Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/D7F578D0856311EFAB9423A8762E951A.roa
File: D7F578D0856311EFAB9423A8762E951A.roa (raw, json)
Hash identifier: oLq8KspMViMip35aQJLC8tdssPw3j/TOSStfKOe0qZ0=
Subject key identifier: 0F:08:03:33:7B:56:FB:F8:CC:C5:03:F1:97:E3:6F:9A:61:9E:43:14
Certificate issuer: /CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Certificate serial: 1236
Authority key identifier: 48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/D7F578D0856311EFAB9423A8762E951A.roa
Signing time: Tue 08 Oct 2024 10:55:34 +0000
ROA not before: Tue 08 Oct 2024 10:55:31 +0000
ROA not after: Thu 08 Oct 2026 10:55:31 +0000
asID: 212238
IP address blocks: 102.165.29.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.mft
rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4662 (0x1236)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Validity
Not Before: Oct 8 10:55:31 2024 GMT
Not After : Oct 8 10:55:31 2026 GMT
Subject: CN=67050fa6-16c7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:c9:8c:44:93:ed:6c:22:31:9b:10:12:1d:0d:
29:c0:d4:13:86:94:3b:52:19:b2:76:3d:48:bc:c7:
f2:8a:87:3f:78:af:c7:b4:71:0f:5b:fc:33:bc:f6:
1a:35:27:09:5c:d6:a8:4a:82:04:8f:29:51:45:9c:
ca:94:76:d5:b4:4f:ad:43:cd:d6:85:5c:61:d3:03:
9b:67:21:0e:db:57:87:d5:3c:9d:ce:d4:68:f2:d5:
5b:12:cb:dc:c6:9c:33:3a:0d:9d:6e:e3:6f:3a:b4:
23:38:c2:bb:a5:8d:23:ff:ba:aa:ea:48:28:c8:f4:
9d:ed:fd:db:14:30:ab:9b:b5:d1:91:14:e3:1e:9f:
85:fe:25:8d:b4:79:ee:68:38:9a:28:97:eb:3f:67:
5f:3e:3d:13:d6:91:f3:be:7d:68:1b:86:5b:32:30:
47:99:22:68:ea:3b:dc:80:e5:71:31:7b:41:df:4b:
2e:c2:06:48:d1:a4:ec:43:1c:b0:fb:94:66:01:19:
ae:cd:67:f0:5e:c7:f8:28:e6:dc:c0:fa:0a:6a:a5:
4a:56:dd:82:2a:d2:ed:99:ea:fb:5b:ac:7b:de:85:
ea:51:92:0b:69:2c:22:e1:fc:7b:69:85:42:9a:4c:
9d:5b:29:73:91:80:fc:20:3c:ec:34:2e:79:7b:99:
c0:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:08:03:33:7B:56:FB:F8:CC:C5:03:F1:97:E3:6F:9A:61:9E:43:14
X509v3 Authority Key Identifier:
keyid:48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/D7F578D0856311EFAB9423A8762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.165.29.0/24
Signature Algorithm: sha256WithRSAEncryption
7a:96:4e:7f:05:12:9d:d9:59:95:fe:8b:26:96:62:15:9b:46:
5a:49:02:88:1b:84:82:88:73:7e:2f:06:2c:46:b1:69:b0:4f:
4a:82:3f:5d:96:5f:31:da:3c:a2:0d:63:34:4f:28:81:d5:4b:
