Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36DE42D/DD92018241DA11EE8310FE374AD9E6FC/3A263D2E41DF11EE8B4D1F454AD9E6FC.roa
File: 3A263D2E41DF11EE8B4D1F454AD9E6FC.roa (raw, json)
Hash identifier: SjMJaot2dgyU8cBWULIsdb5IrsgYShfG/2EflA66pS4=
Subject key identifier: B4:B3:BE:90:C9:25:06:CF:E0:63:D8:1B:B9:16:75:47:F3:12:61:41
Certificate issuer: /CN=F36DE42DAF/serialNumber=5A659972FEFD8131888ECA98B8F433266CD0E176
Certificate serial: 04
Authority key identifier: 5A:65:99:72:FE:FD:81:31:88:8E:CA:98:B8:F4:33:26:6C:D0:E1:76
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/WmWZcv79gTGIjsqYuPQzJmzQ4XY.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36DE42D/DD92018241DA11EE8310FE374AD9E6FC/3A263D2E41DF11EE8B4D1F454AD9E6FC.roa
Signing time: Wed 23 Aug 2023 18:02:30 +0000
ROA not before: Wed 23 Aug 2023 18:02:27 +0000
ROA not after: Tue 23 Aug 2033 18:02:27 +0000
asID: 29614
IP address blocks: 102.176.0.0/17 maxlen: 18
102.176.0.0/20 maxlen: 20
102.176.16.0/20 maxlen: 20
102.176.32.0/20 maxlen: 20
102.176.48.0/20 maxlen: 20
102.176.65.0/24 maxlen: 24
102.176.66.0/24 maxlen: 24
102.176.70.0/24 maxlen: 24
102.176.93.0/24 maxlen: 24
102.176.94.0/24 maxlen: 24
102.176.96.0/20 maxlen: 20
102.176.112.0/24 maxlen: 24
102.176.114.0/24 maxlen: 24
102.176.124.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36DE42D/DD92018241DA11EE8310FE374AD9E6FC/WmWZcv79gTGIjsqYuPQzJmzQ4XY.crl
rsync://rpki.afrinic.net/repository/member_repository/F36DE42D/DD92018241DA11EE8310FE374AD9E6FC/WmWZcv79gTGIjsqYuPQzJmzQ4XY.mft
rsync://rpki.afrinic.net/repository/afrinic/WmWZcv79gTGIjsqYuPQzJmzQ4XY.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 30 Sep 2024 00:05:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4 (0x4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36DE42DAF/serialNumber=5A659972FEFD8131888ECA98B8F433266CD0E176
Validity
Not Before: Aug 23 18:02:27 2023 GMT
Not After : Aug 23 18:02:27 2033 GMT
Subject: CN=64e649b6-288a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:d3:1f:41:26:b1:00:61:76:90:d2:18:a7:9d:
ab:89:f4:54:5b:6d:57:37:3c:12:5c:b2:83:bd:de:
b5:c8:de:9c:1d:26:6d:f8:ff:32:d0:e0:4f:b4:ce:
62:11:e3:c0:1e:d1:b4:9b:eb:73:52:50:76:f6:07:
5f:84:26:48:0f:ae:41:23:c7:bd:51:8f:74:7f:06:
dc:87:51:40:d7:a3:91:17:3d:e8:d5:ee:3e:79:14:
b2:00:fc:fa:e6:cc:4e:66:e6:4c:17:3e:22:cd:62:
ce:8d:12:67:b9:27:9e:cc:4e:60:7c:d8:d6:70:ca:
8f:16:25:17:46:0b:71:30:4f:3b:8b:8d:f5:31:b4:
eb:14:18:bc:2f:a4:74:a5:c0:d1:7a:49:5e:d4:93:
8b:79:2b:c0:58:44:62:3a:06:84:e6:56:a7:4d:da:
04:6b:03:bc:a4:83:e4:23:d8:2d:61:dd:4e:52:5b:
c8:4e:b6:e1:80:d9:b8:26:c0:24:8b:ee:a4:18:95:
e3:8a:8d:eb:89:a9:c3:5b:7e:77:7c:31:80:18:f1:
3f:ea:a6:47:ac:1c:25:42:2d:41:53:9f:f2:b2:cf:
5d:b1:14:84:75:ee:1e:94:58:8a:1c:e2:6a:14:f9:
98:1e:2b:5b:cc:1b:34:46:19:78:0b:9f:b1:84:d1:
7e:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:B3:BE:90:C9:25:06:CF:E0:63:D8:1B:B9:16:75:47:F3:12:61:41
X509v3 Authority Key Identifier:
keyid:5A:65:99:72:FE:FD:81:31:88:8E:CA:98:B8:F4:33:26:6C:D0:E1:76
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36DE42D/DD92018241DA11EE8310FE374AD9E6FC/WmWZcv79gTGIjsqYuPQzJmzQ4XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/WmWZcv79gTGIjsqYuPQzJmzQ4XY.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36DE42D/DD92018241DA11EE8310FE374AD9E6FC/3A263D2E41DF11EE8B4D1F454AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.176.0.0/17
Signature Algorithm: sha256WithRSAEncryption
a4:bc:20:cc:15:e1:c8:48:2a:f4:bf:91:74:71:4a:08:96:a6:
13:20:ac:67:f1:a7:f1:c7:49:71:8f:e1:38:32:8a:09:53:22:
93:d5:4e:19:ac:e8:69:c0:3a:43:a1:b2:ad:42:71:1c:dc:06:
3a:f1:bc:7b:04:b2:e7:f4:f4:a7:de:b2:79:05:03:19:d9:f3:
63:76:fc:31:ed:37:17:87:3a:45:72:0f:76:81:1d:86:1e:34:
8e:76:53:53:df:e7:14:87:48:36:bf:c3:7d:9d:7e:9c:a3:b6:
e6:42:ae:4c:3d:ab:f8:04:32:7a:71:0d:fa:ba:f0:85:b7:39:
cd:65:3a:81:32:56:85:d9:bd:5c:fd:eb:17:3f:ee:d7:64:68:
a1:c4:35:16:34:86:5a:96:52:da:07:87:1f:ce:3b:6e:86:13:
47:3a:3d:21:b3:74:c7:5a:01:cb:99:68:6a:32:37:c5:6c:61:
95:9b:54:da:ad:5e:ad:cc:53:a3:85:f0:8e:46:a8:06:75:8b:
f2:08:64:7d:76:4a:a1:ee:d6:b3:7c:e7:d3:d9:52:4c:a9:c3:
36:fe:ee:3b:23:11:c8:8c:db:da:b7:3e:59:2b:4e:83:6c:84:
58:0f:19:43:41:eb:08:e4:a7:07:a6:10:c3:7a:51:92:34:b1:
44:e1:fc:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Sep 28 04:04:20 2024 by rpki-client on console-fra.rpki-client.org