Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/9C0E12F6D0AE11EEB97B2773775412E6.roa
File: 9C0E12F6D0AE11EEB97B2773775412E6.roa (raw, json)
Hash identifier: YUuadJRwnHtbxiRd3YPebq1Gy624FJubakfalWgk5UY=
Subject key identifier: BA:AE:08:FD:76:D1:93:01:97:79:9D:20:CB:D2:0A:D0:95:19:E0:A8
Certificate issuer: /CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Certificate serial: 0F75
Authority key identifier: 48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/9C0E12F6D0AE11EEB97B2773775412E6.roa
Signing time: Wed 21 Feb 2024 11:44:46 +0000
ROA not before: Wed 21 Feb 2024 11:44:42 +0000
ROA not after: Sat 21 Feb 2026 11:44:42 +0000
asID: 61317
IP address blocks: 102.165.2.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.mft
rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3957 (0xf75)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Validity
Not Before: Feb 21 11:44:42 2024 GMT
Not After : Feb 21 11:44:42 2026 GMT
Subject: CN=65d5e22d-91fc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:63:9e:f5:2d:52:61:7a:13:9a:c5:67:c2:0c:
09:90:cc:44:de:d3:29:26:50:c6:0f:b3:50:b5:94:
c4:f0:1d:4c:f8:c5:c4:ff:21:04:2a:87:3b:35:57:
71:5b:0f:48:36:33:0a:69:48:52:98:3a:ea:21:ba:
03:e5:c6:b1:73:f4:53:47:cd:37:12:5f:a2:b3:bd:
51:ad:f5:c6:e6:01:5e:72:08:25:0b:19:3a:f4:99:
ed:47:28:40:0b:07:11:46:c5:6a:31:0d:74:75:1b:
b2:7c:a1:f1:36:aa:5f:81:db:b1:46:ad:fa:71:ed:
3e:d7:e1:76:24:4e:1d:e0:c8:44:ff:2e:d3:dc:76:
af:50:0a:7a:54:fc:e5:e0:28:d8:a1:16:15:60:c3:
e1:6e:86:62:3a:2e:f3:c4:cc:66:c3:ad:99:c8:4c:
3e:13:03:77:6d:4d:16:40:68:1b:07:b4:ac:38:6b:
5a:83:c0:cf:21:dd:c2:a2:a3:e1:04:a2:fa:15:ed:
68:3c:92:c6:5e:0c:11:c6:a4:ba:74:e9:b7:c9:9e:
a0:b3:ed:9d:08:46:43:b5:ee:01:c5:d7:9f:71:0f:
77:39:91:12:bf:f7:ed:35:f0:e5:36:c5:f5:d2:25:
3c:1b:4e:d5:b9:6b:62:8d:b5:65:b6:de:3a:26:91:
af:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:AE:08:FD:76:D1:93:01:97:79:9D:20:CB:D2:0A:D0:95:19:E0:A8
X509v3 Authority Key Identifier:
keyid:48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/9C0E12F6D0AE11EEB97B2773775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.165.2.0/24
Signature Algorithm: sha256WithRSAEncryption
9a:64:c0:82:31:e0:21:02:04:6f:a9:68:cb:e2:c2:e3:08:10:
a4:92:f9:79:41:1f:bd:20:dd:fd:d9:e5:4e:5a:88:9a:e2:37:
87:b7:b6:e3:05:7a:42:cb:9b:a6:34:3e:c8:89:08:15:0d:7f:
