Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/F0F2C8BEA69B11EC85F40DB15A40D577.roa
File: F0F2C8BEA69B11EC85F40DB15A40D577.roa (raw, json)
Hash identifier: 5kO9E6bmIZCX+3G8o2VGw1npu3RutkTxEDR9x6JcqUI=
Subject key identifier: C5:37:65:3D:4B:4B:E9:CF:7A:4F:A2:DF:E2:03:20:39:B6:D9:0D:42
Certificate issuer: /CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Certificate serial: 060E
Authority key identifier: 48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/F0F2C8BEA69B11EC85F40DB15A40D577.roa
Signing time: Fri 18 Mar 2022 09:15:23 +0000
ROA not before: Fri 18 Mar 2022 09:15:20 +0000
ROA not after: Tue 18 Mar 2025 09:15:20 +0000
asID: 9009
IP address blocks: 102.129.222.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.mft
rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 08:48:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1550 (0x60e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Validity
Not Before: Mar 18 09:15:20 2022 GMT
Not After : Mar 18 09:15:20 2025 GMT
Subject: CN=62344dab-fb13
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:4f:38:80:b6:bc:29:4a:1a:f3:d0:6c:74:87:
b2:7c:e7:02:24:62:75:13:24:59:da:a9:6e:ef:6a:
25:13:e2:94:37:aa:32:3e:25:0f:5c:64:5d:3a:39:
84:34:46:a0:4a:90:de:c7:45:3e:4f:fb:0b:25:fb:
28:48:98:bd:82:65:51:f8:6a:4d:d9:48:0f:96:8f:
c7:e6:f3:8f:27:19:b9:9b:9e:b5:f4:07:56:ff:8a:
67:df:46:a4:4b:4f:4e:1c:0e:0a:0f:5f:a2:2e:e9:
ab:e1:2f:ba:85:b9:af:ad:dc:88:1e:79:c3:f5:bc:
db:ae:84:ea:8b:2e:74:a7:97:b0:ea:1d:73:92:56:
d0:d5:c5:0b:5a:f1:83:1f:72:e4:00:1c:36:6a:cd:
4a:c0:a4:14:c0:f4:e3:a1:ee:26:8b:b3:62:15:eb:
44:ad:de:b7:51:de:01:d9:9d:f2:fd:dc:8c:98:60:
52:83:47:a4:59:80:99:f9:a8:03:60:84:27:bf:da:
fe:d1:99:6f:0e:32:ae:3a:c1:97:73:fe:02:a7:f0:
89:aa:d5:8e:1f:bd:13:c4:11:cf:04:45:ec:b7:07:
bb:b8:14:9e:97:e9:f1:4b:8f:a3:b4:77:b2:61:2c:
d8:67:d1:9e:a7:9e:8a:5d:fc:95:15:dc:53:37:5f:
1e:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:37:65:3D:4B:4B:E9:CF:7A:4F:A2:DF:E2:03:20:39:B6:D9:0D:42
X509v3 Authority Key Identifier:
keyid:48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/F0F2C8BEA69B11EC85F40DB15A40D577.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.129.222.0/24
Signature Algorithm: sha256WithRSAEncryption
5b:93:01:e9:20:a5:72:b9:ec:cc:eb:5c:b0:6f:8b:0a:52:fe:
ed:ae:f2:4b:cd:b9:90:cc:66:12:d7:32:d2:95:af:92:48:ca:
1d:f2:69:45:f2:60:6a:a1:b8:3e:22:3d:8a:dd:75:5c:dc:2c:
1e:45:7c:52:21:42:d9:f2:da:23:5c:d5:7f:10:01:e8:e2:70:
ad:0d:3a:a5:01:0f:07:0a:35:cb:32:c5:31:5f:c3:4f:32:7a:
9d:38:2c:06:49:be:cd:46:7c:e5:92:22:41:51:fa:df:8a:fc:
8a:bf:af:a9:a6:37:f6:27:a3:1f:be:69:69:84:a7:b8:fe:11:
a0:92:05:24:a4:96:56:78:f5:c7:24:a8:fd:e1:b2:c9:27:d9:
e6:fc:ab:6e:f9:f9:65:9d:27:f5:fe:2b:94:6f:2a:c1:de:83:
8a:92:53:2a:74:e2:d9:3e:ff:9c:a7:a6:f0:b1:14:6b:02:b5:
2a:ce:01:df:f8:5d:03:9c:57:d2:59:6c:53:ad:1b:c9:37:34:
e2:cf:26:12:23:2b:3a:9c:f3:3b:6a:a6:e6:86:85:39:fe:ac:
09:91:76:68:bf:4d:f7:e2:d2:84:10:67:9a:3d:aa:bb:04:28:
60:e5:a6:73:ea:d2:0f:d8:9b:2a:f7:b3:50:62:72:3d:66:84:
e1:a2:69:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:05:59 2024 by rpki-client on console-fra.rpki-client.org