Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/CB3486FAA95311EEAF86CC66775412E6.roa
File: CB3486FAA95311EEAF86CC66775412E6.roa (raw, json)
Hash identifier: sqAU1Sc5vNss8yimfRzjieYrS8TN6A3F92XLQWXAy3Q=
Subject key identifier: BF:9B:F9:6B:E3:1C:37:B1:3C:13:35:06:F7:72:6F:50:9E:C3:C1:3B
Certificate issuer: /CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Certificate serial: 0EB7
Authority key identifier: 48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/CB3486FAA95311EEAF86CC66775412E6.roa
Signing time: Tue 02 Jan 2024 09:46:25 +0000
ROA not before: Tue 02 Jan 2024 09:46:22 +0000
ROA not after: Sat 03 Jan 2026 09:46:22 +0000
asID: 7018
IP address blocks: 102.129.177.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.mft
rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 06 May 2024 00:04:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3767 (0xeb7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Validity
Not Before: Jan 2 09:46:22 2024 GMT
Not After : Jan 3 09:46:22 2026 GMT
Subject: CN=6593db71-6bfa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:57:aa:42:e3:89:40:95:75:bd:93:db:78:0c:
1a:95:f4:db:ed:c2:73:5e:56:5a:a4:f4:d3:7c:0d:
ec:aa:d4:a6:8c:26:52:8d:e3:86:bf:a8:07:d4:3c:
e4:fc:2b:2b:66:f6:ff:35:e3:e8:0b:69:e8:77:e5:
6b:f9:6c:0c:29:e4:ca:af:8c:04:e7:00:ae:8c:b8:
36:bb:79:e4:5c:c2:5a:97:0b:fe:78:55:f4:d8:2b:
16:ea:01:40:be:7d:98:2c:91:f8:ef:d7:1c:9f:fe:
fd:95:a8:70:da:b9:b8:d7:db:eb:1a:cb:7d:8f:51:
25:41:f4:5f:ff:eb:bb:bd:3e:17:8d:da:3d:c3:81:
15:33:87:2d:25:60:a2:3b:25:d8:6f:46:a9:a4:5a:
9a:6c:e9:d5:1c:a3:f6:b3:e4:aa:b9:ec:65:b8:28:
28:18:d6:17:bd:46:cc:6b:f1:dc:f5:15:b4:29:25:
ef:7b:5a:1e:ce:1c:ec:d9:de:8c:26:1a:db:49:1c:
c3:ed:25:ca:d8:a5:d4:e6:26:6f:60:3e:a7:17:bf:
63:58:39:a2:0d:e7:55:7c:5f:81:b7:e8:8a:c0:3f:
84:bc:af:cc:eb:02:95:ba:cf:22:cb:06:0f:cf:60:
e0:7b:1c:c9:1b:8f:f1:fd:46:a4:4e:8e:76:d7:84:
70:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:9B:F9:6B:E3:1C:37:B1:3C:13:35:06:F7:72:6F:50:9E:C3:C1:3B
X509v3 Authority Key Identifier:
keyid:48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/CB3486FAA95311EEAF86CC66775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.129.177.0/24
Signature Algorithm: sha256WithRSAEncryption
8d:da:17:21:98:11:e2:32:1c:30:ff:f1:7c:e3:1a:cb:c4:88:
ca:6c:4e:22:63:fe:ae:fe:a0:19:43:b5:c2:f3:46:53:dd:64:
da:71:9e:35:0e:41:7e:cf:4e:0f:8c:dc:eb:6f:3f:d7:1f:e9:
be:55:93:94:00:d0:92:ae:80:67:1f:bc:e4:8d:b8:ae:07:9e:
69:50:88:19:dd:00:57:94:c8:98:eb:18:4e:63:a4:86:d6:b0:
e2:c5:fe:99:40:50:89:da:eb:d5:e5:45:7c:de:f5:5d:84:56:
d8:30:65:bc:5a:bd:80:f2:cc:00:1c:87:8e:67:3e:ef:08:fd:
dd:3b:dc:b0:c1:6e:bd:cd:c6:61:71:d9:4a:eb:39:50:ca:5a:
7f:1f:63:f8:7e:1e:cd:95:8f:e6:f6:86:b4:05:4a:68:a4:bc:
10:2c:ca:4d:2d:82:5e:47:d7:6d:cd:33:12:92:75:aa:83:52:
31:28:0d:cf:57:21:e0:18:46:54:49:51:23:83:c0:21:e3:d4:
cc:24:79:53:f4:f2:fc:81:59:ba:9c:70:e6:ff:f4:8b:9d:a1:
78:cb:c5:45:4f:4c:7b:47:17:5a:32:2c:49:70:ab:0e:c1:bc:
a2:e6:13:6b:29:84:7c:84:69:37:0a:44:a0:8a:9f:9e:ea:35:
b4:38:87:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 4 01:53:11 2024 by rpki-client on console-ams.rpki-client.org