Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/DEA22C08903C11EF983CF1A5762E951A.roa
File: DEA22C08903C11EF983CF1A5762E951A.roa (raw, json)
Hash identifier: oML0gbsO1MWlL8n0aMry6pOuj3Ar81ppzjCRpzF6IyE=
Subject key identifier: 82:37:46:E7:4F:F5:6E:E4:57:65:E5:D0:C6:56:A7:AB:A8:9D:6A:C2
Certificate issuer: /CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Certificate serial: 1259
Authority key identifier: 48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/DEA22C08903C11EF983CF1A5762E951A.roa
Signing time: Tue 22 Oct 2024 06:14:18 +0000
ROA not before: Tue 22 Oct 2024 06:14:14 +0000
ROA not after: Thu 22 Oct 2026 06:14:14 +0000
asID: 32181
IP address blocks: 102.165.34.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.mft
rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 08:48:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4697 (0x1259)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Validity
Not Before: Oct 22 06:14:14 2024 GMT
Not After : Oct 22 06:14:14 2026 GMT
Subject: CN=671742ba-1647
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:df:60:d7:57:f0:ea:a2:9f:0a:61:ce:b3:52:
37:7b:ec:c9:ee:c7:1b:3f:00:26:cc:6b:3d:f0:7b:
33:7f:b2:e5:94:ed:9f:9c:57:ca:d0:7a:7d:b7:8d:
19:92:f6:76:b8:cd:0f:4e:fa:c1:e0:c9:22:81:0a:
cc:5a:f4:7f:5b:39:e3:6e:d4:fb:b3:57:b1:8f:47:
3d:f5:99:67:3e:1b:eb:03:6d:1f:85:45:35:6d:ce:
95:32:6c:1a:33:36:07:1b:ac:d6:e7:d6:2a:82:93:
1b:b4:58:74:ed:9c:93:9e:7d:f1:cb:0a:3b:a2:53:
00:d9:f4:1a:9c:4f:81:5e:18:42:fe:36:b6:1d:f0:
44:61:b5:4d:ae:ad:e3:69:42:8d:9a:eb:fb:19:85:
e5:75:69:f7:17:f2:e8:fc:0a:43:a7:98:e3:00:28:
fe:f1:d6:1c:d0:3f:03:94:68:b9:f8:c8:50:fa:de:
46:02:37:d4:26:b3:8b:f8:55:59:78:a6:a5:9f:dd:
e9:a0:1f:c4:fc:8a:3a:be:93:95:4b:60:2b:bd:0c:
e7:d3:85:3c:6a:cf:83:c2:1f:f4:5e:f0:d1:89:6a:
a7:c0:f4:5c:66:33:3c:4a:cb:94:19:fd:09:d5:45:
24:29:d6:a0:ef:7a:9a:d1:54:e0:ff:59:71:d3:3a:
42:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:37:46:E7:4F:F5:6E:E4:57:65:E5:D0:C6:56:A7:AB:A8:9D:6A:C2
X509v3 Authority Key Identifier:
keyid:48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/DEA22C08903C11EF983CF1A5762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.165.34.0/24
Signature Algorithm: sha256WithRSAEncryption
99:c5:9e:0f:ec:47:db:08:d7:d7:22:04:fc:d4:9d:db:cf:c2:
b5:f9:48:2d:0e:27:d2:92:e2:d4:f0:06:c9:94:7b:bf:87:c9:
e6:30:db:7e:ea:7e:e3:81:c1:b6:48:20:06:68:46:d5:2e:a8:
7e:a2:57:c4:66:32:59:4b:f6:41:25:b4:47:dd:2a:ce:8c:82:
85:69:f3:53:34:5b:2c:0f:ad:cd:5b:1f:b7:7f:ac:88:7a:97:
7c:20:f5:f2:7f:3b:23:48:2f:59:ec:2d:7f:73:7a:ab:41:b8:
f3:bb:ad:4b:fd:7f:a4:90:f7:8d:fd:1d:70:81:f0:5f:36:1a:
a8:6e:a6:9f:86:11:c6:ba:8b:c1:46:41:ea:65:c1:0a:8b:13:
93:e6:c6:15:b9:ff:fa:09:99:4e:ce:74:70:a4:13:61:c0:11:
60:59:3f:ae:53:16:c7:68:0a:70:65:4d:0c:db:45:2f:f4:ea:
86:dd:f8:b6:e4:f0:88:41:e8:15:00:b5:5b:c8:20:e8:40:6b:
c2:65:37:fd:7a:c2:97:b8:32:72:c6:13:9e:b7:89:e2:0e:59:
1b:44:d1:43:a4:f8:42:c7:57:9f:ca:c1:cd:6c:da:1a:9e:db:
86:96:c9:b9:0f:60:dc:43:de:95:ee:a9:19:d0:32:5f:d2:34:
74:42:9c:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:05:59 2024 by rpki-client on console-fra.rpki-client.org