Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36EF186/095B7A2A548011EE8C8F332D4AD9E6FC/6B17F2325F1711EFB38E4896762E951A.roa
File: 6B17F2325F1711EFB38E4896762E951A.roa (raw, json)
Hash identifier: CZswUFn6B6vQWRX08nLoA4Apncj/pZiESlbochmE4Jo=
Subject key identifier: AB:4D:39:D9:07:1C:7A:89:29:F8:64:B9:A7:52:49:A7:42:0D:0F:C1
Certificate issuer: /CN=F36EF186AF/serialNumber=F377D4D428F9465B15449C6AFD4532C422446964
Certificate serial: 0169
Authority key identifier: F3:77:D4:D4:28:F9:46:5B:15:44:9C:6A:FD:45:32:C4:22:44:69:64
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/83fU1Cj5RlsVRJxq_UUyxCJEaWQ.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36EF186/095B7A2A548011EE8C8F332D4AD9E6FC/6B17F2325F1711EFB38E4896762E951A.roa
Signing time: Tue 20 Aug 2024 17:12:46 +0000
ROA not before: Tue 20 Aug 2024 17:12:42 +0000
ROA not after: Thu 31 Aug 2034 17:12:42 +0000
asID: 328611
IP address blocks: 102.208.56.0/24 maxlen: 24
102.208.57.0/24 maxlen: 24
102.208.58.0/24 maxlen: 24
102.208.59.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36EF186/095B7A2A548011EE8C8F332D4AD9E6FC/83fU1Cj5RlsVRJxq_UUyxCJEaWQ.crl
rsync://rpki.afrinic.net/repository/member_repository/F36EF186/095B7A2A548011EE8C8F332D4AD9E6FC/83fU1Cj5RlsVRJxq_UUyxCJEaWQ.mft
rsync://rpki.afrinic.net/repository/afrinic/83fU1Cj5RlsVRJxq_UUyxCJEaWQ.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 361 (0x169)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36EF186AF/serialNumber=F377D4D428F9465B15449C6AFD4532C422446964
Validity
Not Before: Aug 20 17:12:42 2024 GMT
Not After : Aug 31 17:12:42 2034 GMT
Subject: CN=66c4ce8e-eacf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f9:af:97:cd:c1:fa:00:d1:17:c8:07:06:91:ea:
90:55:9e:da:d4:11:56:16:95:c6:3f:78:e5:8d:7a:
5b:ee:65:d4:91:0b:c1:d1:26:c1:ce:69:b0:65:4a:
0c:d9:e5:98:4c:38:25:05:a0:68:2a:d4:e9:0c:5a:
00:f0:28:89:d4:a1:94:cb:8d:46:09:20:e0:8c:2b:
ec:88:58:a9:11:5b:d9:f1:0a:85:ec:f5:64:31:20:
21:f4:a9:38:bc:e8:e1:75:74:14:34:ed:94:7b:83:
1e:ff:89:11:3f:69:2a:09:0e:f5:00:21:b1:49:f9:
5d:fa:43:61:ef:27:df:ee:5d:97:fd:74:49:1a:3e:
51:65:f8:42:1d:16:a3:12:5b:fd:2c:c4:b7:08:dc:
f3:90:d1:52:f3:4b:69:21:f8:48:06:1d:71:3e:cd:
a1:63:79:84:a4:75:24:f3:0c:5e:11:c1:95:db:ef:
05:c7:67:6a:4a:38:b7:19:22:8b:0d:7b:18:e5:ef:
d4:d2:c5:ab:e1:05:21:9b:04:d8:90:02:7e:11:dd:
e3:4f:e2:a7:03:43:54:38:da:cd:b8:98:f9:a6:86:
e7:59:4f:de:21:e6:2b:3b:42:d6:7d:04:d3:3c:73:
78:b6:5f:b3:12:6a:89:88:80:6a:c5:14:f0:76:3d:
25:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:4D:39:D9:07:1C:7A:89:29:F8:64:B9:A7:52:49:A7:42:0D:0F:C1
X509v3 Authority Key Identifier:
keyid:F3:77:D4:D4:28:F9:46:5B:15:44:9C:6A:FD:45:32:C4:22:44:69:64
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36EF186/095B7A2A548011EE8C8F332D4AD9E6FC/83fU1Cj5RlsVRJxq_UUyxCJEaWQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/83fU1Cj5RlsVRJxq_UUyxCJEaWQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36EF186/095B7A2A548011EE8C8F332D4AD9E6FC/6B17F2325F1711EFB38E4896762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.208.56.0/22
Signature Algorithm: sha256WithRSAEncryption
18:99:8d:d8:ab:8c:21:5c:7d:89:2f:01:f9:b8:79:87:2b:f0:
b5:25:34:0d:d0:e9:21:fb:7e:2d:3a:1e:a6:a9:af:44:e2:cc:
db:fc:ce:7e:df:58:32:3b:a2:cf:ec:4f:8e:66:73:9e:77:98:
0a:e7:d5:61:d7:94:57:32:22:0e:6a:d4:28:6b:e1:e9:b9:6d:
2c:a5:64:2e:60:2e:2b:c0:ee:eb:cf:29:34:a3:ec:b5:58:41:
b6:0e:74:cb:25:dc:36:91:38:2c:ef:05:12:9f:7c:f7:30:5e:
d5:19:1d:93:31:d4:d2:1e:4f:e2:f2:7f:c4:2c:32:54:35:d4:
ff:3d:19:04:67:93:01:73:47:f6:50:01:e7:c4:a7:09:0c:8a:
5c:64:e6:50:e7:a4:27:25:ca:be:b2:c5:2c:b5:6f:d0:b8:33:
ab:d1:64:b3:59:59:00:71:cf:21:9e:07:a3:58:b4:ee:fa:8f:
e2:51:63:a5:00:ec:1a:47:e6:a1:d8:b2:e0:a7:85:3b:65:25:
ca:a9:93:ca:11:40:53:4e:9d:f1:79:4c:c8:bb:26:ff:5b:98:
27:84:2e:ce:c1:8c:03:72:d8:f4:2a:1f:a1:94:e7:37:18:74:
62:d5:58:ab:9d:81:75:0c:87:8d:59:b5:11:0a:a2:8d:bb:79:
81:cc:d9:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 03:53:00 2024 by rpki-client on console-fra.rpki-client.org