Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36EF7D0/36E40A16F2FB11ED821B9D804AD9E6FC/D6AA5ED68E5B11EF802F6641762E951A.roa
File: D6AA5ED68E5B11EF802F6641762E951A.roa (raw, json)
Hash identifier: QfiTJVON6AAunNuhr8GeYGYffRmgmBsoMBWOBrWnpWk=
Subject key identifier: 6F:1A:4B:BB:D6:79:DE:DA:1B:C2:14:8A:5E:58:C5:85:2C:28:A7:64
Certificate issuer: /CN=F36EF7D0AF/serialNumber=3A553B6EF80BF922312F96B8DDC1F219A8C4121B
Certificate serial: 025A
Authority key identifier: 3A:55:3B:6E:F8:0B:F9:22:31:2F:96:B8:DD:C1:F2:19:A8:C4:12:1B
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/OlU7bvgL-SIxL5a43cHyGajEEhs.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36EF7D0/36E40A16F2FB11ED821B9D804AD9E6FC/D6AA5ED68E5B11EF802F6641762E951A.roa
Signing time: Sat 19 Oct 2024 20:50:57 +0000
ROA not before: Sat 19 Oct 2024 20:50:53 +0000
ROA not after: Sat 19 Oct 2030 20:50:53 +0000
asID: 63989
IP address blocks: 102.211.232.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36EF7D0/36E40A16F2FB11ED821B9D804AD9E6FC/OlU7bvgL-SIxL5a43cHyGajEEhs.crl
rsync://rpki.afrinic.net/repository/member_repository/F36EF7D0/36E40A16F2FB11ED821B9D804AD9E6FC/OlU7bvgL-SIxL5a43cHyGajEEhs.mft
rsync://rpki.afrinic.net/repository/afrinic/OlU7bvgL-SIxL5a43cHyGajEEhs.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 602 (0x25a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36EF7D0AF/serialNumber=3A553B6EF80BF922312F96B8DDC1F219A8C4121B
Validity
Not Before: Oct 19 20:50:53 2024 GMT
Not After : Oct 19 20:50:53 2030 GMT
Subject: CN=67141bb1-cbc6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fb:a1:65:bd:ee:68:ae:25:0e:db:58:41:67:b2:
8c:ae:a8:88:67:34:85:80:02:5d:e9:d7:3c:31:85:
30:94:40:68:d7:51:b7:90:f4:11:7e:45:f4:f3:6a:
fb:b9:2b:99:dc:04:98:77:3d:33:74:ac:cc:9e:2c:
5c:d6:a2:19:df:7c:34:42:b6:13:bc:a0:44:8b:ec:
43:d5:7d:b1:68:0d:6d:bc:cc:43:56:30:8c:56:85:
be:8f:9b:c5:4f:cd:22:f3:87:45:92:ac:74:bc:c6:
fa:38:59:0d:41:3a:88:c9:75:d8:c6:e4:54:58:0d:
1b:4e:55:1c:18:f9:37:c9:d2:34:8f:34:a4:d1:3f:
96:a1:64:27:d5:63:a4:e8:ff:ef:d2:25:8b:23:45:
8b:ff:1d:99:80:2d:8e:3a:a5:ed:b7:94:5d:b6:fe:
f5:52:78:3d:71:54:68:2f:dc:53:5d:e1:45:42:93:
4e:a9:cc:28:83:d6:86:52:c3:df:a5:b8:ed:5b:63:
03:70:26:11:88:bd:fe:b6:92:f1:6c:d9:26:a2:52:
6d:7c:96:39:3a:7b:78:dc:d1:63:ea:68:64:1d:c4:
d5:8d:82:83:e4:90:13:5d:24:d4:20:ba:b7:75:c6:
7b:b6:e0:1a:b1:b2:d5:03:00:86:9a:5a:64:be:7c:
e2:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:1A:4B:BB:D6:79:DE:DA:1B:C2:14:8A:5E:58:C5:85:2C:28:A7:64
X509v3 Authority Key Identifier:
keyid:3A:55:3B:6E:F8:0B:F9:22:31:2F:96:B8:DD:C1:F2:19:A8:C4:12:1B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36EF7D0/36E40A16F2FB11ED821B9D804AD9E6FC/OlU7bvgL-SIxL5a43cHyGajEEhs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/OlU7bvgL-SIxL5a43cHyGajEEhs.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36EF7D0/36E40A16F2FB11ED821B9D804AD9E6FC/D6AA5ED68E5B11EF802F6641762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.211.232.0/24
Signature Algorithm: sha256WithRSAEncryption
29:55:63:d2:0e:82:61:4a:e6:bc:c2:8e:c3:91:3b:7e:c0:57:
aa:d0:6c:68:24:31:84:cd:c8:60:c4:f6:86:ef:ba:86:0f:74:
73:cc:62:a3:3e:84:f8:c5:6d:9e:ae:16:1e:e9:e7:8c:26:fb:
a2:5c:c3:7a:34:6a:71:de:f2:6a:eb:5a:48:75:bf:af:04:51:
19:63:b7:ba:3d:21:30:dd:49:bd:0e:c3:15:c8:ce:76:5a:e1:
15:ef:da:f7:bc:53:69:2f:f5:4a:2f:25:42:e3:eb:a1:09:ba:
17:ed:b4:9c:21:df:ab:a1:bd:8f:2c:40:1d:d9:c7:cc:2a:83:
06:8f:b0:1c:ba:f9:ac:9c:94:28:c2:1d:bf:e9:7b:37:e6:4f:
eb:30:be:3e:b1:6f:94:1f:1a:4a:e2:b9:b5:c5:70:bb:8d:74:
93:60:65:e2:29:cf:6c:50:aa:cb:2e:8b:19:b8:4f:73:ac:09:
96:45:22:e1:59:e2:76:8e:7e:01:92:3c:9e:e0:bb:74:fe:76:
74:12:d6:8a:08:a1:9b:fb:02:9f:00:ab:59:2d:fa:dd:1d:25:
6b:cb:96:52:93:26:0c:34:d1:61:11:4d:7b:9b:09:cc:cb:0b:
fa:17:b6:49:c7:22:1f:c5:64:8d:7a:af:36:49:28:62:9b:dd:
e9:e5:66:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 03:53:00 2024 by rpki-client on console-fra.rpki-client.org