Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36D7FB7/8AC1C572F62C11EDA10D3B3A4AD9E6FC/6DF3308A4B0D11EEB78B6E8B4AD9E6FC.roa
File: 6DF3308A4B0D11EEB78B6E8B4AD9E6FC.roa (raw, json)
Hash identifier: fKRHwC2yWp7CWASllA6SXYSSy+E/H/AFFpAl0NYIs0M=
Subject key identifier: E1:39:F9:91:8F:BF:83:64:9C:6A:C4:AD:25:B9:55:E7:04:60:DE:0B
Certificate issuer: /CN=F36D7FB7AF/serialNumber=A58A6D29114C881E005877279D95ABAA39EE141C
Certificate serial: 8C
Authority key identifier: A5:8A:6D:29:11:4C:88:1E:00:58:77:27:9D:95:AB:AA:39:EE:14:1C
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/pYptKRFMiB4AWHcnnZWrqjnuFBw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36D7FB7/8AC1C572F62C11EDA10D3B3A4AD9E6FC/6DF3308A4B0D11EEB78B6E8B4AD9E6FC.roa
Signing time: Mon 04 Sep 2023 10:25:55 +0000
ROA not before: Mon 04 Sep 2023 10:25:51 +0000
ROA not after: Wed 15 Sep 2027 10:25:51 +0000
asID: 328344
IP address blocks: 102.217.18.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36D7FB7/8AC1C572F62C11EDA10D3B3A4AD9E6FC/pYptKRFMiB4AWHcnnZWrqjnuFBw.crl
rsync://rpki.afrinic.net/repository/member_repository/F36D7FB7/8AC1C572F62C11EDA10D3B3A4AD9E6FC/pYptKRFMiB4AWHcnnZWrqjnuFBw.mft
rsync://rpki.afrinic.net/repository/afrinic/pYptKRFMiB4AWHcnnZWrqjnuFBw.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 03 Jun 2024 00:05:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 140 (0x8c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36D7FB7AF/serialNumber=A58A6D29114C881E005877279D95ABAA39EE141C
Validity
Not Before: Sep 4 10:25:51 2023 GMT
Not After : Sep 15 10:25:51 2027 GMT
Subject: CN=64f5b0b3-2b09
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:48:ed:db:75:3f:89:7a:1c:37:bc:6f:e6:7f:
36:d4:62:85:51:f9:da:da:2e:10:03:7f:8d:69:97:
c1:74:95:51:57:a8:b3:97:e5:9f:19:ba:2b:50:00:
6b:94:12:bc:de:b0:1e:2a:b9:b1:60:ef:35:5e:18:
b5:10:a4:b7:5a:81:ee:8c:ce:31:c6:16:39:30:36:
e0:e8:22:52:56:b6:63:d9:98:56:ee:cd:3d:d0:81:
b0:e4:1b:a3:2f:1a:04:d8:e9:42:b9:f1:9b:f6:6f:
55:a5:aa:bd:e8:97:db:5a:8d:2f:0d:f4:b1:51:7e:
e4:00:87:00:df:eb:2d:b9:d9:1c:66:ec:da:03:5e:
dd:41:c8:5b:f6:d3:4d:e6:34:f9:24:6d:37:d9:95:
cb:83:69:94:58:12:b8:17:91:24:0f:bf:2d:fd:f7:
b8:f8:75:ce:2f:4d:23:85:bd:35:6d:ae:b2:d6:ae:
08:b1:cf:87:73:88:54:9a:e5:39:72:ee:c1:d8:d8:
77:fc:0d:2e:b7:03:2c:82:a8:b1:ff:5e:e4:bd:ff:
6f:57:df:8c:06:50:18:d3:41:3a:39:a6:40:4c:22:
01:59:65:45:0f:95:0f:9b:16:b6:b8:ba:7d:e8:bf:
01:8f:6b:26:c6:fb:27:03:fb:72:c1:6d:d0:ca:8e:
9c:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:39:F9:91:8F:BF:83:64:9C:6A:C4:AD:25:B9:55:E7:04:60:DE:0B
X509v3 Authority Key Identifier:
keyid:A5:8A:6D:29:11:4C:88:1E:00:58:77:27:9D:95:AB:AA:39:EE:14:1C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36D7FB7/8AC1C572F62C11EDA10D3B3A4AD9E6FC/pYptKRFMiB4AWHcnnZWrqjnuFBw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/pYptKRFMiB4AWHcnnZWrqjnuFBw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36D7FB7/8AC1C572F62C11EDA10D3B3A4AD9E6FC/6DF3308A4B0D11EEB78B6E8B4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.217.18.0/24
Signature Algorithm: sha256WithRSAEncryption
8a:95:09:1f:09:9f:5b:4e:19:88:d6:88:1d:de:f6:f4:38:89:
32:5c:5b:ea:ba:ff:bc:6c:8c:e0:92:07:cf:e5:c4:ae:9b:cc:
7d:f9:c8:14:03:b4:70:d2:2b:26:6e:0f:17:e2:2f:e9:7e:d7:
6e:71:91:76:e5:d1:1a:52:8e:7e:7c:b4:58:41:eb:6d:b9:43:
d2:3b:af:d6:df:a0:ee:40:77:f3:7c:61:41:b0:b3:5e:d8:27:
8d:d6:6c:a1:ea:00:7b:b7:f0:4c:c9:4b:21:36:ea:f7:65:e2:
7f:4b:6d:f5:8d:32:4b:c5:1f:b4:06:04:b1:86:df:0d:b4:ea:
d6:b3:07:30:1c:70:2d:e1:b3:25:8d:4a:32:14:37:92:00:a3:
ad:2b:d3:a7:96:fb:de:24:06:9e:0e:5a:3c:1e:90:fe:6a:80:
53:51:0d:b5:ac:a0:4b:cb:49:d7:09:d8:49:9e:56:dd:52:0a:
25:9e:12:c8:91:7d:e6:1a:da:27:a3:2d:48:b0:c6:fc:95:b8:
14:0f:0e:46:73:11:65:9f:07:7d:1f:2e:0b:96:85:a9:10:a1:
fa:cb:41:01:67:a2:07:3d:82:e5:57:cd:61:93:bd:4b:ff:33:
d3:69:0b:c6:32:09:79:e1:4c:88:41:db:d9:4c:ea:a0:79:26:
40:73:2a:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 1 04:07:19 2024 by rpki-client on console-ams.rpki-client.org