Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36EE14C/5EA2D1DCDBE811EE89324E7F775412E6/6B9CD7800D1511EFB6A61201017001B1.roa
File: 6B9CD7800D1511EFB6A61201017001B1.roa (raw, json)
Hash identifier: ssvUYk5x0OzQ7Q0Xp7UErygVy3MmZIG7nazU7zgnCUM=
Subject key identifier: 3C:76:9D:2E:11:88:45:B5:9A:48:C7:4D:63:A6:4E:9C:F0:AB:38:77
Certificate issuer: /CN=F36EE14CAF/serialNumber=DD8EE0395EFB34C4098E576E1FA95612F0AE108C
Certificate serial: 49
Authority key identifier: DD:8E:E0:39:5E:FB:34:C4:09:8E:57:6E:1F:A9:56:12:F0:AE:10:8C
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/3Y7gOV77NMQJjlduH6lWEvCuEIw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36EE14C/5EA2D1DCDBE811EE89324E7F775412E6/6B9CD7800D1511EFB6A61201017001B1.roa
Signing time: Wed 08 May 2024 08:31:52 +0000
ROA not before: Wed 08 May 2024 08:31:49 +0000
ROA not after: Mon 08 May 2034 08:31:49 +0000
asID: 37594
IP address blocks: 102.64.72.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36EE14C/5EA2D1DCDBE811EE89324E7F775412E6/3Y7gOV77NMQJjlduH6lWEvCuEIw.crl
rsync://rpki.afrinic.net/repository/member_repository/F36EE14C/5EA2D1DCDBE811EE89324E7F775412E6/3Y7gOV77NMQJjlduH6lWEvCuEIw.mft
rsync://rpki.afrinic.net/repository/afrinic/3Y7gOV77NMQJjlduH6lWEvCuEIw.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 73 (0x49)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36EE14CAF/serialNumber=DD8EE0395EFB34C4098E576E1FA95612F0AE108C
Validity
Not Before: May 8 08:31:49 2024 GMT
Not After : May 8 08:31:49 2034 GMT
Subject: CN=663b3878-31dd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:05:70:70:b2:11:e8:31:89:f9:68:59:05:af:
41:bb:75:9f:90:b6:ab:49:f7:aa:11:ce:ad:bc:b7:
55:84:ac:83:1f:39:1f:51:37:68:6f:47:e8:56:70:
91:1c:62:4d:3f:4c:f1:3c:f5:bd:f9:14:bd:81:62:
11:0f:6f:43:b0:f8:a6:1c:38:39:17:a3:c2:83:8d:
ef:56:97:8c:6e:c4:1f:bf:84:77:63:99:94:9e:c4:
d7:2a:1b:43:d6:03:e2:1d:f8:10:0d:da:ca:91:5e:
41:d1:b7:6e:71:4b:c6:02:52:13:e6:fe:89:fe:8e:
42:8c:de:54:0e:51:13:75:5b:70:87:33:0b:ba:7a:
29:08:aa:97:0e:cb:50:86:18:28:96:da:39:c6:a7:
e2:7a:f1:32:1d:5c:84:c8:36:ce:7a:a3:97:54:a4:
27:ed:2a:54:e3:01:63:08:2a:96:82:8d:94:99:20:
b4:f0:be:24:6e:2c:64:b0:4c:a3:bc:24:5c:95:ae:
9b:d4:46:50:37:cb:9b:62:6a:84:80:99:87:cf:2c:
94:75:99:6d:a2:c4:b8:56:71:e1:54:d0:bc:06:be:
2d:49:1e:61:3c:c6:c8:1b:1a:95:e0:d6:2e:36:06:
e1:30:c3:ee:63:85:87:d5:15:a1:f3:98:55:d2:f4:
57:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:76:9D:2E:11:88:45:B5:9A:48:C7:4D:63:A6:4E:9C:F0:AB:38:77
X509v3 Authority Key Identifier:
keyid:DD:8E:E0:39:5E:FB:34:C4:09:8E:57:6E:1F:A9:56:12:F0:AE:10:8C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36EE14C/5EA2D1DCDBE811EE89324E7F775412E6/3Y7gOV77NMQJjlduH6lWEvCuEIw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/3Y7gOV77NMQJjlduH6lWEvCuEIw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36EE14C/5EA2D1DCDBE811EE89324E7F775412E6/6B9CD7800D1511EFB6A61201017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.64.72.0/22
Signature Algorithm: sha256WithRSAEncryption
7e:6e:1a:8b:7e:a2:59:9f:3e:04:63:36:5e:e1:eb:6a:5f:eb:
67:5a:08:34:51:d7:42:d6:92:46:8b:61:43:fb:fc:19:f5:1b:
2a:b7:99:c8:41:02:8b:2b:b0:b2:6b:73:b2:1b:d6:85:f3:63:
c9:1d:69:6a:63:b6:68:44:07:21:57:35:1b:f8:1c:e0:18:1a:
78:13:da:e1:78:cc:9f:a9:c8:97:52:e9:28:9a:8c:e6:c0:ef:
ae:90:be:f2:90:ed:94:27:54:5a:c2:59:fd:af:79:14:0c:af:
d6:3c:08:88:e9:a3:84:0a:7a:ee:9d:97:df:3c:c1:dd:2a:b5:
4a:51:58:0f:10:5d:9b:25:78:39:46:d2:a9:b9:9b:e9:cb:1a:
e6:b1:26:5d:8a:f2:b4:a9:6b:6b:91:76:80:94:1a:7d:62:c5:
03:89:47:af:e7:0b:1c:74:e1:92:5f:e1:0c:6c:d3:f2:29:bb:
70:81:04:6b:83:ea:ef:d5:e0:11:40:8c:10:28:d1:a6:87:1f:
68:5e:9d:d6:55:c7:54:37:d2:31:16:62:00:27:9a:d9:60:09:
85:2d:1b:db:b0:4f:52:58:77:63:96:18:9a:d2:54:3b:06:19:
fd:d0:8d:af:57:e5:3f:f0:1b:bb:fd:5e:77:57:93:2e:fc:a8:
44:b4:69:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:05:31 2024 by rpki-client on console-ams.rpki-client.org