Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/D84E1E34347F11EFA261E062762E951A.roa
File: D84E1E34347F11EFA261E062762E951A.roa (raw, json)
Hash identifier: hBekIKmcTp4/eIxZsuFO0hdz/6/hA434E17Xcpbxrd4=
Subject key identifier: 9D:81:D6:C2:45:15:FF:3D:85:F1:7C:76:B5:9D:43:1B:B0:21:31:1D
Certificate issuer: /CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Certificate serial: 1128
Authority key identifier: 48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/D84E1E34347F11EFA261E062762E951A.roa
Signing time: Thu 27 Jun 2024 12:21:57 +0000
ROA not before: Thu 27 Jun 2024 12:21:53 +0000
ROA not after: Sat 27 Jun 2026 12:21:53 +0000
asID: 270353
IP address blocks: 102.165.46.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.mft
rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4392 (0x1128)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Validity
Not Before: Jun 27 12:21:53 2024 GMT
Not After : Jun 27 12:21:53 2026 GMT
Subject: CN=667d5965-f643
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:8e:e7:e3:df:e9:52:70:7c:c9:a1:08:90:cd:
4a:af:30:b8:2f:57:05:dc:bf:06:43:42:c1:b4:82:
ea:fa:f0:ca:4d:d2:af:06:38:42:e8:b6:58:3b:df:
2b:9d:77:bb:e6:f4:17:ad:64:08:f5:b2:91:cd:21:
b2:23:4b:cd:61:ce:28:5d:d1:dd:d0:71:13:6a:71:
c4:fe:ed:25:38:c2:73:82:45:8e:5c:46:7d:ee:56:
35:e6:18:46:77:57:6f:5e:ff:aa:8b:21:25:1e:f2:
7c:78:c1:f0:97:5b:db:cf:62:5b:80:fb:0b:85:fa:
15:ea:cf:59:35:7c:61:04:8c:7d:a9:fd:29:4a:79:
79:b7:23:21:54:a1:1e:0e:57:aa:09:43:93:f9:48:
c0:46:65:d4:6d:cc:39:b5:ec:65:b1:5b:c0:1d:d0:
ee:c3:b7:22:35:b1:c9:6d:b6:3d:08:c9:6f:a9:49:
be:ac:2e:33:6c:42:3e:4c:3c:d1:e0:ca:85:94:59:
22:3f:54:d0:9a:7e:8e:98:b6:b8:68:28:76:60:75:
bc:26:18:5a:c5:c2:71:2d:c3:d1:13:95:cc:0a:9d:
18:66:26:5e:0a:f9:37:53:af:31:e1:34:be:90:e5:
65:90:11:06:63:9e:47:6e:46:62:8e:3b:68:3f:04:
2b:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:81:D6:C2:45:15:FF:3D:85:F1:7C:76:B5:9D:43:1B:B0:21:31:1D
X509v3 Authority Key Identifier:
keyid:48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/D84E1E34347F11EFA261E062762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.165.46.0/24
Signature Algorithm: sha256WithRSAEncryption
17:02:1e:35:b4:b3:9a:56:f6:8f:62:36:66:29:06:f9:c3:f9:
95:fd:a1:d2:69:21:dd:db:54:c3:12:5a:0c:ff:f8:e5:b3:58:
ed:d3:65:95:72:33:f2:ab:1d:40:3d:e0:8c:3c:3d:e8:5c:23:
81:fe:73:60:61:9c:83:a6:fe:f0:83:e8:75:4c:8d:ce:da:3d:
a5:b0:3b:11:4e:07:f6:1c:53:8d:08:03:f6:bb:07:89:4b:62:
98:c6:dc:c2:72:a8:52:5d:0e:7d:93:2a:24:9b:60:c2:46:9e:
ae:6b:0d:fd:f2:23:0f:8f:69:32:95:f7:73:a8:8e:36:59:22:
6d:3f:b8:ad:b2:25:ae:d9:c9:7e:4c:7d:ff:ce:2b:10:34:c0:
a0:89:84:f5:08:60:c8:0a:57:ad:88:40:c1:53:f2:25:46:8a:
e6:21:6b:96:f6:e5:be:a3:1e:71:48:5e:ee:15:de:26:aa:de:
df:e7:1f:1b:1c:96:dd:e4:b5:20:8b:cd:cc:af:c1:47:6e:0c:
fd:94:f2:81:1d:be:79:ec:ff:60:f4:60:01:4e:1d:26:87:2e:
ca:d5:7d:56:1e:b0:59:1e:5f:53:70:47:a0:0d:54:16:2e:bc:
4e:56:67:d4:31:c1:b8:f4:cc:ca:d0:17:7b:1a:af:88:d1:d1:
37:c8:ee:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:05:25 2024 by rpki-client on console-ams.rpki-client.org