Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36CA351/D8E6C5EAC2E611EE8B90697B775412E6/84D9A2C40FD511EFA5786367017001B1.roa
File: 84D9A2C40FD511EFA5786367017001B1.roa (raw, json)
Hash identifier: arrzCmYkFM7giUhiW6E+xBHT6QDXzeI7awWnMIWz55s=
Subject key identifier: F5:9A:45:C0:BC:ED:52:6A:04:EC:E5:CD:6D:FB:BA:1F:5F:8F:C3:48
Certificate issuer: /CN=F36CA351AF/serialNumber=58DA3BE331A612AAAE4F6A30637704063AC3DD42
Certificate serial: 78
Authority key identifier: 58:DA:3B:E3:31:A6:12:AA:AE:4F:6A:30:63:77:04:06:3A:C3:DD:42
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/WNo74zGmEqquT2owY3cEBjrD3UI.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36CA351/D8E6C5EAC2E611EE8B90697B775412E6/84D9A2C40FD511EFA5786367017001B1.roa
Signing time: Sat 11 May 2024 20:32:00 +0000
ROA not before: Sat 11 May 2024 20:31:55 +0000
ROA not after: Tue 31 Dec 2024 20:31:55 +0000
asID: 19905
IP address blocks: 102.213.68.0/22 maxlen: 22
102.213.68.0/24 maxlen: 24
102.213.69.0/24 maxlen: 24
102.213.70.0/24 maxlen: 24
102.213.71.0/24 maxlen: 24
102.218.48.0/22 maxlen: 22
102.218.48.0/24 maxlen: 24
102.218.49.0/24 maxlen: 24
102.218.50.0/24 maxlen: 24
102.218.51.0/24 maxlen: 24
2c0f:6f00::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36CA351/D8E6C5EAC2E611EE8B90697B775412E6/WNo74zGmEqquT2owY3cEBjrD3UI.crl
rsync://rpki.afrinic.net/repository/member_repository/F36CA351/D8E6C5EAC2E611EE8B90697B775412E6/WNo74zGmEqquT2owY3cEBjrD3UI.mft
rsync://rpki.afrinic.net/repository/afrinic/WNo74zGmEqquT2owY3cEBjrD3UI.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:06:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 120 (0x78)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36CA351AF/serialNumber=58DA3BE331A612AAAE4F6A30637704063AC3DD42
Validity
Not Before: May 11 20:31:55 2024 GMT
Not After : Dec 31 20:31:55 2024 GMT
Subject: CN=663fd5c0-e768
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:e5:b2:78:7f:f7:f4:9d:6d:17:53:7d:da:5f:
ce:76:ad:36:c6:9f:b0:49:ed:c9:a5:28:8a:74:f5:
26:cd:b7:14:06:6f:ec:b6:ce:61:59:b1:fa:e2:de:
8e:96:13:a2:b2:e3:0c:53:be:43:98:82:51:90:2b:
6a:0d:fe:0b:ab:60:c1:fc:58:99:6f:78:22:fc:68:
94:77:bc:92:70:e6:c1:2d:d1:f4:40:16:13:24:0e:
67:03:8d:e5:50:5a:fc:ef:7c:d4:0f:14:81:89:d6:
df:1a:33:fe:82:b5:b9:12:e8:97:03:80:e8:88:05:
08:a9:87:de:f8:53:14:d8:51:ea:af:0d:8e:c1:6e:
47:f9:dd:d8:41:20:ce:62:4e:e5:37:16:d6:2c:c4:
c7:a3:b7:5a:66:3b:ab:70:af:60:cb:00:b1:c2:b7:
51:c7:22:57:8b:70:e9:ac:25:a9:14:5d:5c:3e:1d:
75:5c:de:a3:91:00:4d:c4:fc:4f:ec:f8:87:9d:52:
90:b2:09:3e:e8:11:05:14:71:c3:3b:76:af:c7:01:
14:83:b8:4c:1a:a6:58:ed:f6:92:6a:18:11:a5:bb:
8e:f6:9d:03:83:47:9d:f9:1f:c6:31:13:d7:ea:88:
b8:50:55:fe:1d:e9:39:0d:a9:09:51:4d:c1:8d:23:
57:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:9A:45:C0:BC:ED:52:6A:04:EC:E5:CD:6D:FB:BA:1F:5F:8F:C3:48
X509v3 Authority Key Identifier:
keyid:58:DA:3B:E3:31:A6:12:AA:AE:4F:6A:30:63:77:04:06:3A:C3:DD:42
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36CA351/D8E6C5EAC2E611EE8B90697B775412E6/WNo74zGmEqquT2owY3cEBjrD3UI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/WNo74zGmEqquT2owY3cEBjrD3UI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36CA351/D8E6C5EAC2E611EE8B90697B775412E6/84D9A2C40FD511EFA5786367017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.213.68.0/22
102.218.48.0/22
IPv6:
2c0f:6f00::/32
Signature Algorithm: sha256WithRSAEncryption
b0:07:fb:d0:7f:6c:98:fb:9d:0d:66:62:5d:5c:d9:ff:72:63:
59:63:d0:ee:24:2c:71:15:b9:89:44:24:d9:f9:ea:78:f7:b7:
b6:0e:75:ba:2f:82:e7:f2:de:57:9e:2e:00:a9:af:1d:a9:1c:
aa:c7:43:29:2d:75:b3:93:3f:22:a0:ae:94:b2:89:1e:7d:57:
1b:84:09:f6:ad:c0:18:67:75:1e:a2:c8:c2:7b:04:e5:16:4d:
1d:fb:e3:c6:54:a5:9d:09:36:b7:db:d0:29:0e:57:95:cd:23:
f2:35:cd:22:26:f3:31:f0:89:dd:03:d9:95:9e:0b:7f:f6:6e:
3c:f0:1d:67:5e:88:d1:6c:36:34:75:35:63:1a:37:37:49:ee:
25:29:0b:0b:a9:d1:d1:8f:28:62:a6:df:18:91:65:e3:76:08:
16:45:a2:ca:4f:3f:c1:cd:d7:65:f8:0d:15:ca:23:77:06:0c:
7d:fd:0b:4a:ed:07:eb:d4:13:96:f1:a0:b9:53:73:99:36:0c:
91:e8:9b:5a:02:ff:9d:3b:f4:83:07:30:b7:77:5f:13:d5:a1:
8d:37:2f:99:ef:b0:b6:d8:41:d7:5d:b5:f8:42:f4:c5:4b:01:
8c:8f:cd:d8:61:a7:d4:b7:bc:c4:52:73:92:8a:d8:2b:02:6f:
f1:cc:ee:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 05:05:52 2024 by rpki-client on console-fra.rpki-client.org