Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/E47C1B686DCC11EEBFEDCA424AD9E6FC.roa
File: E47C1B686DCC11EEBFEDCA424AD9E6FC.roa (raw, json)
Hash identifier: 7jk8eLi5gDAIhEjxkPs5m6O+3nm2Iv7rS8WQx8gnwls=
Subject key identifier: 56:0A:5F:BF:3B:6B:97:8A:EB:00:49:11:FE:E0:84:6D:CA:CF:84:8E
Certificate issuer: /CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Certificate serial: 0DF5
Authority key identifier: 48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/E47C1B686DCC11EEBFEDCA424AD9E6FC.roa
Signing time: Wed 18 Oct 2023 15:42:07 +0000
ROA not before: Wed 18 Oct 2023 15:42:04 +0000
ROA not after: Sat 18 Oct 2025 15:42:04 +0000
asID: 396356
IP address blocks: 102.129.255.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.mft
rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 18 Feb 2025 00:06:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3573 (0xdf5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36C58D6AF
Validity
Not Before: Oct 18 15:42:04 2023 GMT
Not After : Oct 18 15:42:04 2025 GMT
Subject: CN=652ffccf-9ba9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:ca:56:e8:bc:bb:0e:1d:50:8a:2c:0b:a3:36:
36:ec:e3:48:e9:38:a1:fe:99:26:65:8f:9c:db:49:
e8:b4:c6:7c:0c:aa:37:b1:3a:44:9e:53:22:29:e3:
8f:83:79:e2:a6:e5:41:87:ec:c3:d4:04:6c:e8:50:
a4:6c:1c:63:89:3f:08:2a:d5:7e:f5:2d:10:49:74:
71:1e:76:de:88:ce:60:d1:9c:31:16:d2:f4:fd:7e:
9e:e0:85:6e:34:08:f4:a3:04:d9:10:d1:df:65:e0:
76:b9:23:39:7c:fb:16:9e:2c:2c:b1:c1:06:ca:5a:
c5:48:b0:6a:d6:e4:c7:dd:ab:11:a2:62:c7:cf:68:
ed:2c:af:fa:c4:95:95:26:bf:2a:f6:ff:04:81:c7:
f5:38:d8:d5:8b:63:21:f3:cd:15:c2:dd:30:eb:10:
11:99:99:9b:66:93:8f:a3:8d:3f:22:5e:65:9c:0f:
e1:22:57:57:b4:2e:fc:9e:01:be:7b:3b:77:aa:9f:
2c:96:59:a4:ec:2d:df:19:be:06:0f:35:03:0b:32:
cb:72:da:6e:7c:bf:df:e7:b5:21:49:4c:70:46:1f:
98:94:56:b4:d6:27:68:63:b2:20:e7:5a:21:33:a5:
35:a0:cb:8c:a8:49:8a:6a:e3:63:76:24:52:1f:dd:
c3:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:0A:5F:BF:3B:6B:97:8A:EB:00:49:11:FE:E0:84:6D:CA:CF:84:8E
X509v3 Authority Key Identifier:
keyid:48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/E47C1B686DCC11EEBFEDCA424AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.129.255.0/24
Signature Algorithm: sha256WithRSAEncryption
a1:0d:37:d5:fa:3e:21:c0:0c:67:ce:1c:2f:c9:a2:8b:81:6d:
7b:5a:21:0b:2c:81:6b:fa:f4:2f:14:83:5b:d3:ae:ff:a1:f8:
76:58:38:ed:59:ff:c8:e7:8a:e7:1e:07:23:aa:ba:8b:1e:11:
6e:ac:cd:e0:b8:c1:28:ed:4e:0e:8d:56:35:30:ca:e9:4d:0e:
a4:49:18:df:f3:c3:18:dd:66:f9:f6:02:d1:81:fd:5a:73:1a:
b3:7c:b3:14:27:78:e3:23:42:2d:8c:8e:26:0f:3c:e6:e6:f4:
16:4e:61:62:de:86:bf:70:e8:84:1f:6d:8b:0a:b4:52:1f:65:
04:e8:a4:4a:3f:37:ab:f1:00:84:4a:eb:42:94:27:10:06:2b:
a6:22:e3:7e:ed:0f:98:70:34:6c:28:67:6d:38:ca:a8:20:27:
60:79:26:0d:02:30:01:67:4c:26:c0:b8:49:05:e6:d1:fb:8a:
e5:da:d5:a2:1d:7b:88:93:04:17:d6:a9:ab:23:a6:1f:78:ba:
3e:6f:89:b3:60:c8:70:35:a9:a8:25:35:89:b5:a4:2e:09:70:
9e:cf:86:7e:53:d6:4a:76:c3:de:a2:d2:33:c8:0c:bf:ec:48:
f9:70:b5:2a:35:27:de:a7:1e:c7:1b:26:b8:61:2f:aa:e9:7c:
28:e5:20:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 15:04:16 2025 by rpki-client