Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/8F3024A2FF0D11EDB733A82A4AD9E6FC.roa
File: 8F3024A2FF0D11EDB733A82A4AD9E6FC.roa (raw, json)
Hash identifier: tkqNWeP+J6TVtc2v90Tys8ExcAbABwXkbnaCR3hqjTs=
Subject key identifier: 79:1F:B7:B1:6C:1C:36:CA:96:AE:48:EF:E2:8C:20:2F:95:51:3F:B6
Certificate issuer: /CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Certificate serial: 0BAC
Authority key identifier: 48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/8F3024A2FF0D11EDB733A82A4AD9E6FC.roa
Signing time: Tue 30 May 2023 17:15:22 +0000
ROA not before: Tue 30 May 2023 17:15:17 +0000
ROA not after: Fri 30 May 2025 17:15:17 +0000
asID: 210907
IP address blocks: 102.129.245.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.mft
rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2988 (0xbac)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Validity
Not Before: May 30 17:15:17 2023 GMT
Not After : May 30 17:15:17 2025 GMT
Subject: CN=64762f2a-ce39
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:ea:1f:41:c4:a4:57:4c:96:a9:4a:e9:f8:3c:
d7:80:f4:48:08:0a:46:f8:34:c1:e0:3a:a3:c9:ff:
79:f1:21:c1:5d:dd:b2:f3:97:74:98:3b:7c:03:e6:
aa:c4:d7:c0:0b:3a:2b:7d:5b:e3:d1:ed:af:43:64:
4d:57:71:f6:78:0a:be:86:5d:d3:74:87:d5:60:3e:
66:24:de:b2:3c:4c:8c:0d:80:2e:05:ce:d8:17:08:
27:ee:25:9e:57:e5:65:84:92:44:dc:e5:d6:ba:53:
31:9a:c1:f5:43:2f:3e:45:c0:e2:2e:11:89:13:04:
ba:bf:26:71:ec:b2:74:40:e1:d2:9b:54:9c:97:b8:
d2:1b:62:c0:6d:e6:5c:92:34:cd:3c:7e:c0:52:f0:
05:e3:2f:15:53:de:dd:de:37:28:3f:d7:7c:4e:04:
35:16:48:43:0f:84:d0:dc:3e:a3:fa:90:9a:dd:2b:
0b:5c:3d:e9:b0:81:4c:26:39:78:ac:26:11:6b:28:
4a:5a:02:dd:79:f1:58:44:06:2e:80:38:34:12:d0:
24:56:bb:4f:1f:91:c8:2d:98:15:dc:c4:8e:df:60:
f1:0d:5a:20:77:0b:1d:63:f7:2f:7e:03:79:00:69:
32:47:65:52:7c:96:c3:b5:8a:2f:48:e8:5d:b6:76:
79:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:1F:B7:B1:6C:1C:36:CA:96:AE:48:EF:E2:8C:20:2F:95:51:3F:B6
X509v3 Authority Key Identifier:
keyid:48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/8F3024A2FF0D11EDB733A82A4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.129.245.0/24
Signature Algorithm: sha256WithRSAEncryption
24:19:03:79:43:10:6c:c4:05:04:47:6d:a2:cf:d8:c8:97:7b:
0e:05:7b:0a:58:8d:36:07:43:ac:27:8e:06:27:78:e3:35:88:
71:ec:47:f4:ae:d4:b8:e2:9a:06:dc:30:4f:6e:a9:21:ee:41:
30:e3:55:33:2c:a5:20:3c:87:14:e6:42:ae:e2:e1:6a:06:e6:
25:c7:45:56:d6:39:ef:87:b8:0e:a5:8c:5e:c3:4c:87:45:82:
93:ab:5e:04:02:97:80:5a:d6:9e:36:d5:99:6a:ff:a1:7b:3b:
e8:cd:63:ef:12:d9:01:b8:f6:f2:19:eb:1a:31:83:f7:fd:3f:
2d:4c:08:5e:28:4d:87:4a:62:70:4b:0f:c0:09:4e:f9:a1:13:
e9:08:7e:54:2c:88:4d:15:05:5c:91:5e:65:b3:e4:87:cf:17:
98:08:bc:93:61:87:2e:c6:31:07:24:fa:69:c3:2f:d2:f2:e1:
2e:46:54:80:f3:31:f4:fe:f6:92:65:b3:53:48:7b:73:b6:a6:
74:8d:2e:e5:da:e0:c0:03:19:18:e8:23:8d:98:95:4f:86:f8:
b4:25:a7:12:a0:4f:4e:b2:68:93:34:22:5a:b9:8b:98:f7:66:
40:a5:87:23:90:15:74:5e:88:14:a1:d2:50:0d:31:c4:47:47:
da:44:0c:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 01:30:21 2024 by rpki-client on console-fra.rpki-client.org