Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36FDBB4/F4E0DF141D8C11EFB9C5A8E47CDC24C2/5AE15E321D8E11EFB150AF207DDC24C2.roa
File: 5AE15E321D8E11EFB150AF207DDC24C2.roa (raw, json)
Hash identifier: 02fS43r1eNuS1EPFvyivvFwrFFekmWd3UmleeUTRe0g=
Subject key identifier: 25:8F:76:F0:FA:A5:EE:0F:7B:8D:C6:CB:AC:A8:63:A3:0B:C3:50:A4
Certificate issuer: /CN=F36FDBB4AF/serialNumber=6FAD282D48F319063642A2B9A803B6A6E01350B4
Certificate serial: 02
Authority key identifier: 6F:AD:28:2D:48:F3:19:06:36:42:A2:B9:A8:03:B6:A6:E0:13:50:B4
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/b60oLUjzGQY2QqK5qAO2puATULQ.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36FDBB4/F4E0DF141D8C11EFB9C5A8E47CDC24C2/5AE15E321D8E11EFB150AF207DDC24C2.roa
Signing time: Wed 29 May 2024 07:37:52 +0000
ROA not before: Wed 29 May 2024 07:37:49 +0000
ROA not after: Wed 31 May 2034 07:37:49 +0000
asID: 328551
IP address blocks: 102.64.76.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36FDBB4/F4E0DF141D8C11EFB9C5A8E47CDC24C2/b60oLUjzGQY2QqK5qAO2puATULQ.crl
rsync://rpki.afrinic.net/repository/member_repository/F36FDBB4/F4E0DF141D8C11EFB9C5A8E47CDC24C2/b60oLUjzGQY2QqK5qAO2puATULQ.mft
rsync://rpki.afrinic.net/repository/afrinic/b60oLUjzGQY2QqK5qAO2puATULQ.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 26 Oct 2024 00:05:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2 (0x2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36FDBB4AF/serialNumber=6FAD282D48F319063642A2B9A803B6A6E01350B4
Validity
Not Before: May 29 07:37:49 2024 GMT
Not After : May 31 07:37:49 2034 GMT
Subject: CN=6656db50-e1a6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:8a:dd:15:db:28:39:65:66:43:4e:6e:78:f0:
e6:e2:f4:ab:47:0f:9a:bd:d7:70:77:05:31:e1:d0:
e4:c5:ee:a4:ab:cd:1f:15:0f:34:3e:47:db:9f:44:
ba:ac:cc:7c:09:9e:a8:d9:11:91:88:a6:86:f0:7c:
5e:4d:9d:9e:14:95:1e:fa:91:6b:7b:b7:ec:f2:d4:
05:5c:6e:dc:4e:a1:e0:51:18:2c:13:ec:f9:a0:6e:
2a:50:f7:67:ca:74:20:d2:79:d2:a9:dc:cf:40:0e:
c0:ac:42:07:21:8e:42:fd:a7:28:4f:79:a5:7d:ee:
22:79:75:ff:a8:1a:34:9e:fd:14:9e:a2:5f:3b:9b:
c3:47:b5:e6:0d:fc:d4:33:d8:c4:25:56:fa:7a:67:
1d:fd:7d:08:c7:d0:07:e6:dc:a4:d8:aa:f9:f6:39:
64:42:6d:8a:aa:f4:bc:3a:23:19:45:de:d5:b8:26:
68:fe:81:77:76:f1:53:e6:d4:06:21:43:43:cb:20:
49:35:0a:e4:43:48:c3:39:08:08:5d:e3:b8:8e:47:
8c:8c:c6:06:bc:a6:8d:82:dc:e8:a3:43:8f:d8:5a:
7e:2b:f1:f8:65:3f:c8:4a:27:43:a0:1e:26:27:c4:
79:21:ba:2c:7f:db:34:0f:5a:33:a2:f8:d8:95:a3:
63:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:8F:76:F0:FA:A5:EE:0F:7B:8D:C6:CB:AC:A8:63:A3:0B:C3:50:A4
X509v3 Authority Key Identifier:
keyid:6F:AD:28:2D:48:F3:19:06:36:42:A2:B9:A8:03:B6:A6:E0:13:50:B4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36FDBB4/F4E0DF141D8C11EFB9C5A8E47CDC24C2/b60oLUjzGQY2QqK5qAO2puATULQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/b60oLUjzGQY2QqK5qAO2puATULQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36FDBB4/F4E0DF141D8C11EFB9C5A8E47CDC24C2/5AE15E321D8E11EFB150AF207DDC24C2.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.64.76.0/22
Signature Algorithm: sha256WithRSAEncryption
09:a9:0e:1d:e9:83:b8:ed:b7:2d:1b:02:86:0e:b5:a0:4a:49:
f1:ab:ad:6c:7a:fa:12:fe:d2:6d:18:4e:0e:76:f4:be:0e:a9:
0f:9e:ba:7e:d2:4b:7a:44:23:05:8b:11:a8:e2:ed:bd:09:31:
de:50:61:91:d6:8e:8c:fe:e1:ec:e3:1c:84:c5:b4:d6:ec:83:
67:03:f1:9c:6d:43:71:4e:e6:12:7c:bf:03:49:9e:e4:dc:8a:
63:1d:1d:f4:a9:2c:d8:38:12:c7:c8:e6:3d:b6:23:70:87:ab:
a8:6c:54:a7:b9:fd:eb:14:c6:2c:f5:6a:98:27:e5:64:f8:1b:
db:e1:a6:cf:3c:7d:f2:7b:76:f5:25:d7:2e:99:00:d2:ad:ab:
cb:ce:00:39:96:35:14:6f:e6:d9:7f:11:f1:b8:0a:37:c5:7c:
78:41:f0:98:61:ab:58:f0:b9:f0:ba:fa:9c:d2:df:ff:0c:00:
f5:30:8b:9f:88:45:8e:46:6c:72:c8:8d:f4:16:75:ac:c1:9d:
69:24:f6:32:9b:15:7f:63:59:35:2b:d6:da:37:7c:65:f3:0e:
bd:53:ab:67:65:c5:e0:0c:9f:02:4b:9e:b2:09:a5:1f:76:47:
f0:7a:39:29:d7:45:4a:f4:a7:e3:fa:81:53:0e:ac:e1:b0:c6:
9c:27:e4:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Oct 24 06:47:52 2024 by rpki-client on console-fra.rpki-client.org