Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36D7FB7/8AC1C572F62C11EDA10D3B3A4AD9E6FC/CE6060704A9311EEA5F02C804AD9E6FC.roa
File: CE6060704A9311EEA5F02C804AD9E6FC.roa (raw, json)
Hash identifier: Hs360djHIf3ak9GbVE0Knhr4VTREbtOjL6bSMzqrUhI=
Subject key identifier: 77:0F:B3:EC:4F:EC:BE:2C:EE:25:75:2B:0D:BA:55:88:4C:3B:43:A4
Certificate issuer: /CN=F36D7FB7AF/serialNumber=A58A6D29114C881E005877279D95ABAA39EE141C
Certificate serial: 7F
Authority key identifier: A5:8A:6D:29:11:4C:88:1E:00:58:77:27:9D:95:AB:AA:39:EE:14:1C
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/pYptKRFMiB4AWHcnnZWrqjnuFBw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36D7FB7/8AC1C572F62C11EDA10D3B3A4AD9E6FC/CE6060704A9311EEA5F02C804AD9E6FC.roa
Signing time: Sun 03 Sep 2023 19:55:18 +0000
ROA not before: Sun 03 Sep 2023 19:55:15 +0000
ROA not after: Wed 15 Sep 2027 19:55:15 +0000
asID: 328344
IP address blocks: 102.135.179.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36D7FB7/8AC1C572F62C11EDA10D3B3A4AD9E6FC/pYptKRFMiB4AWHcnnZWrqjnuFBw.crl
rsync://rpki.afrinic.net/repository/member_repository/F36D7FB7/8AC1C572F62C11EDA10D3B3A4AD9E6FC/pYptKRFMiB4AWHcnnZWrqjnuFBw.mft
rsync://rpki.afrinic.net/repository/afrinic/pYptKRFMiB4AWHcnnZWrqjnuFBw.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 03 Jun 2024 00:05:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 127 (0x7f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36D7FB7AF/serialNumber=A58A6D29114C881E005877279D95ABAA39EE141C
Validity
Not Before: Sep 3 19:55:15 2023 GMT
Not After : Sep 15 19:55:15 2027 GMT
Subject: CN=64f4e4a6-881c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:e9:4c:c5:af:7b:4e:9e:1b:20:a1:b6:5d:37:
77:11:66:3f:29:21:14:a0:56:e2:22:48:52:d9:cd:
09:a8:43:03:24:b1:5b:9e:12:02:26:2b:bd:28:3d:
64:fa:25:15:a0:78:8f:9a:2f:3d:77:a5:c6:90:0e:
ef:88:5b:2b:52:65:81:dc:d0:18:4e:91:40:c1:56:
e8:e8:87:94:b0:bd:34:2b:b1:1b:2c:04:a9:07:bf:
ec:d4:ff:bf:d6:e9:d0:7f:21:f1:1a:b5:a9:06:52:
d6:fe:23:3f:8d:95:2b:f0:b8:c9:cf:61:7a:a0:d2:
e6:85:b8:b2:52:8f:da:9d:62:f5:52:f1:76:34:f3:
ab:b9:ae:6e:54:43:df:99:6f:aa:4b:7b:de:74:80:
93:b7:2e:bd:a2:95:2b:8a:f6:a1:f0:44:c6:d8:9b:
55:6d:80:a9:48:5a:d3:41:e8:e3:52:a3:88:05:63:
39:12:28:8d:91:dd:0b:32:24:62:d1:c6:3d:a0:4a:
ed:c0:ef:dd:49:11:0a:f6:2e:ca:e6:51:7e:9c:b6:
6d:b8:0d:fc:a8:3a:ed:b0:ff:5d:2d:9e:2f:c7:7b:
08:a7:73:28:5d:42:0e:80:ae:f3:be:d0:9d:9d:3d:
0f:38:2c:8b:d2:f5:9e:8d:fc:14:d9:f9:2f:61:25:
bd:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:0F:B3:EC:4F:EC:BE:2C:EE:25:75:2B:0D:BA:55:88:4C:3B:43:A4
X509v3 Authority Key Identifier:
keyid:A5:8A:6D:29:11:4C:88:1E:00:58:77:27:9D:95:AB:AA:39:EE:14:1C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36D7FB7/8AC1C572F62C11EDA10D3B3A4AD9E6FC/pYptKRFMiB4AWHcnnZWrqjnuFBw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/pYptKRFMiB4AWHcnnZWrqjnuFBw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36D7FB7/8AC1C572F62C11EDA10D3B3A4AD9E6FC/CE6060704A9311EEA5F02C804AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.135.179.0/24
Signature Algorithm: sha256WithRSAEncryption
64:61:11:8f:9c:55:81:ac:a6:f4:ba:e7:2c:48:2e:78:14:aa:
97:69:ae:81:ed:03:c6:25:02:55:44:04:9a:12:a0:03:12:74:
06:09:42:49:b0:03:93:93:f9:5a:20:a7:e9:b2:31:43:3d:5c:
d7:b1:e5:61:9c:95:74:5b:46:16:77:30:a4:14:be:a6:12:1e:
01:bb:79:5b:6c:66:6f:86:88:4a:d9:ba:f1:15:b6:7a:c1:a7:
ca:27:97:3e:25:f6:ba:7c:b6:10:4c:e0:30:02:cb:54:94:61:
2f:a2:85:27:09:f4:51:1c:04:71:03:72:d5:6e:05:a9:08:bc:
f7:89:7f:b3:05:b2:fa:ee:1d:15:7b:72:7c:7f:ac:d5:45:19:
ba:80:62:78:3d:20:e2:6c:d2:e7:e9:7c:98:76:4f:b8:cd:16:
7d:ff:89:13:80:31:9b:ff:d0:7e:17:d4:37:48:c1:51:1c:70:
3e:f0:56:7e:85:97:de:96:94:96:06:bc:27:7a:35:d0:bf:68:
9b:d3:8c:98:5d:15:be:ac:c8:90:ba:2d:a0:b8:8c:fb:23:c8:
9d:3b:6e:89:ab:e5:9a:e1:3f:31:18:2e:ea:2a:4c:6c:f8:eb:
c4:e7:ea:2a:2a:87:3d:c4:5f:3e:15:4d:81:b5:1e:bd:f2:d1:
7e:1a:eb:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 1 02:55:13 2024 by rpki-client on console-fra.rpki-client.org