Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/7A8E1E082A0811ED93B8A4D3F1222468.roa
File: 7A8E1E082A0811ED93B8A4D3F1222468.roa (raw, json)
Hash identifier: oCyKyBKXJf91TE2Fmd0kXskHtkvwn15x5+s3vGjDCV0=
Subject key identifier: 20:E5:DB:73:EF:AF:96:61:A7:A6:E1:C2:1E:74:A3:4B:F1:F9:58:A0
Certificate issuer: /CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Certificate serial: 07C3
Authority key identifier: 48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/7A8E1E082A0811ED93B8A4D3F1222468.roa
Signing time: Thu 01 Sep 2022 15:12:22 +0000
ROA not before: Thu 01 Sep 2022 15:12:18 +0000
ROA not after: Thu 05 Sep 2024 15:12:18 +0000
asID: 61317
IP address blocks: 102.165.11.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.mft
rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 26 Apr 2024 00:05:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1987 (0x7c3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Validity
Not Before: Sep 1 15:12:18 2022 GMT
Not After : Sep 5 15:12:18 2024 GMT
Subject: CN=6310cbd6-4935
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:5d:fb:80:3a:df:25:51:98:d6:2f:bd:64:a4:
09:bf:3d:eb:8a:e3:92:73:e1:e1:ee:a2:a4:22:f6:
9a:38:1e:45:b8:ee:6d:13:a7:aa:c7:a8:9a:85:ef:
68:59:99:94:da:83:6b:4d:d0:83:94:f8:c4:24:c5:
d5:d4:28:e7:41:71:27:2a:a8:fd:c3:44:c9:c2:06:
8f:37:7b:93:9e:98:cb:44:22:2a:a6:26:12:8c:01:
ae:4a:25:94:61:49:83:90:07:4d:81:39:c7:e8:50:
ad:ba:ce:ae:1b:44:3d:dc:9a:79:c6:b6:04:43:50:
19:21:e3:6e:6c:e4:7a:8e:47:bd:25:54:21:3b:32:
c6:df:42:de:2b:fd:de:84:47:76:e8:6a:1c:e8:74:
c4:e9:22:f7:83:14:6a:5c:0b:8b:22:df:2a:a6:e0:
10:ca:4b:f3:89:de:a6:6c:22:b0:cd:ef:8d:81:d1:
aa:6e:44:94:61:bb:d6:ce:73:fe:33:b0:fa:f8:7d:
4d:82:ee:87:69:e6:a4:90:4b:aa:1f:52:b4:fb:78:
35:7f:b2:b0:a2:cc:f7:33:49:57:c2:0f:b5:8a:5a:
21:fb:f3:36:bd:dd:22:86:26:ad:a3:b1:3f:f7:91:
5d:2d:db:2c:c8:29:3b:94:28:df:13:53:29:f3:46:
94:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:E5:DB:73:EF:AF:96:61:A7:A6:E1:C2:1E:74:A3:4B:F1:F9:58:A0
X509v3 Authority Key Identifier:
keyid:48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/7A8E1E082A0811ED93B8A4D3F1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.165.11.0/24
Signature Algorithm: sha256WithRSAEncryption
7b:d9:71:69:6a:25:3a:3a:08:52:13:16:46:5f:fd:fa:fc:97:
18:4e:aa:02:eb:31:02:c5:9a:d5:e9:ed:fc:26:56:ef:cf:40:
f0:fb:fa:7a:ba:68:14:e4:83:0b:e5:ed:b3:7e:18:16:fa:11:
73:5b:73:00:2f:34:d5:00:86:af:b8:1b:86:9e:a1:cb:7c:81:
08:e6:06:72:27:66:61:8e:a7:e0:51:33:89:6d:72:0a:f7:a7:
54:f6:e0:ae:96:91:59:cc:6c:a7:3d:2d:45:55:0e:d6:81:7d:
69:3a:99:ab:09:2f:0c:97:7d:74:e2:b2:61:d9:4d:da:46:ea:
35:a9:21:9f:70:1e:ed:5e:15:5b:f0:26:7e:c9:ba:a4:b6:6b:
4e:78:a4:81:3f:62:4e:47:7b:ec:57:5b:88:95:da:dc:ad:cd:
1e:20:bc:db:37:e5:38:a4:f4:16:83:28:94:42:92:58:5b:53:
e3:c9:79:ad:f9:bc:fb:ce:ab:e1:09:45:4c:e9:20:59:ab:f7:
c6:78:cd:58:ef:56:32:47:d1:dc:3b:4a:11:6d:84:af:0e:bb:
68:53:ef:30:c4:c5:70:e2:9d:0d:04:b5:b1:e8:e9:a3:01:26:
b6:ed:a0:24:cb:bb:1d:14:98:7d:cd:a6:ab:ca:5d:c6:82:2d:
8e:d0:21:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 24 01:50:10 2024 by rpki-client on console-fra.rpki-client.org