5c:60:a7:ec:40:c2:c2:7e:59:70:38:ae:e0:ba:29:45:85:d4:
2b:3f:ff:33:57:d2:1b:fa:2a:ad:7c:6d:9d:25:0b:7e:cc:5b:
d9:be:88:ee:d9:82:c4:05:3c:c0:25:9a:52:54:27:13:cd:b4:
c4:28:67:bb:32:58:06:75:e4:01:02:0e:26:7b:9e:ad:db:10:
95:16:33:1d:f0:c2:26:ec:d5:e7:4b:1f:46:de:6c:f7:1c:5f:
21:62:b9:44:9f:e8:e2:47:37:fd:34:ca:3c:ea:52:2c:79:14:
5c:39:3a:1c:73:e5:fe:27:bd:54:92:85:a4:0d:17:e4:db:56:
35:d2:a2:80:49:60:c5:85:25:8f:bf:3b:f3:3c:45:ea:fd:74:
bc:70:7f:12:7c:c9:42:f1:7d:3b:cc:ea:f2:e5:b6:10:64:a1:
67:8d:d1:83:3e:92:ca:86:85:5c:ea:c8:87:fe:bb:3c:4c:97:
68:7a:b9:24:ae:a5:04:b8:2f:ce:8b:ba:56:74:98:4b:f8:8e:
45:2d:d8:b1
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICEjYwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
QzU4RDZBRjExMC8GA1UEBRMoNDhBMkYyQzRBQTRBRUEzOUJFNDZCRkU1Rjk5Qzky
NjI5QkJFRDhGQzAeFw0yNDEwMDgxMDU1MzFaFw0yNjEwMDgxMDU1MzFaMBgxFjAU
BgNVBAMTDTY3MDUwZmE2LTE2YzcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDHyYxEk+1sIjGbEBIdDSnA1BOGlDtSGbJ2PUi8x/KKhz94r8e0cQ9b/DO8
9ho1Jwlc1qhKggSPKVFFnMqUdtW0T61DzdaFXGHTA5tnIQ7bV4fVPJ3O1Gjy1VsS
y9zGnDM6DZ1u4286tCM4wruljSP/uqrqSCjI9J3t/dsUMKubtdGRFOMen4X+JY20
ee5oOJool+s/Z18+PRPWkfO+fWgbhlsyMEeZImjqO9yA5XExe0HfSy7CBkjRpOxD
HLD7lGYBGa7NZ/Bex/go5tzA+gpqpUpW3YIq0u2Z6vtbrHvehepRkgtpLCLh/Htp
hUKaTJ1bKXORgPwgPOw0Lnl7mcCbAgMBAAGjggKlMIICoTAdBgNVHQ4EFgQUDwgD
M3tW+/jMxQPxl+NvmmGeQxQwHwYDVR0jBBgwFoAUSKLyxKpK6jm+Rr/l+ZySYpu+
2PwwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNkM1OEQ2L0Q2OUE0REZFNzMxNjExRTk5MTMzMDM3Q0Y4QUVBMjI4L1NLTHl4
S3BLNmptLVJyX2wtWnlTWXB1LTJQdy5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL1NLTHl4S3BLNmptLVJyX2wtWnlTWXB1LTJQdy5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNkM1OEQ2L0Q2OUE0REZFNzMxNjExRTk5MTMzMDM3Q0Y4
QUVBMjI4L0Q3RjU3OEQwODU2MzExRUZBQjk0MjNBODc2MkU5NTFBLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABmpR0wDQYJKoZIhvcNAQEL
BQADggEBAHqWTn8FEp3ZWZX+iyaWYhWbRlpJAogbhIKIc34vBixGsWmwT0qCP12W
XzHaPKINYzRPKIHVS1xgp+xAwsJ+WXA4ruC6KUWF1Cs//zNX0hv6Kq18bZ0lC37M
W9m+iO7ZgsQFPMAlmlJUJxPNtMQoZ7syWAZ15AECDiZ7nq3bEJUWMx3wwibs1edL
H0bebPccXyFiuUSf6OJHN/00yjzqUix5FFw5Ohxz5f4nvVSShaQNF+TbVjXSooBJ
YMWFJY+/O/M8Rer9dLxwfxJ8yULxfTvM6vLlthBkoWeN0YM+ksqGhVzqyIf+uzxM
l2h6uSSupQS4L86LulZ0mEv4jkUt2LE=
-----END CERTIFICATE-----
Generated at Fri Nov 22 04:05:25 2024 by rpki-client on console-ams.rpki-client.org