Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36D9765/17D92B5C92DC11EEBFDD584DD25BE465/FFF44596E21111EE97790E9B775412E6.roa
File: FFF44596E21111EE97790E9B775412E6.roa (raw, json)
Hash identifier: 3jeCnY7r5+OaUOOC086aUVH8hGb0UpeugYE741gqr+8=
Subject key identifier: C1:22:B3:B0:55:4D:10:73:B4:FA:8F:FA:2E:F1:0B:8A:57:30:3A:96
Certificate issuer: /CN=F36D9765AF/serialNumber=F91C9A55792C1B7246713FECC83A04D0B6BF1291
Certificate serial: 73
Authority key identifier: F9:1C:9A:55:79:2C:1B:72:46:71:3F:EC:C8:3A:04:D0:B6:BF:12:91
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/-RyaVXksG3JGcT_syDoE0La_EpE.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36D9765/17D92B5C92DC11EEBFDD584DD25BE465/FFF44596E21111EE97790E9B775412E6.roa
Signing time: Thu 14 Mar 2024 14:49:03 +0000
ROA not before: Thu 14 Mar 2024 14:49:00 +0000
ROA not after: Tue 14 Mar 2034 14:49:00 +0000
asID: 37129
IP address blocks: 102.211.216.0/24 maxlen: 24
102.211.217.0/24 maxlen: 24
102.211.218.0/24 maxlen: 24
102.211.219.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36D9765/17D92B5C92DC11EEBFDD584DD25BE465/-RyaVXksG3JGcT_syDoE0La_EpE.crl
rsync://rpki.afrinic.net/repository/member_repository/F36D9765/17D92B5C92DC11EEBFDD584DD25BE465/-RyaVXksG3JGcT_syDoE0La_EpE.mft
rsync://rpki.afrinic.net/repository/afrinic/-RyaVXksG3JGcT_syDoE0La_EpE.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 115 (0x73)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36D9765AF/serialNumber=F91C9A55792C1B7246713FECC83A04D0B6BF1291
Validity
Not Before: Mar 14 14:49:00 2024 GMT
Not After : Mar 14 14:49:00 2034 GMT
Subject: CN=65f30e5f-e9e7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:27:16:a5:a4:95:6d:71:b7:6f:f0:25:d7:9a:
80:79:e0:b2:88:12:d6:c4:2c:4d:39:3b:3f:5c:20:
9c:c3:03:5f:be:f0:05:19:7c:d1:3b:09:75:16:b5:
dc:b2:85:30:28:3b:4a:43:60:e6:1a:70:ae:f6:68:
a8:a6:a7:b3:cd:49:35:70:87:cd:0f:43:0f:a3:f8:
bb:ee:fb:37:64:34:00:75:bb:cd:3d:2c:7f:f8:73:
61:b8:60:78:ce:28:68:76:83:2a:cc:8f:fd:e1:a0:
de:2c:e7:cf:e6:21:91:09:d2:0d:f2:9c:df:0f:21:
e5:46:43:d7:25:7b:98:f4:53:2d:d7:f3:e7:b1:8a:
f6:a4:1a:50:e2:c4:c9:ad:c5:2a:67:d5:1d:13:de:
bd:6e:51:88:42:ac:9c:d8:74:00:6c:99:be:7d:f9:
cd:80:4c:ba:94:86:36:c4:2d:59:bd:e4:35:80:7e:
5f:cb:5d:6c:d9:2e:cb:3a:ff:fc:17:49:3b:b1:fc:
ee:7d:6d:4d:71:90:1e:b2:4f:be:8b:96:2f:b6:e2:
8b:b7:a5:c7:b3:6a:f6:15:81:1a:5b:1f:19:11:e1:
8d:be:c6:b3:2e:4a:91:0d:f9:74:65:38:6e:0b:8a:
29:f6:3e:a7:47:18:76:75:85:ac:5d:ff:33:75:1c:
5f:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:22:B3:B0:55:4D:10:73:B4:FA:8F:FA:2E:F1:0B:8A:57:30:3A:96
X509v3 Authority Key Identifier:
keyid:F9:1C:9A:55:79:2C:1B:72:46:71:3F:EC:C8:3A:04:D0:B6:BF:12:91
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36D9765/17D92B5C92DC11EEBFDD584DD25BE465/-RyaVXksG3JGcT_syDoE0La_EpE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/-RyaVXksG3JGcT_syDoE0La_EpE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36D9765/17D92B5C92DC11EEBFDD584DD25BE465/FFF44596E21111EE97790E9B775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.211.216.0/22
Signature Algorithm: sha256WithRSAEncryption
75:1c:fe:32:63:f7:37:b7:a8:e0:89:87:9c:ab:af:64:c7:ea:
90:f2:83:3d:49:86:59:2e:3e:18:5e:17:89:79:f7:3b:17:79:
76:39:a2:d2:11:b7:a4:00:5c:50:c9:dd:02:f7:6b:b4:4b:7f:
16:8e:b0:85:6f:dd:8a:ff:9e:47:71:4a:56:9b:82:6d:c3:ba:
ec:bf:36:eb:a0:af:11:b7:03:59:19:31:8c:46:ca:62:80:4c:
48:44:f4:0c:a7:41:63:10:75:78:b6:8c:72:43:c7:8b:ea:d4:
80:21:cc:ea:fc:59:05:8b:3f:5d:02:fb:be:d7:49:94:dc:6a:
38:25:1e:5e:51:03:2c:22:d5:87:9b:65:52:e4:42:f5:65:0c:
67:93:5d:a2:ee:45:31:32:71:14:13:37:fe:97:d7:3d:ad:0e:
3c:1c:70:b0:2f:67:47:35:b5:c1:f6:88:6f:09:c9:51:2a:f2:
e9:59:b3:c1:e8:42:63:83:eb:84:07:95:7d:ec:6a:78:c2:ab:
95:02:8e:b8:2d:5e:dd:34:c8:4a:de:20:cf:5b:47:94:55:ef:
85:ac:f2:a1:a7:78:30:c7:05:29:98:df:0a:41:ed:d8:d8:e6:
82:90:1a:48:08:c7:7c:af:51:32:bb:ac:b0:71:a4:82:22:d8:
ea:2a:b1:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:05:28 2024 by rpki-client on console-ams.rpki-client.org