d1:9d:db:9b:4c:be:4a:f1:45:
ee:92:c4:01:dc:a0:0f:f7:ae:26:b1:6e:ae:a6:fa:83:50:fa:
1b:09:9f:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:05:24 2024 by rpki-client on console-ams.rpki-client.org