Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/97E4CDA8308711EFAC04CEB6762E951A.roa
File: 97E4CDA8308711EFAC04CEB6762E951A.roa (raw, json)
Hash identifier: q3+2iJIOiEl0TTrqZOz2JrHKLEsGaKFaRycRyZ+qluM=
Subject key identifier: C3:76:97:F4:37:54:67:5C:79:AF:D6:52:D6:1B:FD:89:21:2E:4B:E0
Certificate issuer: /CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Certificate serial: 1111
Authority key identifier: 48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/97E4CDA8308711EFAC04CEB6762E951A.roa
Signing time: Sat 22 Jun 2024 11:07:20 +0000
ROA not before: Sat 22 Jun 2024 11:07:16 +0000
ROA not after: Mon 22 Jun 2026 11:07:16 +0000
asID: 209181
IP address blocks: 102.129.253.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.mft
rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 27 Nov 2024 00:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4369 (0x1111)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Validity
Not Before: Jun 22 11:07:16 2024 GMT
Not After : Jun 22 11:07:16 2026 GMT
Subject: CN=6676b068-2d34
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:d4:0e:db:57:16:bb:22:a6:3f:28:91:89:d7:
36:f3:7f:4c:bf:cc:75:38:4c:f2:04:3f:68:b0:c3:
bc:df:8d:94:86:56:c5:c6:f8:17:c1:82:c8:02:b3:
2b:8d:9f:7b:1f:e9:7d:f0:0e:de:7b:41:ce:ee:45:
5d:e2:fa:fe:bb:7b:f3:61:cd:1e:5c:a5:29:14:88:
9a:a3:1f:0f:c7:9e:2b:f1:d0:d7:e3:4f:c1:ac:bd:
b2:d8:dc:a3:fe:47:3f:5d:36:45:77:4a:d5:ca:84:
b2:2b:b0:89:1c:b8:e8:cf:40:52:74:ce:26:a2:b2:
5f:44:d0:9d:62:2f:05:fa:86:be:13:52:fb:80:92:
b8:e5:cd:d5:42:7e:15:78:09:1a:c9:54:ef:7f:85:
84:de:57:89:34:cb:57:a8:d2:2b:86:0d:46:9f:ea:
52:48:cc:66:97:6a:ae:8f:97:dc:41:db:5d:42:84:
3c:5c:6f:23:c0:c6:5a:e8:d4:a9:9b:85:1d:e8:b8:
61:8d:04:b5:ac:52:f4:22:54:9b:b6:af:b5:6c:bb:
d9:6f:0c:00:95:ac:e9:e9:56:08:a8:48:80:85:54:
e5:7f:db:ca:42:a3:f2:31:f1:58:cb:db:d9:b5:7a:
4a:27:b2:16:0b:aa:97:3e:76:60:ca:bf:e4:a5:4d:
1d:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:76:97:F4:37:54:67:5C:79:AF:D6:52:D6:1B:FD:89:21:2E:4B:E0
X509v3 Authority Key Identifier:
keyid:48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/97E4CDA8308711EFAC04CEB6762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.129.253.0/24
Signature Algorithm: sha256WithRSAEncryption
3b:a2:4f:d2:b6:bf:b2:fa:7a:05:49:0a:fd:ff:bf:58:19:ec:
fa:6d:39:6c:67:e6:5a:79:7e:64:84:be:b1:df:7b:2d:3c:91:
4e:4c:f0:bc:c6:56:5e:b3:1c:dc:75:76:62:74:1e:7f:fb:6a:
56:c0:64:47:f2:08:19:47:48:09:b3:04:17:df:bb:f4:0a:58:
6f:1d:f6:1c:c4:16:46:66:55:fe:b2:f9:5e:27:13:fe:a9:bf:
9d:e4:36:f5:4f:cf:43:b1:bc:68:f8:58:a4:7f:82:00:19:31:
85:eb:e6:ab:a9:0f:55:13:ad:bd:94:3b:c3:25:8c:e4:c2:93:
54:f0:18:b8:88:95:f8:c0:5e:bf:7f:65:c2:c7:09:7a:03:5e:
34:02:a6:46:8b:c9:9e:6a:8d:e8:b8:6e:95:f0:1b:36:80:fd:
8b:4b:ca:a7:e7:ea:0a:2d:dc:6d:8c:27:c0:c1:0a:be:93:1d:
2a:ac:e2:53:64:3f:2c:23:1a:7a:5d:34:4a:8f:f7:e9:19:07:
92:67:29:e6:8b:f4:2e:f7:ab:7e:6a:0c:0c:fa:a1:b7:9f:64:
06:64:a6:bd:6a:02:89:d3:e8:1d:8a:00:19:4d:d1:c5:01:98:
29:21:76:92:38:a3:2c:22:5e:a5:e2:94:29:ea:79:c6:db:2f:
ce:37:58:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 02:48:44 2024 by rpki-client on console-ams.rpki-client.org