Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36E4B69/DE14770E887311EE89B811434AD9E6FC/3B419B887CAB11EFB49DDE4D762E951A.roa
File: 3B419B887CAB11EFB49DDE4D762E951A.roa (raw, json)
Hash identifier: IQzn2Mmxf3299kc5c2KxlM3LEdiHGEsho1HI4seozUE=
Subject key identifier: D7:00:53:0E:52:7A:67:DD:4D:7B:F5:A5:B6:F9:4F:96:34:18:21:73
Certificate issuer: /CN=F36E4B69AF/serialNumber=CA6642EA9AFCC73AA24AA4047544B17C2603CBD2
Certificate serial: 0161
Authority key identifier: CA:66:42:EA:9A:FC:C7:3A:A2:4A:A4:04:75:44:B1:7C:26:03:CB:D2
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/ymZC6pr8xzqiSqQEdUSxfCYDy9I.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36E4B69/DE14770E887311EE89B811434AD9E6FC/3B419B887CAB11EFB49DDE4D762E951A.roa
Signing time: Fri 27 Sep 2024 08:33:55 +0000
ROA not before: Fri 27 Sep 2024 08:33:51 +0000
ROA not after: Fri 31 Dec 2027 08:33:51 +0000
asID: 36912
IP address blocks: 102.244.97.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36E4B69/DE14770E887311EE89B811434AD9E6FC/ymZC6pr8xzqiSqQEdUSxfCYDy9I.crl
rsync://rpki.afrinic.net/repository/member_repository/F36E4B69/DE14770E887311EE89B811434AD9E6FC/ymZC6pr8xzqiSqQEdUSxfCYDy9I.mft
rsync://rpki.afrinic.net/repository/afrinic/ymZC6pr8xzqiSqQEdUSxfCYDy9I.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 26 Nov 2024 00:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 353 (0x161)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36E4B69AF/serialNumber=CA6642EA9AFCC73AA24AA4047544B17C2603CBD2
Validity
Not Before: Sep 27 08:33:51 2024 GMT
Not After : Dec 31 08:33:51 2027 GMT
Subject: CN=66f66df3-a9fc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:7a:59:28:62:ae:ea:4f:13:6e:b7:21:be:32:
95:77:58:4f:1e:ad:68:aa:76:51:10:b9:d5:40:12:
e7:25:e9:ce:22:33:1a:72:6d:e5:dd:bc:41:af:9a:
ad:ec:54:f1:9a:dc:d1:c0:75:0e:17:1f:a2:9f:1c:
c6:e7:72:5b:0c:4a:12:21:e9:53:cf:73:73:5d:cc:
b7:3a:02:b5:5a:f7:f4:56:80:95:04:59:1d:6b:d0:
f4:de:41:13:3d:26:a0:c9:24:aa:7a:e1:38:c5:55:
c3:b6:3d:85:96:3b:1f:70:dc:c5:81:19:78:1e:93:
79:41:17:8c:71:73:e3:d5:3b:c4:c4:c7:b9:29:32:
98:02:72:b3:55:3b:67:8d:1d:db:ca:9e:ef:cb:bd:
0c:78:23:92:29:11:80:a1:a1:e1:20:ee:3c:58:ec:
2e:05:10:7e:b9:68:57:af:25:e3:be:08:2f:d6:c4:
43:87:ae:b2:0f:ab:98:78:a8:1a:ee:8e:70:d9:36:
47:95:04:b2:61:5a:00:7c:e5:5f:26:d9:63:bf:0c:
92:2e:ff:77:d6:75:df:cd:d5:01:4f:d3:2d:51:68:
e2:f1:27:dd:0f:bb:9d:11:f7:8d:c9:ed:bb:2e:c1:
7f:9b:aa:2f:08:c2:09:27:fc:b6:3d:78:83:c4:85:
c8:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:00:53:0E:52:7A:67:DD:4D:7B:F5:A5:B6:F9:4F:96:34:18:21:73
X509v3 Authority Key Identifier:
keyid:CA:66:42:EA:9A:FC:C7:3A:A2:4A:A4:04:75:44:B1:7C:26:03:CB:D2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36E4B69/DE14770E887311EE89B811434AD9E6FC/ymZC6pr8xzqiSqQEdUSxfCYDy9I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/ymZC6pr8xzqiSqQEdUSxfCYDy9I.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36E4B69/DE14770E887311EE89B811434AD9E6FC/3B419B887CAB11EFB49DDE4D762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.244.97.0/24
Signature Algorithm: sha256WithRSAEncryption
66:58:b1:63:52:06:53:ff:fa:c6:c3:0d:a6:d2:66:44:5f:9e:
5e:90:0c:eb:35:6e:d7:8f:b7:c7:00:54:82:26:cf:43:e6:7c:
15:36:b2:91:02:c8:ea:aa:8f:15:30:01:a4:65:b4:c0:39:37:
e3:11:11:fc:cf:bc:16:03:43:29:32:ea:60:07:30:de:56:c2:
bb:a5:ab:f1:b4:7c:be:e7:41:ab:75:8b:9b:2f:69:3a:54:9c:
62:30:74:05:62:20:ff:a4:4c:aa:ed:95:50:80:2b:c7:20:6c:
dc:be:86:bc:7c:98:ba:56:cf:a9:4f:2c:7d:d5:c0:6a:ab:20:
d8:8b:84:2f:c5:02:7e:fe:68:54:78:37:26:f9:d3:9f:f2:71:
b5:67:d6:7a:b7:2d:91:24:97:b3:30:c4:6b:91:ae:bd:59:5d:
d6:0d:35:b1:37:09:f9:8d:cb:37:da:f6:e1:2c:5b:be:13:bc:
8e:44:af:f6:bb:fc:e6:7f:3e:9c:f7:f6:d2:08:92:90:0e:a9:
b4:75:14:08:1f:bf:75:1b:58:fa:96:41:be:4a:31:2c:3c:73:
ff:fd:78:88:ca:54:21:af:1c:1e:34:83:2b:20:6e:18:ad:d5:
45:72:df:51:e3:1b:b3:2d:d1:eb:82:9d:4f:92:ff:0d:11:af:
3d:c0:ac:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Nov 24 03:19:44 2024 by rpki-client on console-ams.rpki-client.org