Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/72136E12E13711EEBA8798B1775412E6.roa
File: 72136E12E13711EEBA8798B1775412E6.roa (raw, json)
Hash identifier: 7PynTrAGcVC7i+EngqLVpAeOTYeo5QHAPUOXI9RBBiI=
Subject key identifier: B2:61:BE:67:4D:C0:FA:9A:97:F4:37:F8:48:3A:2B:FE:55:B6:1D:4C
Certificate issuer: /CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Certificate serial: 0FCC
Authority key identifier: 48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/72136E12E13711EEBA8798B1775412E6.roa
Signing time: Wed 13 Mar 2024 12:44:35 +0000
ROA not before: Wed 13 Mar 2024 12:44:32 +0000
ROA not after: Fri 13 Mar 2026 12:44:32 +0000
asID: 212238
IP address blocks: 102.129.223.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.mft
rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4044 (0xfcc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Validity
Not Before: Mar 13 12:44:32 2024 GMT
Not After : Mar 13 12:44:32 2026 GMT
Subject: CN=65f19fb3-ab83
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:e4:8e:cf:30:d9:64:87:af:15:21:56:7b:ff:
7d:d6:4c:05:2e:74:1c:ea:02:73:a4:73:9a:94:8a:
0f:ca:0e:ac:30:81:cd:5b:cd:ec:fa:76:05:86:06:
c4:13:ee:7f:c4:98:80:dd:25:1e:e1:bd:4a:31:53:
db:08:f1:04:ae:c6:f8:9a:82:84:41:63:df:7f:55:
dc:a8:13:36:f4:9e:a2:ce:90:99:73:15:4b:35:ff:
9c:94:d0:82:b1:20:2a:b8:03:84:b9:37:6e:ec:50:
e0:ed:b9:14:9d:c9:7f:da:42:95:f9:cd:35:24:61:
4b:a3:10:35:42:6b:f3:38:d1:75:0c:2d:55:63:63:
32:d1:53:f2:86:a9:40:e6:a4:8a:62:1f:60:85:51:
00:bd:1c:97:a4:21:84:71:d7:09:fd:c4:04:6e:29:
fa:59:9f:c9:a2:9c:d7:1c:66:1c:4b:25:7d:3e:ba:
77:82:f2:20:86:e1:fb:54:4e:3a:1e:1b:a2:2f:7d:
70:c2:44:a3:72:e4:ad:61:93:28:47:dc:06:4c:9f:
b6:6c:7c:25:4d:d0:67:18:ab:01:c9:3f:ef:31:e2:
9f:9a:c5:d2:22:6d:c0:29:50:bf:66:a6:f6:17:33:
60:66:3b:3a:47:cd:1e:9b:a5:ca:ac:7a:9d:0d:fe:
61:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:61:BE:67:4D:C0:FA:9A:97:F4:37:F8:48:3A:2B:FE:55:B6:1D:4C
X509v3 Authority Key Identifier:
keyid:48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/72136E12E13711EEBA8798B1775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.129.223.0/24
Signature Algorithm: sha256WithRSAEncryption
d2:dd:89:27:9a:45:9d:b9:e8:5b:04:5b:fc:0b:82:7f:dd:e5:
b1:e2:1a:bf:8d:1c:0d:8a:19:39:3a:29:91:71:28:22:2e:d3:
f1:f4:74:cd:31:17:97:43:c5:1c:3a:31:0e:c0:df:fc:d7:c3:
9f:c3:1a:cb:a4:58:bd:5d:df:4c:3f:3f:ba:f9:d0:5c:fd:0d:
74:76:2e:14:ef:a8:d3:9f:72:e1:c4:c8:15:f6:af:fc:fb:40:
88:2e:c3:f1:98:eb:10:cd:42:9c:35:57:94:9d:32:fc:88:54:
30:a8:d9:e1:48:c1:7f:a6:f4:ac:a9:bc:00:7e:d7:5e:ac:47:
79:81:b7:ab:bf:cc:29:eb:1a:e1:ad:5d:46:0a:16:cf:44:19:
91:ad:93:22:f7:8f:9d:62:7e:cc:01:a9:68:b9:23:23:e5:d2:
c3:a4:ed:7c:54:db:5b:4b:b1:e8:71:55:02:23:9e:ca:30:60:
17:11:27:40:a1:9d:d5:d0:98:8c:1d:44:ac:91:f0:65:06:cb:
19:b1:bd:45:8b:49:67:b2:f7:56:3e:b0:2d:74:e9:38:09:9f:
bf:27:31:49:7f:e2:c4:75:68:44:9c:53:f8:f8:fd:9a:4d:83:
d4:39:12:77:ab:e7:08:a2:29:25:e6:cc:dd:d2:23:40:a3:dc:
ad:fd:02:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:05:24 2024 by rpki-client on console-ams.rpki-client.org