Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/78E62B60C39B11EB90310E80F8AEA228.roa
File: 78E62B60C39B11EB90310E80F8AEA228.roa (raw, json)
Hash identifier: hGy7ZgLCriUy1HlqgQHa0lLnSjuy8ZCw3X2EjLEggmo=
Subject key identifier: 96:3F:13:90:74:44:D3:85:01:B5:40:B8:17:9C:EA:0C:ED:42:80:F6
Certificate issuer: /CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Certificate serial: 040B
Authority key identifier: 48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/78E62B60C39B11EB90310E80F8AEA228.roa
Signing time: Wed 02 Jun 2021 12:10:09 +0000
ROA not before: Wed 02 Jun 2021 12:10:03 +0000
ROA not after: Mon 02 Jun 2031 12:10:03 +0000
asID: 61317
IP address blocks: 102.165.9.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.mft
rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 18 Feb 2025 00:06:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1035 (0x40b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36C58D6AF
Validity
Not Before: Jun 2 12:10:03 2021 GMT
Not After : Jun 2 12:10:03 2031 GMT
Subject: CN=60b77520-1d59
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:f9:13:c0:99:92:33:ba:52:af:9a:d9:f6:0a:
d5:b5:5d:98:42:d8:0a:87:48:a3:68:92:2f:d2:c6:
d6:49:8a:ba:55:7f:bf:92:4d:d6:8d:a9:64:ba:d8:
b7:4a:c8:07:8e:7a:4f:73:33:e3:9c:e8:9a:34:f8:
45:ca:6b:6f:8b:11:59:20:6a:c5:44:df:e0:37:05:
2b:05:e1:20:fa:95:0d:f2:c1:42:e5:be:4b:f3:ee:
5d:8c:d3:0c:17:d7:6b:57:fa:4c:4e:8d:4e:ce:82:
82:17:4c:49:bf:d1:bd:91:86:0b:2b:b6:c6:bb:a9:
d4:e6:c5:a4:94:22:ef:ec:85:fb:f3:00:fc:ce:77:
80:13:ef:7e:28:5a:f4:92:eb:31:f6:d9:d6:cb:7c:
66:7d:82:52:b1:47:76:9b:84:5e:a9:55:3f:89:82:
fa:9a:a0:a1:c3:8b:a4:37:46:96:a0:a1:4c:c7:54:
e4:17:e7:f7:f5:09:00:c7:44:ec:7b:2b:3f:28:e5:
9f:19:57:e2:75:19:9a:25:73:21:ae:a8:7e:16:2c:
6b:32:85:d5:03:c3:cf:3b:c2:86:0d:fd:de:75:52:
3c:ad:ca:5c:63:03:c9:46:53:69:63:32:5b:f6:02:
29:03:f3:e9:52:ea:dd:f2:e8:e0:74:c6:99:cc:75:
32:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:3F:13:90:74:44:D3:85:01:B5:40:B8:17:9C:EA:0C:ED:42:80:F6
X509v3 Authority Key Identifier:
keyid:48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/78E62B60C39B11EB90310E80F8AEA228.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.165.9.0/24
Signature Algorithm: sha256WithRSAEncryption
12:39:b3:9a:2e:37:d4:5b:6c:02:71:42:e5:c1:3f:c1:9a:5e:
38:70:17:92:a2:c6:e5:96:8a:02:cc:cc:cf:86:c6:90:25:29:
5c:0f:24:a6:3d:e6:77:45:90:56:ad:1f:32:c0:fd:bf:de:38:
81:d6:e3:3f:66:33:2e:d4:90:96:ee:4a:60:58:44:18:6f:2c:
b5:81:db:5d:8c:a2:93:00:bb:74:bd:f5:f7:88:7e:68:4a:d9:
2d:28:d7:96:7c:5b:4e:6c:63:9f:9a:81:c1:a7:4e:6e:86:86:
01:b9:30:81:4a:99:a0:f2:b0:da:01:4d:93:f2:ad:e2:c5:85:
87:2c:95:20:b6:45:e1:32:0f:cd:48:1f:49:f7:ff:3a:e1:36:
29:24:e0:4e:b9:e6:a2:32:2d:96:b4:73:cf:75:bf:0c:5d:37:
a4:bb:03:ae:3c:0e:3c:a8:50:25:d2:a9:54:db:90:6a:9a:1d:
83:0f:46:b8:fc:c2:ef:31:43:12:a9:8b:f9:c0:b8:a7:ab:18:
fb:b4:e6:77:a7:74:78:de:e2:cb:ed:c6:61:f6:fa:b5:eb:7c:
f7:8d:fa:71:24:15:41:a5:93:05:51:c7:4e:8f:23:f1:c7:bc:
5b:37:92:ae:59:4e:f3:bd:d1:53:07:1c:a3:d9:0f:c3:2b:65:
df:90:4b:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 15:34:45 2025 by rpki-client