Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36CA351/D8E6C5EAC2E611EE8B90697B775412E6/30CF2EFC906C11EF8E8A644A762E951A.roa
File: 30CF2EFC906C11EF8E8A644A762E951A.roa (raw, json)
Hash identifier: AXI+N0voafKTexGlHTiD06LKxmwpQKGFu661n8qP33Y=
Subject key identifier: 49:AA:16:33:7B:03:3F:5B:3C:D5:C4:1C:AB:AA:B2:64:3A:65:57:16
Certificate issuer: /CN=F36CA351AF/serialNumber=58DA3BE331A612AAAE4F6A30637704063AC3DD42
Certificate serial: 012D
Authority key identifier: 58:DA:3B:E3:31:A6:12:AA:AE:4F:6A:30:63:77:04:06:3A:C3:DD:42
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/WNo74zGmEqquT2owY3cEBjrD3UI.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36CA351/D8E6C5EAC2E611EE8B90697B775412E6/30CF2EFC906C11EF8E8A644A762E951A.roa
Signing time: Tue 22 Oct 2024 11:53:02 +0000
ROA not before: Tue 22 Oct 2024 11:52:58 +0000
ROA not after: Tue 31 Dec 2024 11:52:58 +0000
asID: 328988
IP address blocks: 102.208.96.0/22 maxlen: 22
102.208.96.0/24 maxlen: 24
102.208.97.0/24 maxlen: 24
102.208.98.0/24 maxlen: 24
102.208.99.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36CA351/D8E6C5EAC2E611EE8B90697B775412E6/WNo74zGmEqquT2owY3cEBjrD3UI.crl
rsync://rpki.afrinic.net/repository/member_repository/F36CA351/D8E6C5EAC2E611EE8B90697B775412E6/WNo74zGmEqquT2owY3cEBjrD3UI.mft
rsync://rpki.afrinic.net/repository/afrinic/WNo74zGmEqquT2owY3cEBjrD3UI.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 301 (0x12d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36CA351AF/serialNumber=58DA3BE331A612AAAE4F6A30637704063AC3DD42
Validity
Not Before: Oct 22 11:52:58 2024 GMT
Not After : Dec 31 11:52:58 2024 GMT
Subject: CN=6717921e-116e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:c8:cb:c6:49:be:c8:41:ad:78:2f:1a:78:02:
64:ce:98:e9:c7:a7:48:d6:85:7d:d4:73:d9:1a:be:
e5:a0:04:23:e1:1c:70:9c:a5:ee:3b:0a:86:7f:d3:
d0:35:43:6c:b0:17:e5:9f:55:57:0d:cd:11:1a:39:
c5:10:60:62:ed:06:ff:89:bb:0d:56:6d:ad:19:0f:
52:54:fb:47:a3:a7:2b:50:5f:f1:1a:2d:63:35:2c:
f8:39:f6:e5:6e:2e:cd:de:86:36:65:eb:11:01:0f:
30:e1:75:31:dd:d2:e6:bc:63:d9:42:8f:46:65:74:
19:a6:6f:a7:6f:30:93:da:b5:13:67:be:9b:d8:2b:
5c:24:8a:de:08:c0:c3:fd:2f:d2:50:97:b4:5d:ff:
c7:9a:29:49:42:1e:af:0f:bc:f7:4f:90:b9:0c:65:
22:b5:b5:ef:07:1e:b3:ef:32:0e:44:bc:41:8c:86:
0c:83:aa:63:4d:fe:4d:85:a1:dd:fb:d2:e0:e3:3b:
7b:2d:86:d5:a6:b0:7e:8b:6f:92:82:54:fa:a1:ce:
bb:ff:bd:da:e4:69:dd:cf:89:e1:bb:0e:53:ad:79:
f0:47:a0:dd:aa:0b:4f:37:46:e9:b2:52:1d:0a:f6:
7b:10:88:22:89:f1:25:50:a3:11:b0:a4:d5:1b:85:
9b:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:AA:16:33:7B:03:3F:5B:3C:D5:C4:1C:AB:AA:B2:64:3A:65:57:16
X509v3 Authority Key Identifier:
keyid:58:DA:3B:E3:31:A6:12:AA:AE:4F:6A:30:63:77:04:06:3A:C3:DD:42
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36CA351/D8E6C5EAC2E611EE8B90697B775412E6/WNo74zGmEqquT2owY3cEBjrD3UI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/WNo74zGmEqquT2owY3cEBjrD3UI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36CA351/D8E6C5EAC2E611EE8B90697B775412E6/30CF2EFC906C11EF8E8A644A762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.208.96.0/22
Signature Algorithm: sha256WithRSAEncryption
2c:18:e2:37:39:27:67:80:e3:2a:a3:35:ba:36:36:99:48:fa:
30:50:49:dc:c2:e8:47:27:bb:39:be:40:8d:46:8e:88:5a:6f:
41:07:4c:5a:de:b2:f7:62:51:98:58:2c:12:34:75:32:ee:95:
f5:30:7c:c5:02:b9:87:06:9d:b8:37:80:e7:e3:74:a3:df:73:
c3:4e:c1:62:f9:ac:cd:2f:17:a9:67:cc:f3:4c:7d:82:c0:6b:
ad:9d:a5:07:57:05:80:e9:d9:22:b5:35:b6:a5:16:3b:c1:9d:
c5:0e:a1:c7:08:09:8c:9f:10:f9:40:6c:ed:16:32:74:d9:aa:
d9:00:08:13:2d:e1:27:ad:51:bc:0c:18:86:d6:ad:a1:6e:dc:
3a:e7:fd:d9:4e:cc:b7:1b:fe:bd:89:f0:82:b1:4b:dc:9c:4a:
8e:13:d8:5f:e1:69:57:d2:8a:60:11:51:ba:b3:41:1a:59:d2:
2f:46:71:8c:70:07:eb:4a:9c:69:ae:09:3e:23:b5:c8:2b:06:
7f:74:e8:b6:a1:95:1b:c1:a0:bb:d5:46:79:c4:ee:30:c7:48:
25:59:b5:cd:9b:12:1f:8f:ee:3a:2b:a1:c5:38:08:72:6a:48:
df:7f:ba:09:80:8d:3e:8e:2a:26:86:ac:b6:74:f2:17:30:50:
82:32:09:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:05:26 2024 by rpki-client on console-ams.rpki-client.org