Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36DB492/10DA99764A0311ED8F59D89EF1222468/F67E4B16374D11EEB5DE38754AD9E6FC.roa
File: F67E4B16374D11EEB5DE38754AD9E6FC.roa (raw, json)
Hash identifier: hU4jFk//Gd5275KQZyF78ZmsmvKAmuy74Zm19XPUqO4=
Subject key identifier: 32:97:64:F0:31:2C:61:DA:17:9C:ED:B8:EF:AE:DC:F3:C6:F8:E4:FD
Certificate issuer: /CN=F36DB492AF/serialNumber=F43E0668EF72BD87FA5368BE2B6815C0BCB40149
Certificate serial: 0150
Authority key identifier: F4:3E:06:68:EF:72:BD:87:FA:53:68:BE:2B:68:15:C0:BC:B4:01:49
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/9D4GaO9yvYf6U2i-K2gVwLy0AUk.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36DB492/10DA99764A0311ED8F59D89EF1222468/F67E4B16374D11EEB5DE38754AD9E6FC.roa
Signing time: Thu 10 Aug 2023 07:17:28 +0000
ROA not before: Thu 10 Aug 2023 07:17:25 +0000
ROA not after: Wed 05 Aug 2026 07:17:25 +0000
asID: 23764
IP address blocks: 102.217.166.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36DB492/10DA99764A0311ED8F59D89EF1222468/9D4GaO9yvYf6U2i-K2gVwLy0AUk.crl
rsync://rpki.afrinic.net/repository/member_repository/F36DB492/10DA99764A0311ED8F59D89EF1222468/9D4GaO9yvYf6U2i-K2gVwLy0AUk.mft
rsync://rpki.afrinic.net/repository/afrinic/9D4GaO9yvYf6U2i-K2gVwLy0AUk.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 13 May 2024 00:04:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 336 (0x150)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36DB492AF/serialNumber=F43E0668EF72BD87FA5368BE2B6815C0BCB40149
Validity
Not Before: Aug 10 07:17:25 2023 GMT
Not After : Aug 5 07:17:25 2026 GMT
Subject: CN=64d48f08-2a5d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:b4:c9:86:2f:7f:53:47:5e:27:74:02:44:5f:
6c:31:48:fe:68:50:9b:26:b7:1c:54:27:d2:94:a7:
00:41:57:6e:52:14:6f:24:d0:14:2c:94:21:a5:ae:
89:77:83:24:d6:23:3e:81:3f:da:58:5a:02:8a:d0:
2e:aa:dc:c1:9a:74:9c:f2:a1:56:17:27:56:18:86:
1f:92:e4:18:3c:76:2f:9f:d9:87:27:09:39:d2:45:
42:4c:d2:fe:65:f1:21:d6:48:57:91:27:61:af:83:
aa:b5:7b:6a:0f:58:3b:ad:30:19:58:77:bd:4a:f6:
a3:ec:fa:04:49:6e:5a:b1:b0:b6:49:3e:00:3c:94:
80:16:ae:4d:64:8f:10:1d:52:3a:df:6c:f4:9b:14:
7f:81:16:1c:f4:de:09:31:cd:c4:56:ec:64:49:5d:
6d:d5:1e:b7:8c:4f:ee:4d:0d:a5:24:e1:2a:89:2d:
be:d2:94:3a:20:71:ec:88:2f:9d:51:3c:f2:61:54:
03:74:22:01:c4:2e:e8:ce:7e:32:5c:20:81:ce:59:
14:58:63:de:b2:cf:37:e6:e7:0f:4b:a8:32:10:c3:
87:c4:ef:76:59:2f:d2:9b:90:5f:c7:30:83:91:63:
00:cd:88:1b:3e:f1:fc:46:11:e2:80:3b:50:30:a6:
ae:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:97:64:F0:31:2C:61:DA:17:9C:ED:B8:EF:AE:DC:F3:C6:F8:E4:FD
X509v3 Authority Key Identifier:
keyid:F4:3E:06:68:EF:72:BD:87:FA:53:68:BE:2B:68:15:C0:BC:B4:01:49
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36DB492/10DA99764A0311ED8F59D89EF1222468/9D4GaO9yvYf6U2i-K2gVwLy0AUk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/9D4GaO9yvYf6U2i-K2gVwLy0AUk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36DB492/10DA99764A0311ED8F59D89EF1222468/F67E4B16374D11EEB5DE38754AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.217.166.0/24
Signature Algorithm: sha256WithRSAEncryption
85:30:d7:68:44:e1:67:6d:27:13:38:87:5c:84:4e:22:95:61:
b7:31:f4:9a:3b:eb:3f:f2:c2:fc:1e:a5:1f:4e:d5:ea:88:3a:
ed:94:99:c4:8a:6a:3f:bb:98:10:76:60:dc:81:4f:47:13:5a:
61:5b:33:81:0d:78:ab:86:73:c4:72:2d:18:05:c2:e1:59:5b:
66:73:93:cf:1d:10:15:e6:70:a9:17:dc:8d:6e:95:ba:18:4e:
76:ff:d0:45:87:6b:f1:1e:ec:ff:8b:b8:67:7f:98:52:50:eb:
c7:2f:fe:f1:32:ed:ed:d3:2c:fe:a7:3f:d8:69:04:ae:7e:6a:
af:6c:30:c4:6f:ed:bb:a9:a4:82:49:50:cb:44:d7:e6:81:12:
b5:8f:7a:df:9e:40:1e:b4:78:f5:b4:fd:5a:d1:4e:f6:19:38:
4a:1e:ff:a7:9d:fc:81:8a:7e:42:f5:b2:56:40:3b:58:8e:86:
bc:1e:df:83:c3:65:ed:30:ff:4a:7a:d9:6a:a8:5a:49:65:db:
95:ba:af:da:68:26:e6:56:7c:ab:2f:00:4a:2c:dc:ab:16:08:
6f:01:66:1d:6c:3a:c3:bf:83:9c:1e:69:69:08:29:31:3b:c2:
3e:5b:17:9c:1b:b8:ca:7b:63:e8:e6:96:34:e2:78:32:65:a9:
82:64:44:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 11 02:48:59 2024 by rpki-client on console-ams.rpki-client.org