Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36E4B69/DE14770E887311EE89B811434AD9E6FC/518CAA929CFC11EF95640782762E951A.roa
File: 518CAA929CFC11EF95640782762E951A.roa (raw, json)
Hash identifier: OyktAYCtLdWaRz8aqABUtVcVPRFArgA2QV1t66oDcS8=
Subject key identifier: 5F:F5:9F:CA:40:10:80:7D:6B:BF:6B:1E:2A:A9:67:6F:45:1D:38:D4
Certificate issuer: /CN=F36E4B69AF/serialNumber=CA6642EA9AFCC73AA24AA4047544B17C2603CBD2
Certificate serial: 018C
Authority key identifier: CA:66:42:EA:9A:FC:C7:3A:A2:4A:A4:04:75:44:B1:7C:26:03:CB:D2
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/ymZC6pr8xzqiSqQEdUSxfCYDy9I.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36E4B69/DE14770E887311EE89B811434AD9E6FC/518CAA929CFC11EF95640782762E951A.roa
Signing time: Thu 07 Nov 2024 11:34:59 +0000
ROA not before: Thu 07 Nov 2024 11:34:55 +0000
ROA not after: Thu 31 Dec 2026 11:34:55 +0000
asID: 36912
IP address blocks: 102.244.63.0/24 maxlen: 24
102.244.109.0/24 maxlen: 24
102.244.193.0/24 maxlen: 24
102.244.212.0/24 maxlen: 24
102.244.214.0/24 maxlen: 24
102.244.215.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36E4B69/DE14770E887311EE89B811434AD9E6FC/ymZC6pr8xzqiSqQEdUSxfCYDy9I.crl
rsync://rpki.afrinic.net/repository/member_repository/F36E4B69/DE14770E887311EE89B811434AD9E6FC/ymZC6pr8xzqiSqQEdUSxfCYDy9I.mft
rsync://rpki.afrinic.net/repository/afrinic/ymZC6pr8xzqiSqQEdUSxfCYDy9I.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 26 Nov 2024 00:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 396 (0x18c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36E4B69AF/serialNumber=CA6642EA9AFCC73AA24AA4047544B17C2603CBD2
Validity
Not Before: Nov 7 11:34:55 2024 GMT
Not After : Dec 31 11:34:55 2026 GMT
Subject: CN=672ca5e2-83b0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:b4:da:e3:0c:e8:3c:0c:6a:a6:db:e2:09:fe:
d7:b0:38:84:f5:40:2a:3b:e9:9c:79:4d:77:50:ad:
7d:7a:40:c6:f5:db:e4:2b:99:34:ee:f8:8f:eb:c8:
4c:db:b2:6b:4e:53:ea:dd:8e:e0:ea:35:2c:03:6d:
29:cf:6a:9c:48:36:4f:54:47:10:e7:28:78:45:6b:
03:60:18:97:cf:d8:da:41:52:d0:7f:04:90:36:b1:
84:12:c3:c3:6e:9f:3c:35:a2:38:ee:e8:b9:e3:f6:
a8:f9:10:66:d5:49:75:75:95:ff:21:63:78:90:99:
d7:66:45:51:5b:57:90:d5:5d:66:25:57:c3:96:da:
36:10:0a:f0:06:fa:2e:60:11:15:eb:e4:0a:34:0a:
87:98:cd:3b:c7:77:fd:7b:60:82:da:60:e8:54:74:
6b:64:28:81:05:08:c9:ac:51:a4:79:71:30:a1:fb:
fb:43:a0:a7:7d:26:a6:08:d3:31:5a:a1:9a:1a:ca:
27:8c:73:8a:94:02:b0:9c:f8:e3:b6:ee:96:3b:6e:
c1:ef:0a:d2:3a:2c:9d:77:55:e1:84:c1:f1:05:6c:
73:b4:4d:8d:42:b9:e7:30:04:fd:91:94:11:b2:e1:
41:f3:ff:52:67:df:ed:ce:05:c9:0b:82:f2:a1:a7:
50:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:F5:9F:CA:40:10:80:7D:6B:BF:6B:1E:2A:A9:67:6F:45:1D:38:D4
X509v3 Authority Key Identifier:
keyid:CA:66:42:EA:9A:FC:C7:3A:A2:4A:A4:04:75:44:B1:7C:26:03:CB:D2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36E4B69/DE14770E887311EE89B811434AD9E6FC/ymZC6pr8xzqiSqQEdUSxfCYDy9I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/ymZC6pr8xzqiSqQEdUSxfCYDy9I.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36E4B69/DE14770E887311EE89B811434AD9E6FC/518CAA929CFC11EF95640782762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.244.63.0/24
102.244.109.0/24
102.244.193.0/24
102.244.212.0/24
102.244.214.0/23
Signature Algorithm: sha256WithRSAEncryption
a2:c5:52:e0:57:22:87:73:0f:0c:d5:f2:e0:19:c6:0a:39:c7:
0f:39:19:a1:9d:21:2b:df:3b:11:e0:41:d6:78:cb:45:bf:15:
51:08:8d:70:09:36:fe:6f:9a:1d:6c:16:fb:ae:7d:5f:90:df:
d7:3d:5c:3d:ba:3e:90:2b:7b:0c:72:46:a7:a4:be:5a:f6:a9:
0d:38:a6:6f:25:1d:cb:3a:28:51:8c:b5:3e:d4:16:23:29:9f:
c2:39:02:a3:8e:a3:1b:b1:d0:10:0b:7f:f3:87:03:86:a0:27:
1b:a2:08:57:e3:34:c3:77:d0:cd:ab:59:d2:33:e0:2c:5f:0d:
c0:d5:3e:bf:7d:cc:5c:e6:ca:75:c6:4d:1c:31:53:e7:dd:ec:
fc:72:33:34:49:4f:b0:1b:9f:62:00:3b:c7:d9:64:56:57:b6:
3a:b3:67:2b:28:81:0e:54:ca:64:f9:c8:50:97:ca:b6:5b:10:
26:45:58:d0:46:e7:bb:99:94:ef:2c:1c:3f:87:42:2b:8f:7c:
16:f4:e4:c7:75:56:f1:de:76:16:d4:cf:9f:52:30:d8:71:d5:
70:50:c6:79:3c:c5:b2:cc:c3:e7:c5:dc:e7:a8:5a:a4:7c:2d:
90:6b:a4:cd:87:88:bc:be:5c:37:27:14:64:43:a0:26:88:2c:
dd:33:1e:b7
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Sun Nov 24 03:19:44 2024 by rpki-client on console-ams.rpki-client.org