Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36E2B8C/C8F9DF1E0B6211EE862D868A4AD9E6FC/CFBA7658BF4C11EEA63B046E775412E6.roa
File: CFBA7658BF4C11EEA63B046E775412E6.roa (raw, json)
Hash identifier: ztrej41rf8oiDq363icFLwJ7s6TsCQnTykDsq30+veg=
Subject key identifier: 6D:F4:65:56:6F:32:96:75:26:D9:14:22:36:8E:C8:74:00:B0:56:DD
Certificate issuer: /CN=F36E2B8CAF/serialNumber=872130E69B3FB8035B1B25D3F6FB974A2A078ECC
Certificate serial: 0109
Authority key identifier: 87:21:30:E6:9B:3F:B8:03:5B:1B:25:D3:F6:FB:97:4A:2A:07:8E:CC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/hyEw5ps_uANbGyXT9vuXSioHjsw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36E2B8C/C8F9DF1E0B6211EE862D868A4AD9E6FC/CFBA7658BF4C11EEA63B046E775412E6.roa
Signing time: Tue 30 Jan 2024 08:51:52 +0000
ROA not before: Tue 30 Jan 2024 08:51:49 +0000
ROA not after: Sat 08 Feb 2025 08:51:49 +0000
asID: 37684
IP address blocks: 102.221.35.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36E2B8C/C8F9DF1E0B6211EE862D868A4AD9E6FC/hyEw5ps_uANbGyXT9vuXSioHjsw.crl
rsync://rpki.afrinic.net/repository/member_repository/F36E2B8C/C8F9DF1E0B6211EE862D868A4AD9E6FC/hyEw5ps_uANbGyXT9vuXSioHjsw.mft
rsync://rpki.afrinic.net/repository/afrinic/hyEw5ps_uANbGyXT9vuXSioHjsw.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 03 Jun 2024 00:05:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 265 (0x109)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36E2B8CAF/serialNumber=872130E69B3FB8035B1B25D3F6FB974A2A078ECC
Validity
Not Before: Jan 30 08:51:49 2024 GMT
Not After : Feb 8 08:51:49 2025 GMT
Subject: CN=65b8b8a8-3852
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:5e:b5:5a:fc:f8:a9:91:4e:85:7b:b8:4a:db:
3c:e7:eb:d4:e6:b8:20:59:8a:dc:78:57:85:9d:24:
fd:28:22:27:0a:58:fe:8c:05:57:ca:7d:68:f9:5c:
24:a9:27:ef:41:cf:c9:3b:ec:c4:ec:01:c9:5d:aa:
9a:e9:f0:0d:1e:b9:0e:fa:4c:d9:2f:0b:b7:c0:be:
9f:7e:70:0b:55:c0:fc:85:1c:39:31:bf:e0:44:2e:
55:ec:ec:eb:71:e2:47:a6:a9:92:26:80:15:64:9b:
93:c8:79:9d:cc:53:f5:ed:63:f0:30:d2:05:a5:ab:
66:6a:9e:83:ce:cc:47:91:fc:28:25:cf:43:15:77:
17:8a:3a:d6:87:c5:74:cf:40:91:6a:5a:0b:82:0d:
98:6b:aa:07:30:8e:37:31:1e:fe:11:fc:f4:68:af:
1b:52:d7:8e:7e:ed:14:04:16:f0:f5:6a:3c:41:80:
15:5e:c9:f6:57:5d:e5:87:ca:84:66:5f:00:d7:41:
86:41:bb:c4:01:60:2e:ec:be:e3:25:98:e8:e1:0a:
2e:e0:66:1d:42:c3:0a:b2:89:1b:82:ee:2c:8b:4c:
67:01:a9:ca:82:26:5f:69:5e:db:41:5f:2b:bb:55:
13:fb:64:0e:42:37:3a:7a:fb:8f:2b:ca:a5:6a:e6:
8d:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:F4:65:56:6F:32:96:75:26:D9:14:22:36:8E:C8:74:00:B0:56:DD
X509v3 Authority Key Identifier:
keyid:87:21:30:E6:9B:3F:B8:03:5B:1B:25:D3:F6:FB:97:4A:2A:07:8E:CC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36E2B8C/C8F9DF1E0B6211EE862D868A4AD9E6FC/hyEw5ps_uANbGyXT9vuXSioHjsw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/hyEw5ps_uANbGyXT9vuXSioHjsw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36E2B8C/C8F9DF1E0B6211EE862D868A4AD9E6FC/CFBA7658BF4C11EEA63B046E775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.221.35.0/24
Signature Algorithm: sha256WithRSAEncryption
26:56:11:86:aa:47:a0:35:27:1c:12:7c:8b:d1:7c:1b:b7:15:
38:85:a3:78:e3:b7:0b:1d:3f:56:f2:fc:e0:e1:e4:b0:25:d1:
c9:66:a9:6a:17:35:d0:54:b6:2e:f9:6d:ab:a5:54:5a:d2:f3:
e1:c5:c8:ca:cb:f7:04:42:e9:95:f8:8e:2f:99:17:4b:fa:aa:
48:d4:ec:36:14:b3:03:41:7b:35:8b:fb:5a:e9:bb:43:bd:27:
f6:1b:ee:14:12:c5:6b:d6:3e:ef:1d:b6:b3:a5:b6:38:06:6a:
28:4b:00:1c:97:69:57:cf:46:aa:a4:42:29:f6:d6:dd:43:d3:
8b:45:88:02:8c:b3:a9:8d:1b:30:e9:5a:04:77:66:4e:6d:8e:
35:a0:a8:50:03:49:9d:1c:c0:42:8b:df:20:48:f8:08:d2:83:
7e:e0:be:37:af:54:d4:a8:f5:bf:a8:18:8f:36:48:5a:ec:38:
04:3b:95:04:5e:03:35:5c:d2:04:4b:3f:c8:9e:9d:9b:69:19:
95:40:92:46:24:09:e6:f3:c3:50:b5:9f:5a:76:4d:8b:e7:41:
09:ad:af:a4:14:30:a6:4c:62:ca:cb:b9:94:48:5d:c3:0d:ce:
ae:01:cd:bc:68:3c:73:b4:42:2e:5c:96:e5:f5:71:1c:c6:bc:
c2:64:a7:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 1 02:55:13 2024 by rpki-client on console-fra.rpki-client.org