Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36F0133/5041A708E58611ECAFC22A87F1222468/5B2913E4E58711EC8ACE468AF1222468.roa
File: 5B2913E4E58711EC8ACE468AF1222468.roa (raw, json)
Hash identifier: DANu8DftskvVS8pcKPFbr/Os5e58xaDS744iEI9GtyU=
Subject key identifier: A8:3B:8B:25:A2:B8:AC:17:77:53:94:1E:EA:90:78:4A:D9:1D:0D:F5
Certificate issuer: /CN=F36F0133AF/serialNumber=6630C7840846F2F6909754F1341466CDAFEA2FD4
Certificate serial: 04
Authority key identifier: 66:30:C7:84:08:46:F2:F6:90:97:54:F1:34:14:66:CD:AF:EA:2F:D4
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/ZjDHhAhG8vaQl1TxNBRmza_qL9Q.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36F0133/5041A708E58611ECAFC22A87F1222468/5B2913E4E58711EC8ACE468AF1222468.roa
Signing time: Mon 06 Jun 2022 10:56:45 +0000
ROA not before: Mon 06 Jun 2022 10:56:42 +0000
ROA not after: Sun 06 Jun 2032 10:56:42 +0000
asID: 30983
IP address blocks: 102.216.118.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36F0133/5041A708E58611ECAFC22A87F1222468/ZjDHhAhG8vaQl1TxNBRmza_qL9Q.crl
rsync://rpki.afrinic.net/repository/member_repository/F36F0133/5041A708E58611ECAFC22A87F1222468/ZjDHhAhG8vaQl1TxNBRmza_qL9Q.mft
rsync://rpki.afrinic.net/repository/afrinic/ZjDHhAhG8vaQl1TxNBRmza_qL9Q.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 20 May 2024 00:04:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4 (0x4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36F0133AF/serialNumber=6630C7840846F2F6909754F1341466CDAFEA2FD4
Validity
Not Before: Jun 6 10:56:42 2022 GMT
Not After : Jun 6 10:56:42 2032 GMT
Subject: CN=629ddd6d-57e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:1d:d4:93:c7:69:8f:93:93:a9:57:77:84:e3:
7a:e9:9f:d8:78:90:35:dd:d1:fb:6b:31:9d:f1:b4:
39:b9:f6:ab:37:9d:e3:41:75:04:34:a4:88:88:41:
2e:17:13:f1:76:d9:ed:57:4e:c9:5d:7f:5f:9a:78:
93:87:fd:26:94:e2:63:3b:80:d5:0b:87:dd:4f:90:
53:47:04:e7:ce:1a:54:e3:49:32:9b:cc:f1:7e:e2:
ff:ba:ec:05:cf:a1:ec:c5:ef:ce:78:31:31:b8:b4:
65:5f:67:4b:3d:cd:aa:6c:32:ff:cd:cc:53:72:6d:
ab:6b:d1:b4:2d:cb:98:85:09:4a:a9:ac:c9:64:94:
8a:24:93:37:6d:f1:c9:c6:73:f6:d8:8b:48:c1:02:
40:c6:bf:a3:df:2b:d1:36:4f:28:ea:dc:06:45:12:
18:2b:d3:8d:b0:94:e2:b5:95:5d:f1:a1:ff:fa:03:
ab:32:87:be:cd:c4:77:a9:12:58:78:96:f8:b6:84:
35:c5:cd:78:6a:52:fc:1d:c3:d8:f8:11:9b:f0:0f:
80:9a:08:ee:6e:c2:78:bf:90:dc:e4:51:49:64:b2:
74:72:55:d9:32:20:58:e0:04:ca:bb:2d:f2:66:12:
cc:c7:76:93:8d:65:03:01:33:b8:33:94:3c:14:8b:
5d:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:3B:8B:25:A2:B8:AC:17:77:53:94:1E:EA:90:78:4A:D9:1D:0D:F5
X509v3 Authority Key Identifier:
keyid:66:30:C7:84:08:46:F2:F6:90:97:54:F1:34:14:66:CD:AF:EA:2F:D4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36F0133/5041A708E58611ECAFC22A87F1222468/ZjDHhAhG8vaQl1TxNBRmza_qL9Q.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/ZjDHhAhG8vaQl1TxNBRmza_qL9Q.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36F0133/5041A708E58611ECAFC22A87F1222468/5B2913E4E58711EC8ACE468AF1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.216.118.0/24
Signature Algorithm: sha256WithRSAEncryption
69:92:cd:6d:f8:a2:e6:aa:35:56:b5:46:3f:b0:57:19:5f:e2:
66:59:a4:e3:7b:3d:f5:a5:cb:f2:95:ec:4c:09:43:6b:f0:41:
6d:2b:a3:72:6c:ce:c7:0d:d5:be:60:46:d7:7a:51:6f:b5:d3:
6c:fb:69:e1:7f:e9:40:24:18:13:89:83:04:f9:e8:8b:82:35:
7a:05:34:aa:2d:a2:4a:c1:08:f7:f7:8e:d9:d6:f4:3a:15:8d:
f1:d6:59:2f:9e:31:ca:3d:83:a7:56:f9:77:7c:c4:6d:c2:3a:
9b:93:34:05:d9:e5:f4:a1:47:90:30:28:bb:fe:57:11:31:84:
fa:e5:98:41:cd:52:bc:f2:bd:a8:a0:70:9d:9a:62:46:6b:99:
b2:c2:31:2e:66:e6:97:26:16:fd:d7:61:12:9e:62:b4:54:ed:
fb:1d:fd:90:1d:22:92:11:33:bf:31:73:ef:0b:09:0a:23:b2:
9d:a4:67:87:cb:c1:5e:f4:23:cf:c2:be:0b:53:70:d8:bd:5a:
06:d1:00:b8:1a:f8:43:3e:ce:e5:ad:78:c7:ef:f8:0b:b3:5c:
d6:13:f2:10:9d:75:81:46:46:3c:55:6d:7a:ed:18:98:8a:9d:
01:ce:2b:b9:95:01:ae:57:c8:ed:82:4a:df:9e:78:66:46:3d:
96:b4:a8:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 18 03:49:27 2024 by rpki-client on console-fra.rpki-client.org