Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36D9765/17D92B5C92DC11EEBFDD584DD25BE465/60DEE4F2E21111EEA9BF3698775412E6.roa
File: 60DEE4F2E21111EEA9BF3698775412E6.roa (raw, json)
Hash identifier: kpV5c+Nm73LzjUsY4W/31mKZBHaBOvnt5Onm6QECScM=
Subject key identifier: 63:BB:E7:8B:84:94:4B:7A:33:2A:F8:9F:E7:78:2C:FE:FC:02:8A:38
Certificate issuer: /CN=F36D9765AF/serialNumber=F91C9A55792C1B7246713FECC83A04D0B6BF1291
Certificate serial: 71
Authority key identifier: F9:1C:9A:55:79:2C:1B:72:46:71:3F:EC:C8:3A:04:D0:B6:BF:12:91
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/-RyaVXksG3JGcT_syDoE0La_EpE.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36D9765/17D92B5C92DC11EEBFDD584DD25BE465/60DEE4F2E21111EEA9BF3698775412E6.roa
Signing time: Thu 14 Mar 2024 14:44:36 +0000
ROA not before: Thu 14 Mar 2024 14:44:33 +0000
ROA not after: Tue 14 Mar 2034 14:44:33 +0000
asID: 37129
IP address blocks: 102.211.216.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36D9765/17D92B5C92DC11EEBFDD584DD25BE465/-RyaVXksG3JGcT_syDoE0La_EpE.crl
rsync://rpki.afrinic.net/repository/member_repository/F36D9765/17D92B5C92DC11EEBFDD584DD25BE465/-RyaVXksG3JGcT_syDoE0La_EpE.mft
rsync://rpki.afrinic.net/repository/afrinic/-RyaVXksG3JGcT_syDoE0La_EpE.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 113 (0x71)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36D9765AF/serialNumber=F91C9A55792C1B7246713FECC83A04D0B6BF1291
Validity
Not Before: Mar 14 14:44:33 2024 GMT
Not After : Mar 14 14:44:33 2034 GMT
Subject: CN=65f30d54-4e87
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:49:ed:63:e7:66:ad:7a:3f:e7:dc:fc:8d:3d:
64:e2:db:b3:a5:f1:71:51:53:22:13:d0:8f:78:9a:
40:e9:9e:cb:4c:6e:33:45:be:5a:44:ee:c8:a0:15:
ed:04:6b:46:57:40:5a:23:1c:78:13:54:ac:8a:1d:
96:e3:6c:84:cf:8d:6d:15:32:ef:5f:62:dc:3b:60:
e9:36:ca:12:36:a4:25:9d:cd:ce:7b:0a:bf:16:73:
cf:29:19:a5:77:d6:aa:8d:c4:a2:9c:af:5f:9f:68:
e7:d5:73:a2:b9:6d:97:ae:27:0b:1a:58:0f:cb:45:
0f:2a:d3:4e:c1:92:9e:2b:c3:ec:3d:b0:3b:1c:48:
d8:7e:55:7b:d8:98:1e:2c:9b:ad:c5:c2:79:14:a9:
05:11:b6:d5:90:b5:da:4a:2e:1b:7b:74:6c:49:27:
7c:aa:9b:38:d6:04:28:74:c7:0d:fa:39:05:68:da:
e4:3d:7d:2f:87:1f:a4:d8:71:88:9c:3c:77:bd:dc:
67:07:2a:69:f4:a3:c9:1d:fe:02:ab:ec:ca:1d:3f:
92:b6:50:04:28:71:78:1f:d3:ea:53:ce:e5:bc:2f:
69:c6:7c:8a:31:07:1a:5f:1c:40:8a:2e:89:a2:f8:
9d:cd:94:d7:8e:20:d3:07:3b:2e:f8:18:33:fa:f0:
81:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:BB:E7:8B:84:94:4B:7A:33:2A:F8:9F:E7:78:2C:FE:FC:02:8A:38
X509v3 Authority Key Identifier:
keyid:F9:1C:9A:55:79:2C:1B:72:46:71:3F:EC:C8:3A:04:D0:B6:BF:12:91
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36D9765/17D92B5C92DC11EEBFDD584DD25BE465/-RyaVXksG3JGcT_syDoE0La_EpE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/-RyaVXksG3JGcT_syDoE0La_EpE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36D9765/17D92B5C92DC11EEBFDD584DD25BE465/60DEE4F2E21111EEA9BF3698775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.211.216.0/22
Signature Algorithm: sha256WithRSAEncryption
00:c0:00:f6:dc:ab:a7:a0:97:a9:60:ef:f9:2d:5e:b3:03:4c:
73:fc:c8:7e:e8:a6:8f:96:87:ff:71:ed:a0:73:fd:ca:2a:dc:
1b:79:20:19:cc:b2:18:11:69:98:ac:8d:28:ca:eb:70:93:31:
2c:0b:cf:d4:52:c2:2c:73:fe:1a:c6:dd:83:84:0c:c7:e3:04:
6d:89:c6:25:55:a5:ae:a0:37:80:64:d9:a3:e2:32:a8:b1:88:
2b:84:72:3f:37:49:8f:c4:d6:c1:c8:c0:26:53:d9:81:58:ca:
04:ee:ab:d3:e2:ba:2f:69:6d:69:3b:a9:46:d1:26:1f:99:ca:
5f:6b:16:ea:58:d4:fe:87:89:21:c5:60:1c:e9:22:80:59:16:
ed:43:00:9b:e6:01:38:39:70:ad:de:62:80:00:b5:84:96:0a:
47:35:65:a5:eb:65:14:ea:a1:65:f7:bd:b5:94:28:1e:bc:c3:
dd:2d:7c:30:7d:cb:85:05:60:8d:1a:6d:39:15:67:cf:b6:14:
98:ca:5c:2c:e0:fc:f4:4d:8a:eb:90:8a:16:ba:09:d6:78:0a:
87:cc:33:21:1f:f1:96:61:25:82:f4:28:44:65:0c:7b:1b:d4:
d0:13:6a:9a:c9:c2:49:9e:64:46:65:8a:d4:49:bf:f5:39:7c:
a1:54:b0:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:05:28 2024 by rpki-client on console-ams.rpki-client.org