Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36CB1BE/F3228E86F0EE11EEA3BE0F58775412E6/60986EC6F10E11EEA398F1C8775412E6.roa
File: 60986EC6F10E11EEA398F1C8775412E6.roa (raw, json)
Hash identifier: UeXyeJMDi2GVx9uEPU+PiWuthmCddMz69n4V0SdxUZY=
Subject key identifier: BE:A7:BB:A0:43:19:D5:55:F7:EE:03:6C:91:39:2B:00:56:9B:7A:3F
Certificate issuer: /CN=F36CB1BEAF/serialNumber=A5F0A2BB8B79EDD6D37C077ADFEA082514C0420F
Certificate serial: 02
Authority key identifier: A5:F0:A2:BB:8B:79:ED:D6:D3:7C:07:7A:DF:EA:08:25:14:C0:42:0F
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/pfCiu4t57dbTfAd63-oIJRTAQg8.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36CB1BE/F3228E86F0EE11EEA3BE0F58775412E6/60986EC6F10E11EEA398F1C8775412E6.roa
Signing time: Tue 02 Apr 2024 16:30:55 +0000
ROA not before: Tue 02 Apr 2024 16:30:51 +0000
ROA not after: Thu 02 Apr 2026 16:30:51 +0000
asID: 37577
IP address blocks: 102.178.0.0/16 maxlen: 16
102.179.0.0/16 maxlen: 16
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36CB1BE/F3228E86F0EE11EEA3BE0F58775412E6/pfCiu4t57dbTfAd63-oIJRTAQg8.crl
rsync://rpki.afrinic.net/repository/member_repository/F36CB1BE/F3228E86F0EE11EEA3BE0F58775412E6/pfCiu4t57dbTfAd63-oIJRTAQg8.mft
rsync://rpki.afrinic.net/repository/afrinic/pfCiu4t57dbTfAd63-oIJRTAQg8.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2 (0x2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36CB1BEAF/serialNumber=A5F0A2BB8B79EDD6D37C077ADFEA082514C0420F
Validity
Not Before: Apr 2 16:30:51 2024 GMT
Not After : Apr 2 16:30:51 2026 GMT
Subject: CN=660c32bf-1bbf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:27:4c:be:9d:51:16:eb:0c:d4:3e:f4:de:8d:
45:92:55:3e:b0:b9:45:b7:2a:64:66:1a:d1:6c:48:
ec:66:d5:08:46:c7:df:91:2f:dc:79:cd:ae:bc:d9:
d2:79:a3:ad:f4:ed:a8:c6:68:0c:e6:d9:99:a1:49:
ab:0b:e1:30:fe:06:85:6a:44:4f:a6:f0:1e:70:f3:
cf:43:dd:63:22:cb:a2:23:d1:39:35:f7:f4:51:a7:
10:60:23:75:37:9e:d7:e8:75:ac:bd:b7:39:c8:fa:
21:d1:a5:34:4f:47:dd:21:30:23:b1:3a:c1:45:fc:
fc:3e:a6:27:51:ec:e9:b1:44:4c:9a:3a:f1:10:47:
12:82:42:78:85:78:a8:90:11:23:89:42:42:8f:85:
6f:08:a8:cf:23:70:43:db:e4:0a:a9:d3:ed:93:84:
7f:ec:47:03:ba:33:5e:35:1f:89:ef:55:ef:49:0b:
d1:37:d6:85:7d:92:20:c4:06:8f:f9:8e:c6:31:e2:
80:10:28:0a:6f:85:e7:0e:99:e5:e9:f7:81:da:bf:
d9:72:56:c8:03:1a:d1:1d:3a:f9:c0:9d:f3:66:29:
b3:32:10:5a:82:27:d4:3e:19:e0:fe:32:89:27:69:
cf:cd:8f:ec:f3:38:e1:a2:00:f4:5b:69:31:25:fd:
d7:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:A7:BB:A0:43:19:D5:55:F7:EE:03:6C:91:39:2B:00:56:9B:7A:3F
X509v3 Authority Key Identifier:
keyid:A5:F0:A2:BB:8B:79:ED:D6:D3:7C:07:7A:DF:EA:08:25:14:C0:42:0F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36CB1BE/F3228E86F0EE11EEA3BE0F58775412E6/pfCiu4t57dbTfAd63-oIJRTAQg8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/pfCiu4t57dbTfAd63-oIJRTAQg8.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36CB1BE/F3228E86F0EE11EEA3BE0F58775412E6/60986EC6F10E11EEA398F1C8775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.178.0.0/15
Signature Algorithm: sha256WithRSAEncryption
40:69:d8:11:2a:59:a0:ae:13:45:e6:13:f4:a8:b6:ec:03:78:
c2:52:01:02:e3:03:1f:c5:cb:7c:a1:50:69:ef:80:f5:3d:76:
15:45:c5:26:71:26:ac:de:93:68:a0:eb:4a:c4:3a:3e:51:ad:
85:98:04:3e:d4:8c:2b:15:96:17:91:70:d9:7d:c8:0a:00:21:
c9:89:26:8c:11:7a:d5:41:02:7e:e3:22:83:98:4f:45:33:7b:
6b:54:14:b6:7f:fb:93:64:fe:dc:ce:05:0f:4d:7c:07:ac:ca:
c9:34:fb:cd:aa:fa:35:a7:2a:dd:47:eb:48:b1:34:43:0e:df:
10:17:94:ca:f9:d9:55:2d:8c:c3:b5:e6:49:c5:d8:4b:ed:27:
28:4c:c7:7c:86:00:25:42:c2:74:53:22:d6:7d:63:92:1e:bd:
e7:ed:44:9c:00:3e:2c:2d:9e:1f:58:e4:20:d6:bf:1a:55:d8:
2b:76:81:cf:1a:9a:46:c0:f8:0e:93:92:a2:f2:6b:2f:3e:52:
5b:41:ca:06:a0:f9:ba:dd:61:ce:99:69:4e:bd:d4:3a:e5:58:
0b:cc:a1:0b:fd:1f:0e:e1:e4:93:2c:67:58:3c:c6:21:10:80:
72:70:ed:3a:7a:36:31:87:f7:e5:f9:de:b9:c5:ac:f5:92:3c:
40:2b:e9:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:05:26 2024 by rpki-client on console-ams.rpki-client.org