ca:40:a4:69:3d:1e:49:57:64:19:78:6d:66:dd:57:8f:b9:e3:
60:c4:9c:23:95:e8:71:8f:52:bb:fe:39:de:b9:f2:da:1e:3e:
1c:5c:a6:05:92:6c:af:37:f5:38:a2:68:de:4c:00:b4:ea:be:
56:59:de:03:cc:b0:7a:71:8b:b0:74:6f:0c:47:5b:b7:24:c2:
ae:3f:cd:cf:15:0c:b6:4a:ab:d7:80:f0:7c:71:83:67:97:bc:
40:a8:67:91:d6:d1:0c:ad:60:71:d7:74:fd:f2:80:10:8b:5c:
f5:9c:43:73:8e:cb:95:7a:70:00:48:37:1e:cf:ec:ef:5e:03:
93:14:96:e5:56:f5:dd:99:e6:2c:77:2d:35:40:63:b9:32:f3:
d1:ce:c2:75:51:1a:51:89:41:55:ed:9b:bf:eb:d5:82:50:95:
47:98:ed:c4:3d:bd:0c:02:f6:aa:ff:9f:5b:6f:9c:a7:87:0a:
c2:e3:45:1b:22:3b:ea:f6:34:e1:5c:05:4c:8b:11:ca:34:c9:
46:ec:48:b9
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICD3UwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
QzU4RDZBRjExMC8GA1UEBRMoNDhBMkYyQzRBQTRBRUEzOUJFNDZCRkU1Rjk5Qzky
NjI5QkJFRDhGQzAeFw0yNDAyMjExMTQ0NDJaFw0yNjAyMjExMTQ0NDJaMBgxFjAU
BgNVBAMTDTY1ZDVlMjJkLTkxZmMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQC0Y571LVJhehOaxWfCDAmQzETe0ykmUMYPs1C1lMTwHUz4xcT/IQQqhzs1
V3FbD0g2MwppSFKYOuohugPlxrFz9FNHzTcSX6KzvVGt9cbmAV5yCCULGTr0me1H
KEALBxFGxWoxDXR1G7J8ofE2ql+B27FGrfpx7T7X4XYkTh3gyET/LtPcdq9QCnpU
/OXgKNihFhVgw+FuhmI6LvPEzGbDrZnITD4TA3dtTRZAaBsHtKw4a1qDwM8h3cKi
o+EEovoV7Wg8ksZeDBHGpLp06bfJnqCz7Z0IRkO17gHF159xD3c5kRK/9+018OU2
xfXSJTwbTtW5a2KNtWW23jomka9PAgMBAAGjggKlMIICoTAdBgNVHQ4EFgQUuq4I
/XbRkwGXeZ0gy9IK0JUZ4KgwHwYDVR0jBBgwFoAUSKLyxKpK6jm+Rr/l+ZySYpu+
2PwwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNkM1OEQ2L0Q2OUE0REZFNzMxNjExRTk5MTMzMDM3Q0Y4QUVBMjI4L1NLTHl4
S3BLNmptLVJyX2wtWnlTWXB1LTJQdy5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL1NLTHl4S3BLNmptLVJyX2wtWnlTWXB1LTJQdy5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNkM1OEQ2L0Q2OUE0REZFNzMxNjExRTk5MTMzMDM3Q0Y4
QUVBMjI4LzlDMEUxMkY2RDBBRTExRUVCOTdCMjc3Mzc3NTQxMkU2LnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABmpQIwDQYJKoZIhvcNAQEL
BQADggEBAJpkwIIx4CECBG+paMviwuMIEKSS+XlBH70g3f3Z5U5aiJriN4e3tuMF
ekLLm6Y0PsiJCBUNf8pApGk9HklXZBl4bWbdV4+542DEnCOV6HGPUrv+Od658toe
PhxcpgWSbK839TiiaN5MALTqvlZZ3gPMsHpxi7B0bwxHW7ckwq4/zc8VDLZKq9eA
8Hxxg2eXvECoZ5HW0QytYHHXdP3ygBCLXPWcQ3OOy5V6cABINx7P7O9eA5MUluVW
9d2Z5ix3LTVAY7ky89HOwnVRGlGJQVXtm7/r1YJQlUeY7cQ9vQwC9qr/n1tvnKeH
CsLjRRsiO+r2NOFcBUyLEco0yUbsSLk=
-----END CERTIFICATE-----
Generated at Fri Nov 22 02:10:16 2024 by rpki-client on console-fra.rpki-client.org