Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/C9995B0E903E11EF8ACD92B0762E951A.roa
File: C9995B0E903E11EF8ACD92B0762E951A.roa (raw, json)
Hash identifier: H6umrE1QqsyZUJY2R+8sC1GdMY2DG8YYglMEqlDxE28=
Subject key identifier: 2A:7B:63:31:B8:90:93:7D:93:73:62:6D:37:DD:42:8F:F0:9E:2D:5F
Certificate issuer: /CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Certificate serial: 1262
Authority key identifier: 48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/C9995B0E903E11EF8ACD92B0762E951A.roa
Signing time: Tue 22 Oct 2024 06:28:02 +0000
ROA not before: Tue 22 Oct 2024 06:27:58 +0000
ROA not after: Thu 22 Oct 2026 06:27:58 +0000
asID: 397423
IP address blocks: 102.165.4.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.mft
rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4706 (0x1262)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Validity
Not Before: Oct 22 06:27:58 2024 GMT
Not After : Oct 22 06:27:58 2026 GMT
Subject: CN=671745f2-f26d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:e8:1e:08:1f:dc:dc:d0:1c:18:20:c2:3e:2b:
26:ec:f6:92:fc:41:e6:12:11:f3:96:ab:5c:58:3e:
7a:86:cb:37:2f:0d:45:d5:bd:85:4d:4d:5c:2b:b3:
26:6e:35:52:52:86:ff:d9:0e:e6:e5:61:85:71:81:
96:4f:c7:06:fe:02:c8:55:ad:9f:7b:57:a0:c9:1e:
ec:86:de:af:c2:db:50:9b:3a:9d:59:70:14:ed:9c:
3e:66:ba:32:8b:d5:68:03:0a:1d:28:1c:e4:42:66:
f3:35:7d:19:61:a1:87:c9:f3:a9:1e:d4:8f:a4:a8:
c6:d9:6c:e2:b0:62:b1:e7:1d:0b:55:c6:34:5e:c7:
d1:1e:8c:ec:98:2f:85:95:96:b1:55:22:60:fc:90:
64:77:03:02:9c:a4:64:96:4e:09:af:a7:a1:23:aa:
bf:f0:21:05:61:c4:0c:15:f2:6c:2b:4c:f6:dd:c6:
df:5b:ef:14:83:47:48:04:65:4b:c1:19:3c:a4:e3:
de:24:50:4d:f6:52:6d:fc:57:45:75:29:b6:b3:71:
7e:55:54:8f:17:e0:91:e9:34:b3:cb:97:61:ba:ab:
eb:53:07:98:93:cf:44:8a:fa:a5:dd:c2:ee:09:60:
6a:60:ec:28:0f:26:b9:54:c6:b2:34:94:3c:46:fc:
73:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:7B:63:31:B8:90:93:7D:93:73:62:6D:37:DD:42:8F:F0:9E:2D:5F
X509v3 Authority Key Identifier:
keyid:48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/C9995B0E903E11EF8ACD92B0762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.165.4.0/24
Signature Algorithm: sha256WithRSAEncryption
58:77:71:a3:0b:07:5c:61:a3:0b:65:99:d3:30:4a:15:69:93:
69:7d:54:d7:62:5c:a1:bb:23:ba:c4:65:14:f8:00:8c:e5:43:
e7:9f:70:ec:a4:65:35:91:df:61:3b:8b:55:61:d0:b4:62:fc:
2c:ab:dc:74:ee:1c:79:47:90:7d:73:a5:86:11:eb:22:cc:48:
03:44:28:cd:a6:c0:9c:d1:77:ac:36:48:ca:98:17:bb:6e:2b:
09:c6:ae:d4:7b:af:0c:bc:1d:36:e1:55:12:fb:f0:98:66:ef:
4b:c2:2e:6c:49:4d:b5:69:df:b2:3b:cf:b8:e6:c2:ac:0b:33:
7e:45:2d:d9:9c:d7:8f:59:cb:f4:db:26:c1:77:28:de:07:19:
e6:f3:8e:0b:c7:ca:e8:d3:c3:51:52:dd:88:83:9c:73:82:e1:
48:0f:4a:27:31:4c:2e:27:75:be:71:27:3d:69:b4:75:3e:38:
a7:3c:75:04:5d:f4:5e:f7:a8:d6:c4:2e:81:d6:88:d4:b1:87:
24:16:9e:9e:d0:f6:65:0a:8a:5f:19:9c:36:9f:31:f0:b9:9b:
66:6d:0a:f6:97:94:6c:7b:a8:d6:ad:64:30:96:c9:af:97:d4:
9d:e1:f5:82:96:b8:98:f3:15:34:3c:10:d7:55:39:ba:09:52:
62:d5:6d:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:10:17 2024 by rpki-client on console-fra.rpki-client.org