Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36CB1BE/F3228E86F0EE11EEA3BE0F58775412E6/7AFAA29E1F6111EFB0C39B397DDC24C2.roa
File: 7AFAA29E1F6111EFB0C39B397DDC24C2.roa (raw, json)
Hash identifier: e2WypnmRsaISjVRYfT/t99mLnGdtDrlVSL5Ti5URVMc=
Subject key identifier: 2B:18:64:66:CF:1F:46:3B:D6:EC:42:9D:26:B4:8B:DC:A2:5F:37:7B
Certificate issuer: /CN=F36CB1BEAF/serialNumber=A5F0A2BB8B79EDD6D37C077ADFEA082514C0420F
Certificate serial: 48
Authority key identifier: A5:F0:A2:BB:8B:79:ED:D6:D3:7C:07:7A:DF:EA:08:25:14:C0:42:0F
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/pfCiu4t57dbTfAd63-oIJRTAQg8.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36CB1BE/F3228E86F0EE11EEA3BE0F58775412E6/7AFAA29E1F6111EFB0C39B397DDC24C2.roa
Signing time: Fri 31 May 2024 15:21:41 +0000
ROA not before: Fri 31 May 2024 15:21:37 +0000
ROA not after: Mon 31 May 2027 15:21:37 +0000
asID: 37577
IP address blocks: 102.180.236.0/22 maxlen: 22
102.180.240.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36CB1BE/F3228E86F0EE11EEA3BE0F58775412E6/pfCiu4t57dbTfAd63-oIJRTAQg8.crl
rsync://rpki.afrinic.net/repository/member_repository/F36CB1BE/F3228E86F0EE11EEA3BE0F58775412E6/pfCiu4t57dbTfAd63-oIJRTAQg8.mft
rsync://rpki.afrinic.net/repository/afrinic/pfCiu4t57dbTfAd63-oIJRTAQg8.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 72 (0x48)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36CB1BEAF/serialNumber=A5F0A2BB8B79EDD6D37C077ADFEA082514C0420F
Validity
Not Before: May 31 15:21:37 2024 GMT
Not After : May 31 15:21:37 2027 GMT
Subject: CN=6659eb05-a3eb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:81:52:0e:b2:93:e6:ce:68:cd:fb:df:6a:40:
dc:77:9b:d1:1a:ed:0e:2c:be:8b:4d:b1:e6:72:a2:
f2:88:0f:66:73:ee:b3:e9:fc:92:d8:c9:eb:57:fe:
e2:4c:2a:fa:88:12:40:d4:a3:a6:d0:0a:65:47:04:
9d:69:56:a0:49:55:de:6e:5f:82:27:60:ca:71:b1:
3d:e7:61:5f:41:13:f9:c1:b2:70:1b:5c:29:2d:d4:
f2:b5:a0:63:cb:29:9c:d7:e6:0e:e3:aa:8c:5a:9b:
db:24:25:f1:86:63:f2:3d:b1:a3:0f:12:12:87:49:
c2:13:dd:e8:fb:fa:92:85:1d:fa:78:31:fe:94:c8:
21:c0:fb:bd:a0:97:1e:96:81:2c:4a:2d:c6:3a:84:
52:8e:3f:53:94:c9:8e:56:6e:fe:1d:eb:4e:6c:04:
e8:e3:b4:a0:65:27:47:2b:7c:16:66:74:e3:1b:47:
f1:07:e5:1b:2c:fd:8d:65:03:43:aa:2d:04:20:c5:
41:f6:d5:b4:53:37:fc:e6:60:e4:5a:a6:74:f8:c6:
b3:46:13:ac:eb:db:91:fa:5a:42:fb:57:1a:72:3f:
a7:68:0b:e7:83:30:7d:99:87:46:3f:d0:ce:20:60:
93:8d:f4:37:9b:a8:2c:16:60:1e:46:e4:40:95:0a:
c7:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:18:64:66:CF:1F:46:3B:D6:EC:42:9D:26:B4:8B:DC:A2:5F:37:7B
X509v3 Authority Key Identifier:
keyid:A5:F0:A2:BB:8B:79:ED:D6:D3:7C:07:7A:DF:EA:08:25:14:C0:42:0F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36CB1BE/F3228E86F0EE11EEA3BE0F58775412E6/pfCiu4t57dbTfAd63-oIJRTAQg8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/pfCiu4t57dbTfAd63-oIJRTAQg8.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36CB1BE/F3228E86F0EE11EEA3BE0F58775412E6/7AFAA29E1F6111EFB0C39B397DDC24C2.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.180.236.0-102.180.243.255
Signature Algorithm: sha256WithRSAEncryption
0b:f7:ae:a1:cc:bc:50:3b:09:64:d7:af:13:86:2d:05:c5:b4:
5d:e7:8d:ab:73:63:48:05:73:54:6f:15:88:3a:d5:90:37:ba:
ec:99:e6:c8:26:c9:63:41:6f:b1:4b:35:c6:44:ec:19:f2:55:
64:22:89:6f:28:d1:52:e1:90:d8:10:32:03:5e:55:c1:ef:bd:
a9:2a:8b:cd:1b:57:d8:fb:82:22:74:ef:4e:c1:b5:1f:df:93:
f2:24:9a:f0:22:5d:54:64:76:8c:c5:5a:ff:f8:cc:0a:e7:27:
41:0d:cb:38:54:07:d8:bd:e6:8f:c2:be:68:d0:25:b3:23:6c:
41:e2:85:7a:4c:5f:18:27:04:b9:c4:0f:ad:51:80:ae:b9:53:
2f:6a:41:7d:1c:3f:48:6e:bc:8f:0d:3c:68:07:14:e9:aa:38:
c5:d0:9a:3b:05:9e:cf:c0:53:a4:6a:93:a9:b0:66:39:7b:5b:
d5:1e:59:62:fd:9f:78:9e:38:0a:d9:f4:be:9e:ab:a3:b2:d7:
d9:97:20:07:0c:3f:a6:8c:84:4b:0c:73:4f:5c:40:14:01:29:
81:c1:9a:ab:9b:28:c7:43:e8:16:cc:bc:20:d5:3d:b4:2f:69:
70:18:0c:72:33:e4:81:6b:1e:27:21:46:72:f4:d0:b1:71:76:
a7:bb:d2:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:05:26 2024 by rpki-client on console-ams.rpki-client.org