Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36FC6C8/D37D2DA070E311EF84610147762E951A/0C63E27495B211EF9FD10B8A762E951A.roa
File: 0C63E27495B211EF9FD10B8A762E951A.roa (raw, json)
Hash identifier: vI6mLwXZMz1SmKyYzmc47RFnF9qZICmOLX7Q+ks+j20=
Subject key identifier: 70:6D:BF:AF:4F:DB:B7:08:9E:02:6D:80:2E:70:06:94:D9:A7:67:B7
Certificate issuer: /CN=F36FC6C8AF/serialNumber=2511BAD4078D4672ACF4324299218CE4855D039D
Certificate serial: 46
Authority key identifier: 25:11:BA:D4:07:8D:46:72:AC:F4:32:42:99:21:8C:E4:85:5D:03:9D
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JRG61AeNRnKs9DJCmSGM5IVdA50.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36FC6C8/D37D2DA070E311EF84610147762E951A/0C63E27495B211EF9FD10B8A762E951A.roa
Signing time: Tue 29 Oct 2024 04:55:42 +0000
ROA not before: Tue 29 Oct 2024 04:55:38 +0000
ROA not after: Sun 29 Oct 2034 04:55:38 +0000
asID: 37680
IP address blocks: 102.132.208.0/20 maxlen: 20
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36FC6C8/D37D2DA070E311EF84610147762E951A/JRG61AeNRnKs9DJCmSGM5IVdA50.crl
rsync://rpki.afrinic.net/repository/member_repository/F36FC6C8/D37D2DA070E311EF84610147762E951A/JRG61AeNRnKs9DJCmSGM5IVdA50.mft
rsync://rpki.afrinic.net/repository/afrinic/JRG61AeNRnKs9DJCmSGM5IVdA50.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 26 Nov 2024 00:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 70 (0x46)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36FC6C8AF/serialNumber=2511BAD4078D4672ACF4324299218CE4855D039D
Validity
Not Before: Oct 29 04:55:38 2024 GMT
Not After : Oct 29 04:55:38 2034 GMT
Subject: CN=67206ace-be08
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:1b:ff:2e:a3:79:2d:e0:a9:e2:5a:71:48:4a:
7b:3d:0b:0e:59:cc:1d:ab:29:9d:20:61:95:03:c9:
69:64:2a:e1:12:7c:59:67:ff:fe:ff:e7:52:31:c6:
c0:a8:10:cb:0c:88:22:6d:cb:ce:30:81:83:63:ae:
91:53:69:f8:44:34:60:cd:f4:cd:b3:cd:e1:e7:8a:
26:3a:f5:4e:25:30:77:fb:8c:a6:55:25:62:e9:74:
7d:ec:5e:bd:85:bc:92:fd:55:00:94:78:c2:1f:33:
d6:4a:f9:71:15:ee:91:db:8c:95:7d:b7:db:f9:ba:
64:a4:ec:33:41:e6:ea:77:7e:a3:f2:6d:33:8e:3c:
13:d8:58:31:cf:40:2b:d0:d9:20:e2:2b:e1:c9:44:
4e:d5:45:60:a1:d4:96:7c:84:0d:59:ba:0f:3d:32:
7c:75:47:fd:b9:99:c3:d2:1d:69:66:5e:f0:0c:52:
08:a5:21:29:fe:07:8d:45:ba:79:1b:d4:4a:ca:1c:
a3:a5:09:e8:25:83:e1:d6:bf:3f:d9:fa:f3:c3:ad:
32:f8:cb:d5:3c:59:d4:f2:ad:7e:3c:da:43:b2:67:
67:eb:66:f0:1d:48:8d:95:c9:49:3f:44:dd:d8:e5:
81:1e:18:21:d0:62:ed:19:0a:52:15:2c:d0:63:f5:
a7:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:6D:BF:AF:4F:DB:B7:08:9E:02:6D:80:2E:70:06:94:D9:A7:67:B7
X509v3 Authority Key Identifier:
keyid:25:11:BA:D4:07:8D:46:72:AC:F4:32:42:99:21:8C:E4:85:5D:03:9D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36FC6C8/D37D2DA070E311EF84610147762E951A/JRG61AeNRnKs9DJCmSGM5IVdA50.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JRG61AeNRnKs9DJCmSGM5IVdA50.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36FC6C8/D37D2DA070E311EF84610147762E951A/0C63E27495B211EF9FD10B8A762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.132.208.0/20
Signature Algorithm: sha256WithRSAEncryption
4f:ca:3b:4b:bd:c2:f5:71:aa:ad:9b:ce:79:ae:38:5f:09:11:
5e:bc:93:f7:e1:6e:ea:f3:a9:ca:86:0f:74:b4:e7:ae:a4:fa:
4c:01:8d:44:6f:b5:3d:94:34:ec:a9:5d:b3:03:f4:4c:61:0c:
70:92:b8:67:c5:ef:cc:d5:f7:7c:96:2e:28:65:d7:9d:65:3e:
be:b9:a7:4f:81:ac:60:a7:ea:4e:9c:13:77:af:bb:86:17:21:
e1:10:62:dc:d5:3f:d2:f0:ff:00:ad:1b:1a:7c:12:34:21:f4:
53:88:98:73:bd:13:e0:f8:96:b7:85:af:96:19:cc:2c:81:ca:
f4:22:58:be:f8:2c:dd:74:e8:c8:5c:9f:d0:6f:d9:6c:7c:a5:
21:86:55:dd:48:34:33:ae:18:00:4e:c1:80:a9:fd:49:25:97:
dd:f7:ee:68:e9:eb:b9:e4:f8:2b:e7:0e:90:47:86:54:00:15:
c7:57:c8:26:84:49:d5:fd:a4:4a:6e:49:37:95:87:5e:9c:f0:
a3:14:d6:9b:52:06:5c:52:e1:8b:40:a5:17:14:f0:3f:22:2c:
c1:7a:dd:fd:27:bf:cf:3a:4b:16:8d:08:74:f1:e5:5e:1c:43:
27:5d:9c:6d:b2:cb:d7:34:d6:73:ee:e0:d7:7e:f2:2e:d6:04:
f5:06:bf:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Nov 24 04:29:40 2024 by rpki-client on console-fra.rpki-client.org