Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/971B41BE903F11EFA94BE8B7762E951A.roa
File: 971B41BE903F11EFA94BE8B7762E951A.roa (raw, json)
Hash identifier: DknZfLdE7JSlmE0llr1+zlqNvqPcPJD7ukfBY6Eg74o=
Subject key identifier: F7:99:95:39:2E:56:B1:0B:3D:DD:D3:D2:E6:56:B1:FC:D4:9E:C7:22
Certificate issuer: /CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Certificate serial: 1268
Authority key identifier: 48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/971B41BE903F11EFA94BE8B7762E951A.roa
Signing time: Tue 22 Oct 2024 06:33:46 +0000
ROA not before: Tue 22 Oct 2024 06:33:43 +0000
ROA not after: Thu 22 Oct 2026 06:33:43 +0000
asID: 212238
IP address blocks: 102.129.155.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.mft
rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4712 (0x1268)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Validity
Not Before: Oct 22 06:33:43 2024 GMT
Not After : Oct 22 06:33:43 2026 GMT
Subject: CN=6717474a-baa6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:a4:f2:f7:ea:85:89:dd:80:d3:e3:a1:57:f7:
4a:25:ab:9d:ec:43:ef:db:8e:51:f5:62:fa:91:58:
66:77:27:49:dc:37:15:93:d2:9e:17:82:08:67:57:
39:dc:99:e4:3e:fc:ac:8d:25:56:b6:4c:b0:6c:e3:
fc:eb:c7:cc:ee:52:6c:4e:4c:ac:1b:26:a9:64:11:
a3:b7:7b:fd:f9:78:0e:3c:2e:0c:85:3f:1f:ca:94:
ae:ff:cb:05:3b:bb:0f:40:70:f8:49:db:65:28:6f:
a3:a3:9c:b1:a4:ca:91:18:e1:d1:2b:85:2d:d1:f6:
ae:6c:01:67:e3:c4:56:c3:cb:c6:9d:01:6a:fe:f1:
2e:d3:c2:98:43:2d:2d:1b:52:cc:18:73:01:80:a5:
f3:ce:a1:12:32:be:bc:6e:6f:5b:bb:c5:cb:e5:18:
dd:29:af:07:b2:df:53:ea:3f:69:5a:3d:9f:57:96:
a0:c2:85:93:30:28:0f:22:70:73:76:43:25:fb:99:
bc:25:f3:5b:2e:aa:cc:d3:ed:cc:fa:cc:c3:8e:f7:
d4:23:42:28:b2:bd:da:4a:ca:4c:1d:95:90:63:38:
24:5d:60:2b:a6:19:be:cf:19:83:63:9e:56:a9:79:
68:2f:8a:15:f3:3b:d5:6b:3a:5c:dc:e6:f8:07:b2:
8b:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:99:95:39:2E:56:B1:0B:3D:DD:D3:D2:E6:56:B1:FC:D4:9E:C7:22
X509v3 Authority Key Identifier:
keyid:48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/971B41BE903F11EFA94BE8B7762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.129.155.0/24
Signature Algorithm: sha256WithRSAEncryption
dc:1f:9c:44:20:63:41:bd:2d:0e:10:56:24:ed:1b:6b:df:9c:
74:ae:ca:dd:28:7a:0b:54:3a:19:0f:6e:cb:bd:6e:22:b3:eb:
b0:41:4f:bd:5d:cd:d0:e9:84:5a:3d:32:23:4c:47:75:fd:ff:
cf:9b:c5:ba:e6:c8:03:55:f2:13:74:12:74:b4:4e:82:d9:2f:
a1:60:a5:40:7a:c3:6e:2d:5a:cb:b3:be:8c:76:1c:0a:5b:64:
3c:c6:41:f1:60:50:4a:53:46:65:cf:40:2a:f7:fd:2e:bb:74:
71:2f:a4:61:45:9c:c4:e0:6e:2b:f1:2b:51:60:da:30:54:82:
50:f4:bc:09:1e:96:9f:31:ed:3e:18:e6:8a:45:cb:58:9a:03:
cb:bb:35:57:3d:5c:d5:0a:89:9f:07:a3:70:ee:2d:e9:f5:9e:
ba:ca:96:22:a9:cf:54:ef:a5:f0:67:df:b8:ff:b6:4a:95:26:
a1:05:ad:54:55:37:c8:2d:69:66:e3:bc:f9:a6:68:3d:39:d1:
7c:2c:c6:db:b6:e5:a8:a3:fd:78:25:f7:77:61:31:32:11:e5:
f7:36:98:fc:54:4c:7b:ed:10:96:06:ff:31:cd:a0:2c:a0:03:
ac:8f:0a:2c:29:7c:ff:e0:89:ae:ed:a9:9b:22:37:73:0b:e8:
b8:2d:3b:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:05:25 2024 by rpki-client on console-ams.rpki-client.org