Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36E4B69/DE14770E887311EE89B811434AD9E6FC/88C005FAE86F11EEA0289955775412E6.roa
File: 88C005FAE86F11EEA0289955775412E6.roa (raw, json)
Hash identifier: 2xUGL17bO3ah/ni1p+4Y+DjG347crU5mRkFs3eTev0U=
Subject key identifier: B2:49:9F:35:CD:37:42:3D:EE:E6:11:41:1F:2D:AE:2B:86:DC:92:64
Certificate issuer: /CN=F36E4B69AF/serialNumber=CA6642EA9AFCC73AA24AA4047544B17C2603CBD2
Certificate serial: 8C
Authority key identifier: CA:66:42:EA:9A:FC:C7:3A:A2:4A:A4:04:75:44:B1:7C:26:03:CB:D2
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/ymZC6pr8xzqiSqQEdUSxfCYDy9I.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36E4B69/DE14770E887311EE89B811434AD9E6FC/88C005FAE86F11EEA0289955775412E6.roa
Signing time: Fri 22 Mar 2024 17:13:43 +0000
ROA not before: Fri 22 Mar 2024 17:13:40 +0000
ROA not after: Sun 22 Mar 2026 17:13:40 +0000
asID: 36912
IP address blocks: 102.244.132.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36E4B69/DE14770E887311EE89B811434AD9E6FC/ymZC6pr8xzqiSqQEdUSxfCYDy9I.crl
rsync://rpki.afrinic.net/repository/member_repository/F36E4B69/DE14770E887311EE89B811434AD9E6FC/ymZC6pr8xzqiSqQEdUSxfCYDy9I.mft
rsync://rpki.afrinic.net/repository/afrinic/ymZC6pr8xzqiSqQEdUSxfCYDy9I.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 26 Nov 2024 00:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 140 (0x8c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36E4B69AF/serialNumber=CA6642EA9AFCC73AA24AA4047544B17C2603CBD2
Validity
Not Before: Mar 22 17:13:40 2024 GMT
Not After : Mar 22 17:13:40 2026 GMT
Subject: CN=65fdbc47-85a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:15:b3:09:2d:df:22:21:86:a0:3d:c8:1d:e6:
9c:c6:48:e5:b9:e2:8c:13:97:84:62:39:58:55:02:
47:67:03:79:ef:19:ab:2e:44:0f:79:bb:3d:21:c0:
df:00:6a:c5:57:2c:fa:c5:99:bd:89:b7:60:e2:f4:
c0:62:66:40:99:56:72:fb:9b:78:b5:67:e9:4d:5e:
a7:50:90:87:7c:6c:d1:f0:05:5a:20:fc:ab:4f:84:
10:85:01:c0:56:b1:b1:da:cf:a2:75:55:b7:07:40:
ed:e2:c2:3b:ee:54:7c:90:7e:03:92:ab:07:cc:a6:
fb:e6:5b:6c:03:d9:97:d0:08:33:1c:22:83:28:bb:
9c:66:bc:97:f2:81:93:78:ed:e1:c4:14:ef:d3:a9:
78:6d:a1:aa:7c:5f:9d:90:8c:d2:2b:96:48:f9:f6:
d6:59:b6:7a:69:8c:fe:e1:68:1d:ad:3c:8e:91:12:
7b:e4:c4:84:29:bb:2c:d2:25:34:02:a1:3c:5d:b8:
62:5c:7a:ed:1c:97:6e:d9:51:80:04:d7:8e:b6:ac:
fd:26:00:d5:fd:17:ca:f4:37:f0:3d:9e:f4:af:c2:
92:3f:72:06:db:dd:8d:3e:70:ef:5f:8d:a0:ab:4d:
c6:b0:b1:d9:c3:8c:6c:a0:e7:65:c9:41:f5:ba:b5:
47:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:49:9F:35:CD:37:42:3D:EE:E6:11:41:1F:2D:AE:2B:86:DC:92:64
X509v3 Authority Key Identifier:
keyid:CA:66:42:EA:9A:FC:C7:3A:A2:4A:A4:04:75:44:B1:7C:26:03:CB:D2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36E4B69/DE14770E887311EE89B811434AD9E6FC/ymZC6pr8xzqiSqQEdUSxfCYDy9I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/ymZC6pr8xzqiSqQEdUSxfCYDy9I.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36E4B69/DE14770E887311EE89B811434AD9E6FC/88C005FAE86F11EEA0289955775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.244.132.0/24
Signature Algorithm: sha256WithRSAEncryption
7d:1a:57:6c:b4:05:c8:98:c3:31:10:05:ac:e1:67:0e:6d:21:
42:48:50:e9:a2:df:e5:a4:46:d6:d4:e4:d4:69:54:45:fc:45:
87:30:58:85:7e:2e:ee:0a:c1:e9:19:ef:35:4e:44:55:de:8d:
66:84:85:4c:30:cb:d3:bb:55:15:fa:c2:bd:07:00:06:ff:84:
26:6b:10:b6:32:6c:f0:9f:be:3a:08:e5:65:05:f4:95:04:31:
a1:e7:01:5e:82:9d:43:72:d1:84:e9:79:be:be:c8:05:10:86:
58:bf:c1:fd:f7:88:e0:1f:9b:2b:dd:af:ca:fa:cd:18:5b:96:
6e:61:d5:5d:70:1a:5d:fc:ff:87:4f:92:2f:47:0e:95:32:a7:
e6:d1:c9:75:31:b9:fb:06:ca:e6:07:9e:7b:5e:2b:7e:3f:2d:
5f:c3:44:ac:ca:c2:f1:9d:3d:7d:fa:c9:11:ca:69:91:cb:9e:
85:d4:a2:36:a9:09:cc:b5:e2:fc:c3:7c:19:63:06:0e:ed:34:
06:f2:08:73:89:33:13:7c:55:ef:a1:d4:a4:3f:28:ac:8a:0f:
34:ae:f5:19:cf:b9:9f:5a:94:d0:f5:7b:0a:31:e0:18:9b:53:
02:8a:b1:a9:28:a4:37:dd:cb:41:54:c5:58:d0:34:e9:f0:6a:
a9:0a:67:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Nov 24 03:19:44 2024 by rpki-client on console-ams.rpki-client.org