Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/78CB23D227DA11EFBDED694C7DDC24C2.roa
File: 78CB23D227DA11EFBDED694C7DDC24C2.roa (raw, json)
Hash identifier: 7fbKoY6u7h9VdDToTjrXpYAqkFhpqYB3MqDDIeSvppc=
Subject key identifier: 00:C7:0A:EC:B4:D0:71:1B:3B:0F:B9:BA:EF:9D:7C:CE:0A:C2:72:72
Certificate issuer: /CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Certificate serial: 10CB
Authority key identifier: 48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/78CB23D227DA11EFBDED694C7DDC24C2.roa
Signing time: Tue 11 Jun 2024 10:07:55 +0000
ROA not before: Tue 11 Jun 2024 10:07:52 +0000
ROA not after: Thu 11 Jun 2026 10:07:52 +0000
asID: 9009
IP address blocks: 102.129.142.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.mft
rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 08:48:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4299 (0x10cb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Validity
Not Before: Jun 11 10:07:52 2024 GMT
Not After : Jun 11 10:07:52 2026 GMT
Subject: CN=666821fb-81bd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:7c:3c:31:a4:a0:78:35:5d:c5:cf:f3:3e:b2:
ae:91:22:d0:7f:df:29:8f:18:cb:6d:dd:46:c4:ac:
de:31:2c:35:c9:00:95:e5:85:24:93:30:34:79:dc:
ee:84:ce:16:6a:e4:09:6a:f8:cb:c7:ca:1b:49:13:
e8:6f:84:d3:bb:c4:78:16:b8:31:95:04:29:9a:c2:
6d:dd:19:9c:81:c8:da:97:b1:49:0a:05:2c:58:be:
6b:21:7a:d5:d4:73:79:bd:21:78:dc:46:de:5f:fa:
73:e3:8e:4c:be:d4:b3:76:cd:68:51:6f:7d:fa:4d:
61:02:32:23:40:69:48:a9:5b:cf:50:f4:07:cf:dd:
44:9b:ae:b2:45:b1:b9:b8:b0:83:a1:9b:f9:de:cc:
46:bd:a9:c9:2d:08:aa:b9:e5:7c:3f:e5:a5:1b:22:
3c:b8:17:a4:7b:4a:ce:63:19:42:84:a6:5d:e4:8f:
83:c9:e1:ff:f8:99:1f:db:a5:ca:8c:a3:56:8d:3c:
ab:3d:32:5c:c0:2b:b5:7d:d7:95:45:8d:a2:58:1d:
5a:ef:09:16:2d:03:c2:8a:85:df:df:01:f9:16:3d:
4d:ed:bf:63:59:f0:80:15:40:92:1b:a7:80:55:62:
dd:9c:4a:e8:84:14:5a:8a:12:b6:89:ed:1f:5d:0b:
f2:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:C7:0A:EC:B4:D0:71:1B:3B:0F:B9:BA:EF:9D:7C:CE:0A:C2:72:72
X509v3 Authority Key Identifier:
keyid:48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/78CB23D227DA11EFBDED694C7DDC24C2.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.129.142.0/24
Signature Algorithm: sha256WithRSAEncryption
72:f4:38:85:4a:40:22:59:99:7e:b3:56:6c:42:c9:01:ff:80:
4c:7e:3a:27:9f:80:69:de:89:de:98:df:9f:88:0e:74:04:ca:
af:aa:39:cd:87:28:fb:8e:8e:07:b1:13:20:d3:35:38:82:2b:
d9:f3:fd:a5:d3:07:0d:24:b2:df:6f:95:5f:3d:c2:d0:ee:67:
0d:4e:8e:8d:47:55:b6:41:2b:44:5e:e0:db:23:3a:89:c2:ff:
2b:9b:63:91:35:69:fb:b1:0b:05:1d:ef:10:d7:da:e7:81:3f:
b9:74:d9:af:4c:46:52:f6:bf:7c:ef:c8:67:fd:de:7f:74:80:
d6:af:39:2a:16:d5:76:39:c2:e8:70:32:60:84:dd:3a:57:24:
cb:c4:da:53:d0:8f:fb:14:93:0c:fd:62:e7:a4:55:f1:a8:5a:
74:00:ba:67:ec:31:35:c2:d2:22:7b:99:20:ee:c5:ca:0d:13:
98:56:86:66:43:77:8f:ab:b6:cd:5f:35:33:a5:4e:95:f5:c4:
37:a1:91:42:1d:7b:57:24:de:25:e4:a3:62:cb:a7:25:5e:d9:
d1:6b:ba:f9:46:94:0d:62:9b:e7:c1:a8:24:27:56:f4:c4:c5:
e3:23:1d:1d:77:7b:43:c5:10:60:a7:2e:97:fe:88:bd:78:15:
f6:26:87:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:05:58 2024 by rpki-client on console-fra.rpki-client.org