Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/FECD981833D611EF886C8C62762E951A.roa
File: FECD981833D611EF886C8C62762E951A.roa (raw, json)
Hash identifier: LYUWmlLQ5Gk0l6QbfqyVUF3kC+vTcJJX2Js0X7kAxNI=
Subject key identifier: 5D:EB:54:F6:6F:CA:BD:4B:6C:DB:DA:71:FC:A2:CC:39:3F:29:CD:FD
Certificate issuer: /CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Certificate serial: 1121
Authority key identifier: 48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/FECD981833D611EF886C8C62762E951A.roa
Signing time: Wed 26 Jun 2024 16:13:16 +0000
ROA not before: Wed 26 Jun 2024 16:13:13 +0000
ROA not after: Fri 26 Jun 2026 16:13:13 +0000
asID: 396356
IP address blocks: 102.129.211.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.mft
rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 18 Feb 2025 00:06:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4385 (0x1121)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36C58D6AF
Validity
Not Before: Jun 26 16:13:13 2024 GMT
Not After : Jun 26 16:13:13 2026 GMT
Subject: CN=667c3e1c-2103
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:e1:f8:4e:a4:e4:03:79:0d:c9:84:c2:4a:f9:
6d:4f:b2:a5:fc:b0:ac:ff:7b:f6:4e:f3:a2:b6:aa:
5e:46:f9:31:55:42:35:bc:67:f4:5a:2c:c1:22:a0:
50:0c:00:65:d8:f7:30:27:b0:6f:34:ac:39:59:3b:
85:26:62:72:50:0a:d9:b1:a9:2b:2d:c0:e2:21:26:
11:77:92:8f:63:c2:2d:f9:4a:7a:53:b4:c1:cd:3b:
92:8f:5f:63:ff:c6:0c:a5:21:b4:f9:95:97:73:20:
ca:0e:d8:5b:e4:0a:04:27:46:7c:d4:2c:a5:4e:bc:
9b:be:84:d2:69:ba:58:d1:1a:4c:97:00:61:e5:4a:
72:ce:83:20:1f:dc:0c:6a:c5:1d:05:df:22:76:2b:
53:40:0b:de:70:79:7a:89:1f:43:43:63:d0:ef:05:
b4:8a:0f:f3:c3:86:09:b7:36:89:a7:0d:11:d5:aa:
bc:9b:7b:63:c9:72:1f:9f:8f:cc:98:f8:1f:ce:94:
b8:22:64:00:d8:d3:c2:fe:13:13:a9:71:11:6e:f9:
d5:ab:72:21:33:be:3e:40:ba:df:6f:ea:e3:7e:9a:
7b:3e:3a:d4:c1:89:01:ee:4d:a2:d7:a6:b5:f7:2b:
0a:28:48:b4:9e:46:e3:fd:2a:29:88:cd:df:d3:dc:
f1:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:EB:54:F6:6F:CA:BD:4B:6C:DB:DA:71:FC:A2:CC:39:3F:29:CD:FD
X509v3 Authority Key Identifier:
keyid:48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/FECD981833D611EF886C8C62762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.129.211.0/24
Signature Algorithm: sha256WithRSAEncryption
51:07:ac:58:f0:35:bb:f7:ec:38:0f:e8:fb:89:20:3f:fb:5e:
5b:27:2f:44:c3:03:6c:b1:88:89:db:e3:ab:fb:42:40:ea:a6:
a0:39:a0:ff:e3:fe:0a:8e:89:1a:a1:fb:01:bc:d0:2b:7c:cc:
16:13:67:87:86:a3:8f:61:6f:f1:ad:a7:e7:1b:1a:b2:2d:d8:
de:e6:87:db:a9:7c:ae:17:12:68:ab:86:16:ad:32:d7:4e:df:
f7:e2:10:81:3b:fe:57:3d:00:e4:f6:e9:68:b6:70:58:ee:f1:
06:21:82:a1:75:ff:c1:16:85:07:90:67:17:1b:d8:b3:34:2d:
41:66:9b:e4:37:43:ce:74:d0:13:01:e4:c3:27:0e:cb:24:88:
59:94:a2:7d:9c:8f:61:2c:a9:16:6c:9a:41:56:5a:b8:01:d6:
ab:c0:c1:49:c2:ba:85:2e:4e:f5:fa:a1:61:1f:e5:cb:4e:22:
6b:46:c0:46:d7:44:b0:fc:2e:07:7d:37:16:c6:2c:61:df:73:
ec:f2:20:c4:52:d0:8e:3f:6b:1d:0e:9a:28:2f:a2:9b:16:d3:
d4:47:73:fd:ce:cc:6d:f1:3c:c9:e2:e1:59:59:8e:6f:2f:6f:
c0:1c:1e:b2:bc:9e:91:b3:8c:15:38:70:bf:51:e9:70:56:ba:
d0:00:7d:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 15:45:37 2025 by rpki-client