Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36F8F86/43159886192911EFA70CC06E017001B1/0EB2B67C8FAE11EFB0C6F19A762E951A.roa
File: 0EB2B67C8FAE11EFB0C6F19A762E951A.roa (raw, json)
Hash identifier: dRhtvM/2t47z2JwA9sfqbVs7olYpopo1AghyJCkiJnU=
Subject key identifier: 6B:01:34:25:D4:C7:1B:C0:4B:C7:63:B1:9B:82:48:B3:8A:E9:33:07
Certificate issuer: /CN=F36F8F86AF/serialNumber=B1BA3D7C7D8ECD511FDA4BF0EC29F6A99B2C31BB
Certificate serial: A5
Authority key identifier: B1:BA:3D:7C:7D:8E:CD:51:1F:DA:4B:F0:EC:29:F6:A9:9B:2C:31:BB
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/sbo9fH2OzVEf2kvw7Cn2qZssMbs.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36F8F86/43159886192911EFA70CC06E017001B1/0EB2B67C8FAE11EFB0C6F19A762E951A.roa
Signing time: Mon 21 Oct 2024 13:12:01 +0000
ROA not before: Mon 21 Oct 2024 13:11:56 +0000
ROA not after: Wed 21 Oct 2026 13:11:56 +0000
asID: 37381
IP address blocks: 102.223.28.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36F8F86/43159886192911EFA70CC06E017001B1/sbo9fH2OzVEf2kvw7Cn2qZssMbs.crl
rsync://rpki.afrinic.net/repository/member_repository/F36F8F86/43159886192911EFA70CC06E017001B1/sbo9fH2OzVEf2kvw7Cn2qZssMbs.mft
rsync://rpki.afrinic.net/repository/afrinic/sbo9fH2OzVEf2kvw7Cn2qZssMbs.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 165 (0xa5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36F8F86AF/serialNumber=B1BA3D7C7D8ECD511FDA4BF0EC29F6A99B2C31BB
Validity
Not Before: Oct 21 13:11:56 2024 GMT
Not After : Oct 21 13:11:56 2026 GMT
Subject: CN=67165320-0ca4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:48:76:c9:73:de:68:0e:7d:43:79:9d:1f:68:
c1:e9:c9:47:59:c2:5b:67:b7:96:2b:f1:17:d3:14:
d2:6f:56:30:87:69:24:0c:b9:e6:b0:40:e4:e1:81:
be:c6:e4:d6:84:3b:bb:fd:47:ec:63:a6:3f:de:e6:
83:91:3e:36:41:72:65:fc:d9:ae:64:20:e6:bf:a8:
a2:f9:cb:9d:4c:8d:3f:29:81:f6:d7:d1:a8:87:c2:
05:0e:4d:74:9d:b9:e4:ac:ad:dd:3b:80:b7:8d:ad:
b7:7f:8e:b3:91:0b:a0:59:ae:87:6c:f6:c4:14:9d:
d4:06:82:f3:6d:eb:b3:9b:95:a3:26:13:49:63:37:
41:69:ce:37:7f:29:35:01:c4:a3:3a:6d:1f:52:de:
43:13:23:a3:65:c0:6c:aa:20:1f:14:a5:1c:2c:6e:
bc:b9:12:64:92:ab:84:4f:ae:7f:b0:48:91:91:34:
de:4a:cb:1b:a4:50:0f:3c:26:43:da:d2:a4:57:60:
8b:92:68:4c:d1:97:36:1a:52:4a:27:bc:e1:76:cb:
05:57:37:2c:4d:85:42:7d:20:cd:f0:d8:6f:62:fc:
f5:1c:12:7a:22:57:dd:dd:fe:86:a8:eb:10:36:a1:
31:07:2f:1c:d6:51:fb:9b:eb:dd:63:b7:50:c5:da:
8a:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:01:34:25:D4:C7:1B:C0:4B:C7:63:B1:9B:82:48:B3:8A:E9:33:07
X509v3 Authority Key Identifier:
keyid:B1:BA:3D:7C:7D:8E:CD:51:1F:DA:4B:F0:EC:29:F6:A9:9B:2C:31:BB
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36F8F86/43159886192911EFA70CC06E017001B1/sbo9fH2OzVEf2kvw7Cn2qZssMbs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/sbo9fH2OzVEf2kvw7Cn2qZssMbs.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36F8F86/43159886192911EFA70CC06E017001B1/0EB2B67C8FAE11EFB0C6F19A762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.223.28.0/22
Signature Algorithm: sha256WithRSAEncryption
94:9b:7f:77:a4:f9:3f:1c:cc:18:82:4f:98:72:e6:59:5f:e6:
17:cc:80:2d:02:25:f2:f2:a9:0c:77:6f:dd:02:58:1f:8b:b2:
51:3d:d2:f2:02:db:f1:6e:37:be:95:04:47:65:84:8e:46:1d:
7f:41:aa:a9:8d:82:ad:17:71:12:ba:f9:0e:a1:db:99:19:ef:
42:4b:95:30:4a:d6:2d:39:29:eb:ae:0c:b2:03:65:40:22:11:
a8:86:f4:f9:bf:35:06:27:ed:d4:22:c1:c6:f2:80:13:ed:27:
2b:8a:7e:6f:e9:bb:8e:e0:61:e7:a7:e4:15:c2:99:fe:27:40:
1c:06:eb:63:0e:2f:42:ad:2c:e3:09:33:dd:39:32:3e:6e:a4:
6e:5a:9a:98:b7:41:7c:50:81:2d:57:95:86:9d:46:8b:29:12:
aa:4e:8c:53:68:d1:30:a6:87:10:6e:e7:c2:fd:c3:0c:ca:28:
da:3c:a0:57:c5:7e:84:1c:c4:93:e8:17:18:ee:b5:08:87:cd:
9b:6f:dd:f1:49:ac:fc:6f:8f:dd:81:f8:7d:f9:77:d4:af:34:
b3:b2:e5:02:cb:f2:9e:a9:fd:fc:45:54:2c:8d:d6:a7:6e:93:
95:72:49:b0:b5:fc:c3:51:a3:22:f8:cd:e1:17:6d:e4:d9:85:
83:d6:4b:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:05:33 2024 by rpki-client on console-ams.rpki-client.org