Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36DB492/10DA99764A0311ED8F59D89EF1222468/CAB5EB42374D11EE8810A0744AD9E6FC.roa
File: CAB5EB42374D11EE8810A0744AD9E6FC.roa (raw, json)
Hash identifier: Rd+cT1WHVj6VPW10DhoJe1VPjes86osECuBqlAPA/jk=
Subject key identifier: 03:A6:80:BF:EB:79:E9:7F:D3:70:2A:87:51:A5:8E:F8:88:FA:AB:55
Certificate issuer: /CN=F36DB492AF/serialNumber=F43E0668EF72BD87FA5368BE2B6815C0BCB40149
Certificate serial: 014E
Authority key identifier: F4:3E:06:68:EF:72:BD:87:FA:53:68:BE:2B:68:15:C0:BC:B4:01:49
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/9D4GaO9yvYf6U2i-K2gVwLy0AUk.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36DB492/10DA99764A0311ED8F59D89EF1222468/CAB5EB42374D11EE8810A0744AD9E6FC.roa
Signing time: Thu 10 Aug 2023 07:16:15 +0000
ROA not before: Thu 10 Aug 2023 07:16:12 +0000
ROA not after: Fri 14 Aug 2026 07:16:12 +0000
asID: 23764
IP address blocks: 102.217.165.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36DB492/10DA99764A0311ED8F59D89EF1222468/9D4GaO9yvYf6U2i-K2gVwLy0AUk.crl
rsync://rpki.afrinic.net/repository/member_repository/F36DB492/10DA99764A0311ED8F59D89EF1222468/9D4GaO9yvYf6U2i-K2gVwLy0AUk.mft
rsync://rpki.afrinic.net/repository/afrinic/9D4GaO9yvYf6U2i-K2gVwLy0AUk.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 13 May 2024 00:04:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 334 (0x14e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36DB492AF/serialNumber=F43E0668EF72BD87FA5368BE2B6815C0BCB40149
Validity
Not Before: Aug 10 07:16:12 2023 GMT
Not After : Aug 14 07:16:12 2026 GMT
Subject: CN=64d48ebf-6296
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:5a:1e:ec:09:55:a3:51:96:a1:00:12:e3:1a:
b9:1b:fd:ce:69:12:b9:2a:83:91:79:5c:09:fd:5f:
c5:1b:27:09:54:0f:92:10:49:a8:1b:86:97:f4:8f:
1b:ed:88:22:4a:9e:aa:26:37:ad:f4:33:1e:37:d9:
b0:2a:ce:fc:b5:86:78:f3:37:1f:22:2c:a9:ac:50:
6a:55:b7:4f:ac:0a:28:04:73:89:48:b7:ef:74:de:
a6:0d:ac:a4:b3:94:64:5e:da:2f:de:e3:06:3f:8e:
05:95:43:e5:ac:cb:d8:3e:76:17:a8:6f:9d:17:90:
f5:c1:b0:5c:56:32:d4:b9:5c:e5:3d:1f:78:75:f8:
51:69:c0:7f:58:f5:c3:f7:6b:97:7c:e0:a4:68:62:
bf:0f:a1:63:4c:53:b8:41:c9:fc:fa:5f:c3:01:d4:
0b:ab:ed:00:25:eb:d8:a0:68:7b:3a:32:cf:f8:42:
4b:a0:4e:ae:bd:a6:f3:e5:f6:57:ad:c0:5a:f7:b6:
4c:b2:9b:99:db:e9:e7:87:e2:75:08:35:9f:b5:88:
5a:40:2f:4e:9b:21:95:f5:22:94:d6:32:32:71:65:
2c:3e:76:ba:8f:3d:16:e2:39:7c:90:2b:5b:16:cd:
d9:80:58:1a:0a:35:8a:87:00:8b:71:e5:fd:2b:ab:
aa:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:A6:80:BF:EB:79:E9:7F:D3:70:2A:87:51:A5:8E:F8:88:FA:AB:55
X509v3 Authority Key Identifier:
keyid:F4:3E:06:68:EF:72:BD:87:FA:53:68:BE:2B:68:15:C0:BC:B4:01:49
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36DB492/10DA99764A0311ED8F59D89EF1222468/9D4GaO9yvYf6U2i-K2gVwLy0AUk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/9D4GaO9yvYf6U2i-K2gVwLy0AUk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36DB492/10DA99764A0311ED8F59D89EF1222468/CAB5EB42374D11EE8810A0744AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.217.165.0/24
Signature Algorithm: sha256WithRSAEncryption
07:7c:a5:4b:04:42:a7:09:9d:dc:bc:34:8a:d9:61:c7:5d:bb:
74:26:73:57:61:38:4d:85:e8:73:77:42:83:f7:b3:88:92:2f:
fc:4e:d7:a1:74:17:a0:2c:b0:22:1b:b3:39:4a:c4:40:26:6b:
3e:05:cc:57:33:04:9c:89:be:89:8c:39:f2:34:e3:f1:de:bb:
93:77:30:7c:8f:d4:6e:45:5c:f6:66:88:72:62:0d:15:9a:a5:
01:ac:97:ee:db:b7:ad:ce:32:fe:c1:47:60:30:11:d7:d2:0b:
35:85:3e:1f:e5:9f:d1:74:a8:63:d6:bb:36:41:77:23:b7:97:
a2:13:99:5f:ed:2b:d6:fa:76:d4:d0:48:b5:0f:d8:15:10:e8:
b4:6b:db:6e:c3:bc:d7:47:cb:04:59:a1:5b:de:3f:13:76:c2:
b0:b6:de:b0:83:03:b8:4d:fc:b7:bc:2a:64:e6:a5:c6:7d:ef:
ed:82:04:19:e6:90:f9:5f:14:a9:f0:a3:ff:48:f7:27:2c:d3:
87:f2:05:44:8f:04:94:c6:df:b6:a7:1c:eb:87:48:f0:65:e3:
70:a4:bf:56:c1:fa:d1:d4:e1:12:d2:a1:49:4e:59:1f:93:af:
08:a8:ec:31:60:a6:f6:af:b7:8e:a7:f7:5b:49:6a:e8:fe:22:
15:12:71:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 11 02:39:16 2024 by rpki-client on console-fra.rpki-client.org