Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/D8B64D28B42F11EDAE7B8082F1222468.roa
File: D8B64D28B42F11EDAE7B8082F1222468.roa (raw, json)
Hash identifier: 4Qc1tnuoHyqOIrBIn3agTF6Viw9tOLbWAoVKcqsJHfE=
Subject key identifier: 10:D9:BB:8B:58:2F:6B:86:71:A9:C1:9A:A5:84:12:F0:56:E3:3C:B7
Certificate issuer: /CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Certificate serial: 0A92
Authority key identifier: 48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/D8B64D28B42F11EDAE7B8082F1222468.roa
Signing time: Fri 24 Feb 2023 10:41:51 +0000
ROA not before: Fri 24 Feb 2023 10:41:47 +0000
ROA not after: Sat 22 Feb 2025 10:41:47 +0000
asID: 61317
IP address blocks: 102.129.248.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.mft
rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 26 Apr 2024 00:05:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2706 (0xa92)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Validity
Not Before: Feb 24 10:41:47 2023 GMT
Not After : Feb 22 10:41:47 2025 GMT
Subject: CN=63f8946f-b55f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:ca:b0:e2:14:f7:50:05:85:51:2e:56:69:1d:
6c:c4:5f:07:ab:28:35:27:69:f5:37:d2:e5:0b:73:
bb:1a:dc:a2:82:a5:c5:66:93:a2:1f:b3:df:ac:f4:
5f:02:c8:b7:29:80:06:e1:cb:b3:67:34:a1:8d:1b:
e9:21:7c:59:c4:ca:0c:a8:58:87:ae:2c:0b:8b:b3:
0d:5c:15:9f:e9:47:92:e5:a1:b9:94:04:1f:f2:26:
30:50:7d:bb:a8:90:55:e1:20:89:d9:15:4f:86:bb:
2a:db:d9:d1:11:e0:33:2c:75:31:4a:98:6b:6a:02:
b4:17:9f:b1:5c:40:b8:72:94:38:a9:ef:ac:c0:e5:
a8:c7:27:54:70:11:1c:b3:7d:3f:f4:8d:7d:e2:a3:
42:5b:93:d1:57:9c:a5:90:0c:28:a4:4e:6f:6f:fb:
95:91:db:de:87:ed:17:d7:94:71:eb:2f:1c:a6:de:
af:37:4e:41:e6:c9:b7:d2:fc:53:39:61:46:42:73:
8d:9f:85:a1:e8:f3:e1:59:3e:06:e5:e7:52:b9:c1:
3f:bf:b9:a6:57:31:5d:08:5e:e7:c5:92:f6:92:0c:
8a:50:78:44:54:1a:98:46:3b:c1:b0:b8:29:c0:53:
7c:41:2f:dd:a3:ff:b7:58:f9:48:20:73:0e:aa:70:
98:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:D9:BB:8B:58:2F:6B:86:71:A9:C1:9A:A5:84:12:F0:56:E3:3C:B7
X509v3 Authority Key Identifier:
keyid:48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/D8B64D28B42F11EDAE7B8082F1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.129.248.0/24
Signature Algorithm: sha256WithRSAEncryption
21:2c:21:10:22:5d:12:68:09:f0:bb:1e:00:83:b1:48:e3:b9:
9a:d4:a7:cf:a1:78:07:77:4c:40:07:94:1f:e7:78:64:43:b9:
8c:ec:c3:b2:6b:42:27:c1:34:5e:64:b8:48:69:d7:ee:37:cc:
02:dd:c1:3c:83:d2:2d:84:e9:74:60:97:f5:f7:5b:5f:b4:86:
65:77:f1:8f:0e:dc:4f:98:50:07:27:5e:f7:8c:25:2c:6b:31:
4f:da:ce:52:e4:3a:9b:8f:2b:f3:69:7f:d9:37:25:a4:a8:c1:
90:e6:f3:69:e2:04:de:02:67:43:31:e3:8f:76:6d:74:91:1c:
8c:56:fb:de:a4:30:21:58:35:fa:57:9d:a5:d1:16:ca:ca:01:
3f:d7:88:a8:28:55:8c:10:19:30:af:fc:9c:c6:c5:0f:e4:b3:
60:86:20:e1:b2:f2:fe:20:76:66:13:4a:e1:2e:72:d4:4b:e8:
6a:ba:eb:a8:69:fb:f1:fd:0f:7b:7b:86:a8:96:ec:1d:d9:14:
b7:ed:ca:d3:71:47:0c:77:a2:7d:ac:eb:1b:1c:51:b0:08:09:
40:02:05:58:72:76:11:5d:02:f3:34:56:2e:12:0f:7d:21:af:
43:5a:90:d1:8b:d8:aa:80:bb:54:22:c6:3c:83:82:db:4a:4f:
d5:45:f9:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 24 01:56:23 2024 by rpki-client on console-ams.rpki-client.org