Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/C608F920A64D11EF9FE6524F762E951A.roa
File: C608F920A64D11EF9FE6524F762E951A.roa (raw, json)
Hash identifier: rsZJWgTYb5LE4KmgLtAM3HqnLKBr8GRHtMQRcp7zZow=
Subject key identifier: 09:C3:36:CC:79:C0:78:8C:56:DE:A1:AF:BA:D2:10:F5:E4:33:AE:18
Certificate issuer: /CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Certificate serial: 12C3
Authority key identifier: 48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/C608F920A64D11EF9FE6524F762E951A.roa
Signing time: Tue 19 Nov 2024 08:10:44 +0000
ROA not before: Tue 19 Nov 2024 08:10:40 +0000
ROA not after: Thu 19 Nov 2026 08:10:40 +0000
asID: 212238
IP address blocks: 102.129.230.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.mft
rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4803 (0x12c3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Validity
Not Before: Nov 19 08:10:40 2024 GMT
Not After : Nov 19 08:10:40 2026 GMT
Subject: CN=673c4804-4493
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:ab:fd:5d:cb:4d:71:f6:8c:5e:cf:30:3d:72:
b9:a5:f2:89:72:ea:99:2c:b6:28:37:f9:1c:ff:e9:
be:24:00:83:50:a9:c8:49:09:56:f7:8d:24:41:09:
d1:7c:92:a8:ba:90:fa:58:de:56:94:da:60:c6:cb:
13:16:01:8b:d4:54:d2:28:1f:ff:a5:0e:15:7f:e5:
e6:fa:83:d8:14:b7:5c:ea:c9:82:40:f1:12:7a:43:
98:f2:ca:85:24:28:0a:18:3a:24:82:3a:74:5c:1b:
e8:45:a2:6c:63:c0:b1:7c:b2:6f:55:a9:53:a6:4c:
51:37:55:c1:b7:52:03:bd:ed:76:62:b8:32:3b:ed:
75:5c:d8:ac:55:11:1a:35:f3:fc:62:fb:ec:b8:02:
a7:92:40:8f:d1:9d:a1:a3:48:0f:5d:4e:6b:10:6a:
7b:4a:2b:e7:da:24:93:79:a0:e2:14:af:6d:36:65:
8d:92:99:fd:c1:b2:45:99:1b:86:1f:e1:49:e4:b7:
60:47:31:17:1b:24:d2:f6:2e:28:8c:2e:2d:10:3e:
8b:08:61:34:8f:51:8d:1d:a3:b4:c3:9c:9e:ac:75:
41:40:d3:cd:04:27:5e:67:c3:cf:ff:cb:61:8e:6b:
d1:75:f2:43:56:c0:20:12:54:a1:38:39:21:a0:fe:
81:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:C3:36:CC:79:C0:78:8C:56:DE:A1:AF:BA:D2:10:F5:E4:33:AE:18
X509v3 Authority Key Identifier:
keyid:48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/C608F920A64D11EF9FE6524F762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.129.230.0/24
Signature Algorithm: sha256WithRSAEncryption
2c:e8:f2:04:56:b2:e1:b5:8a:5c:76:85:ba:18:60:af:af:af:
0e:b4:9a:92:59:b6:db:d3:b3:e5:d6:03:82:88:0b:da:43:90:
7e:a9:52:f9:1f:40:04:49:e4:07:f2:85:32:c1:d1:78:0f:1e:
88:f3:74:ad:49:34:83:fe:74:90:04:44:ca:32:bc:0f:84:14:
2f:4c:9e:da:47:bc:ce:e1:8a:28:89:bc:d3:48:19:f7:45:31:
e7:da:a3:9f:2e:dc:07:aa:4b:54:20:3c:74:94:68:0a:30:7b:
3f:48:5e:7b:fb:7c:64:45:c7:48:16:65:04:85:17:22:97:2a:
6e:13:36:33:d2:a2:73:ee:29:34:57:96:68:f3:0f:ef:91:bb:
95:d5:28:1e:8f:c6:0c:e6:bd:30:ee:8f:5e:c4:0a:f9:96:07:
51:d9:28:95:6c:1c:a3:3c:0e:4d:f6:43:7b:89:c8:0c:8d:bc:
39:dc:6b:e1:42:98:7a:24:14:c6:a3:d9:bd:6c:48:6e:06:e5:
ca:cb:49:ba:53:db:61:64:ec:43:c2:8a:7d:b0:09:91:b0:92:
f3:08:11:6e:b9:05:55:c5:b1:26:47:92:03:23:f9:33:97:24:
98:31:8d:4e:12:e1:14:90:79:9a:86:c7:29:67:37:d4:12:f4:
43:4b:ee:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:10:17 2024 by rpki-client on console-fra.rpki-client.org