Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/E82A72EEA54B11EEB529FB3CD25BE465.roa
File: E82A72EEA54B11EEB529FB3CD25BE465.roa (raw, json)
Hash identifier: 3gO7ox364VeJcvntbrOj1qgdXLsfTgyYqMz8n/8U5Pw=
Subject key identifier: 75:5B:59:D1:26:68:B7:A5:A0:87:2A:A7:71:21:81:8C:9C:C7:64:D8
Certificate issuer: /CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Certificate serial: 0EA9
Authority key identifier: 48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/E82A72EEA54B11EEB529FB3CD25BE465.roa
Signing time: Thu 28 Dec 2023 06:39:53 +0000
ROA not before: Thu 28 Dec 2023 06:39:50 +0000
ROA not after: Sun 28 Dec 2025 06:39:50 +0000
asID: 63477
IP address blocks: 102.129.216.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.mft
rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3753 (0xea9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Validity
Not Before: Dec 28 06:39:50 2023 GMT
Not After : Dec 28 06:39:50 2025 GMT
Subject: CN=658d1839-fba1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:70:4f:09:2d:6d:6e:da:1f:a6:65:77:47:f7:
c1:37:d0:83:16:1b:5b:4a:3a:2f:f7:e0:63:80:77:
6f:4c:0c:5c:8f:44:ef:80:64:ef:cc:76:6f:5e:06:
cf:20:bd:7f:1d:d4:cc:69:28:5b:4a:8a:9a:2b:7f:
49:36:5e:1d:3c:02:43:96:7a:df:9f:a4:8c:26:52:
47:e3:38:00:aa:3d:5d:ca:3a:18:eb:de:56:b8:f3:
be:15:a8:39:1e:04:60:36:d3:d5:73:28:91:60:26:
69:a2:b0:f2:67:e6:f2:e9:39:04:6b:85:8a:36:05:
69:52:1a:09:78:bf:cd:b4:74:31:ea:42:49:fd:aa:
37:f9:a5:8b:e0:51:95:12:f2:e9:b4:74:20:ca:4d:
f6:d0:66:f0:e8:f3:d5:50:cb:0e:94:bf:dd:e5:39:
41:10:d2:c5:08:e7:4e:d2:61:43:93:60:3c:88:b3:
49:6a:4f:44:74:b4:3e:c5:53:bd:0c:d4:ee:22:62:
77:14:39:09:ac:b4:2c:2f:4a:a7:c9:54:64:9c:5f:
f9:28:cd:9e:9d:46:4a:26:45:c7:34:1e:3e:e8:51:
41:10:ae:e0:0a:af:85:c1:49:91:fd:4d:ae:32:c1:
6b:95:3f:cf:80:f3:a4:d5:16:1c:97:35:a9:6a:01:
c7:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:5B:59:D1:26:68:B7:A5:A0:87:2A:A7:71:21:81:8C:9C:C7:64:D8
X509v3 Authority Key Identifier:
keyid:48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/E82A72EEA54B11EEB529FB3CD25BE465.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.129.216.0/24
Signature Algorithm: sha256WithRSAEncryption
d3:ce:f3:72:ba:c6:09:20:f8:d2:1f:c7:4d:e4:12:5e:3e:60:
5f:2e:04:3d:ed:b9:e0:47:49:92:f6:b4:08:77:e0:3b:89:ab:
72:3e:11:2d:c9:7b:30:b6:ab:ab:4c:df:04:a0:3f:f0:24:d8:
a0:cd:a2:2e:ec:23:41:39:b8:7c:bf:b8:af:f9:6c:e2:30:a0:
09:ad:b9:e4:5a:b8:91:0c:cd:46:c8:4d:c4:f9:43:49:41:0e:
a4:d0:fd:39:f2:c2:3b:f2:3e:1b:c0:d3:da:f4:eb:76:4e:78:
86:ea:6f:d8:5c:96:b1:6a:51:d1:0b:77:27:5b:e7:e3:da:0a:
33:e5:dd:02:f7:22:fb:a6:ad:8a:36:ed:d2:c1:a1:c7:38:20:
aa:9a:b9:56:cd:c2:a6:ca:87:bc:c7:19:22:19:44:55:42:ea:
79:22:af:a7:e2:e9:39:9b:b1:a7:cd:db:47:4d:58:56:da:57:
cd:31:88:2e:bb:f0:d5:30:61:60:b1:e1:12:50:1f:5b:29:98:
2a:e6:55:e5:4a:c3:08:37:81:65:90:33:9d:c2:0c:37:7e:5a:
a9:4b:f6:29:c5:db:11:ab:16:c8:07:e5:60:b7:64:30:7f:66:
26:88:5b:72:1a:d3:63:c1:5d:33:4c:c4:d8:55:84:57:92:34:
78:c6:75:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 01:30:21 2024 by rpki-client on console-fra.rpki-client.org