Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36EB6AE/381289B283DC11EA96D3CC4EF8AEA228/194DF7D868FB11EFB7429B90762E951A.roa
File: 194DF7D868FB11EFB7429B90762E951A.roa (raw, json)
Hash identifier: NFQt82rMb7NWbYXB4Ts4sK7O+uFyIpzTw3E2kXEqFmc=
Subject key identifier: D0:BD:9C:5B:4B:13:2A:B5:7F:84:B3:5A:95:E0:DD:96:EC:D5:EE:00
Certificate issuer: /CN=F36EB6AEAF/serialNumber=373C1827E2704C3FDC16A878980FADC8835FA482
Certificate serial: 0664
Authority key identifier: 37:3C:18:27:E2:70:4C:3F:DC:16:A8:78:98:0F:AD:C8:83:5F:A4:82
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/NzwYJ-JwTD_cFqh4mA-tyINfpII.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36EB6AE/381289B283DC11EA96D3CC4EF8AEA228/194DF7D868FB11EFB7429B90762E951A.roa
Signing time: Mon 02 Sep 2024 07:15:14 +0000
ROA not before: Mon 02 Sep 2024 07:15:10 +0000
ROA not after: Tue 01 Sep 2026 07:15:10 +0000
asID: 328278
IP address blocks: 102.165.64.0/19 maxlen: 24
2c0f:ec98::/32 maxlen: 48
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36EB6AE/381289B283DC11EA96D3CC4EF8AEA228/NzwYJ-JwTD_cFqh4mA-tyINfpII.crl
rsync://rpki.afrinic.net/repository/member_repository/F36EB6AE/381289B283DC11EA96D3CC4EF8AEA228/NzwYJ-JwTD_cFqh4mA-tyINfpII.mft
rsync://rpki.afrinic.net/repository/afrinic/NzwYJ-JwTD_cFqh4mA-tyINfpII.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1636 (0x664)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36EB6AEAF/serialNumber=373C1827E2704C3FDC16A878980FADC8835FA482
Validity
Not Before: Sep 2 07:15:10 2024 GMT
Not After : Sep 1 07:15:10 2026 GMT
Subject: CN=66d56602-0e33
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:fa:f6:04:f8:c8:99:f1:e3:32:90:06:9e:0b:
a3:5e:93:e4:d4:05:18:8a:f7:0d:41:7d:4a:cf:0b:
06:a9:94:aa:31:bc:cf:8d:13:42:5f:da:1c:47:4e:
57:47:91:62:61:64:f3:fa:32:cd:59:14:30:0a:a4:
e6:59:88:e4:4e:94:a6:00:68:c1:48:5b:6b:3f:d5:
d8:67:6c:34:f3:5b:42:d0:58:24:9d:b3:7c:f0:a0:
7b:2e:e1:8d:30:c3:05:07:54:8e:c4:50:61:77:3b:
d8:0d:1f:5c:59:c4:c3:b2:78:cd:29:dc:45:f2:38:
f4:6a:77:04:4d:48:26:4b:78:85:5c:70:d1:39:24:
08:b6:f8:52:3d:e2:54:d1:bb:7e:7f:30:69:39:f1:
7c:f6:b3:72:e6:0f:af:06:e6:5f:33:87:e0:02:cd:
ea:1b:ce:a5:e6:5b:5d:b3:51:c4:c7:5e:66:b2:41:
88:ce:57:47:e0:bb:5e:6a:d5:0f:8b:76:56:25:92:
f0:31:fa:89:be:de:27:5d:25:7a:dd:2a:96:e2:ae:
7f:a7:45:07:bc:8b:16:81:86:20:38:07:f3:5e:e0:
cd:47:09:b5:1b:a0:82:0a:72:35:5c:63:5c:2d:04:
1d:31:c4:fb:62:63:e1:ff:c6:4a:68:67:22:b6:b5:
64:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:BD:9C:5B:4B:13:2A:B5:7F:84:B3:5A:95:E0:DD:96:EC:D5:EE:00
X509v3 Authority Key Identifier:
keyid:37:3C:18:27:E2:70:4C:3F:DC:16:A8:78:98:0F:AD:C8:83:5F:A4:82
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36EB6AE/381289B283DC11EA96D3CC4EF8AEA228/NzwYJ-JwTD_cFqh4mA-tyINfpII.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/NzwYJ-JwTD_cFqh4mA-tyINfpII.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36EB6AE/381289B283DC11EA96D3CC4EF8AEA228/194DF7D868FB11EFB7429B90762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.165.64.0/19
IPv6:
2c0f:ec98::/32
Signature Algorithm: sha256WithRSAEncryption
5e:88:2d:14:ab:32:2d:87:66:8b:bd:4e:de:f7:0c:68:9f:38:
6c:bb:a0:8d:b6:e6:16:9d:a4:6b:2a:80:e2:61:ad:6d:56:44:
23:bb:20:95:04:8e:33:b9:9e:fc:0e:a2:08:93:bc:b3:f7:b6:
cb:f7:ed:ff:01:f3:43:1b:5e:ea:ae:8d:b3:b4:9f:ee:3f:cf:
fd:8e:2e:1a:61:79:76:ea:4b:5e:bf:27:95:3c:5b:99:28:74:
c7:60:fb:22:cc:0e:90:72:b1:65:b8:94:e4:aa:b4:58:ee:5f:
fa:37:85:82:fa:34:30:ca:22:e4:27:1e:67:33:58:22:52:43:
c7:5c:39:7c:cf:ff:f4:75:72:0b:04:96:d9:cd:d0:60:30:80:
29:d7:11:70:ad:1a:47:77:31:b4:91:c5:1a:7c:1f:b6:5b:4c:
82:fa:78:19:32:25:05:f2:40:30:73:e6:2b:a4:e9:09:8b:5a:
1e:4c:21:1d:42:0d:14:8e:d5:b5:fc:dd:68:97:87:78:8a:ed:
61:e5:eb:3c:d8:c4:ff:2c:c0:86:81:d9:b0:24:de:bc:c1:b1:
7c:e0:43:0b:b1:58:40:04:6e:4e:26:0d:de:39:d8:db:b9:01:
6f:45:86:02:ca:7a:32:6a:6c:02:90:0c:be:13:8e:21:46:45:
17:f1:19:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:05:31 2024 by rpki-client on console-ams.rpki-client.org