Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/CB8097EA33B211EF8382ED72762E951A.roa
File: CB8097EA33B211EF8382ED72762E951A.roa (raw, json)
Hash identifier: Ss2z6UsC5Dep1NMC3ALXkYaksTt0ejHYQeyUS1e0QVE=
Subject key identifier: 15:A5:61:37:8C:96:66:E7:81:68:88:CE:BF:71:C8:6D:63:F3:E0:72
Certificate issuer: /CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Certificate serial: 111E
Authority key identifier: 48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/CB8097EA33B211EF8382ED72762E951A.roa
Signing time: Wed 26 Jun 2024 11:54:08 +0000
ROA not before: Wed 26 Jun 2024 11:54:05 +0000
ROA not after: Fri 26 Jun 2026 11:54:05 +0000
asID: 21859
IP address blocks: 102.129.140.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.mft
rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 08:48:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4382 (0x111e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Validity
Not Before: Jun 26 11:54:05 2024 GMT
Not After : Jun 26 11:54:05 2026 GMT
Subject: CN=667c0160-889f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:f4:5b:64:39:67:c6:51:71:7a:d9:a6:10:eb:
00:05:18:03:4c:ae:b1:9e:bf:d8:88:5a:08:81:91:
87:fc:7d:24:3c:53:5b:aa:fd:e3:77:9b:11:9c:bf:
93:31:34:51:4b:7d:a9:4b:5c:39:58:be:6a:b5:ec:
c4:c4:84:90:d4:4b:08:f1:60:d5:ec:08:ef:48:9d:
b1:24:0a:de:9d:4f:39:75:07:f1:49:5c:99:e1:8f:
c9:94:05:5a:f0:d7:a7:bc:ed:68:f7:b8:e4:be:f3:
33:79:da:4a:16:83:c4:45:db:9e:d5:a6:28:34:78:
67:0d:54:26:ab:aa:75:04:18:84:d3:39:59:82:0e:
50:86:1c:86:92:63:28:24:91:67:45:a6:a2:0c:e3:
3a:0d:33:8e:d7:d9:35:ef:67:ac:33:59:87:3d:4c:
7b:f6:bb:02:57:72:6e:2a:14:c9:19:c3:25:70:42:
6a:f0:e6:d6:99:93:ce:c1:15:68:fe:da:84:c3:77:
29:47:1d:e5:5b:db:e9:c6:08:dd:1a:33:1f:89:eb:
af:dc:20:bf:a6:d7:94:17:cc:1c:4d:07:a5:48:d5:
59:40:03:64:88:7c:0b:69:b1:ff:eb:ec:7f:c5:48:
b0:88:07:dc:d6:69:af:39:f2:a2:50:4f:1a:38:39:
35:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:A5:61:37:8C:96:66:E7:81:68:88:CE:BF:71:C8:6D:63:F3:E0:72
X509v3 Authority Key Identifier:
keyid:48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/CB8097EA33B211EF8382ED72762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.129.140.0/24
Signature Algorithm: sha256WithRSAEncryption
bb:76:42:d6:9c:c8:9a:48:38:cd:78:6b:72:b1:3f:47:a0:24:
fe:b5:1a:7b:64:04:06:53:40:a0:a3:b1:28:ee:59:03:79:3b:
e2:a1:be:84:f3:d9:3e:ae:cd:c9:32:cc:75:88:f2:a7:58:4e:
5b:11:bd:ea:04:57:75:71:86:51:26:ae:6c:58:c1:39:19:42:
e4:a9:0d:d2:67:98:10:58:03:7a:fb:3f:0f:35:d7:a1:54:eb:
0d:36:75:17:e0:1b:1d:ae:95:91:b7:7b:68:e8:25:af:62:04:
a5:97:33:6a:fa:fa:89:df:3f:ce:72:99:ee:ba:a4:ca:a4:47:
5a:46:fd:ec:38:d7:ef:7f:51:6f:27:86:e6:cb:96:c3:86:fd:
31:7a:6c:b5:36:4a:5d:36:c6:15:64:68:8d:4f:29:67:c7:0b:
ce:64:7f:cc:e6:ea:69:61:1d:7f:2d:18:5e:ad:56:12:a0:cd:
c8:7c:98:d7:ea:be:8d:5d:46:de:9e:26:57:e8:52:85:1c:3e:
c1:18:c4:21:6c:d0:ab:75:b4:4a:a1:49:61:fc:bc:a7:70:9a:
63:e4:2d:9a:7d:74:2a:4c:6a:0a:6c:ea:52:bb:a9:29:2e:59:
e0:d2:28:b3:b2:9f:ee:44:3b:48:43:fc:7c:cc:95:3d:92:a4:
3f:17:09:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:11:00 2024 by rpki-client on console-ams.rpki-client.org