Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36FE19E/AB7E78BE48DF11EDA761B29CF1222468/61F3ED46A71011EFA4F58993762E951A.roa
File: 61F3ED46A71011EFA4F58993762E951A.roa (raw, json)
Hash identifier: S/a4NOGDMCYqavfy2n6nHPuJWnA8uLXKDGrhZokqBOA=
Subject key identifier: 58:35:9A:D4:1E:E1:9D:92:AC:DA:61:16:29:7D:46:C0:73:7D:9F:A9
Certificate issuer: /CN=F36FE19EAF/serialNumber=C78CDC3B5D4B13675CB48AD3B63BE01EC5A807F8
Certificate serial: 0342
Authority key identifier: C7:8C:DC:3B:5D:4B:13:67:5C:B4:8A:D3:B6:3B:E0:1E:C5:A8:07:F8
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/x4zcO11LE2dctIrTtjvgHsWoB_g.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36FE19E/AB7E78BE48DF11EDA761B29CF1222468/61F3ED46A71011EFA4F58993762E951A.roa
Signing time: Wed 20 Nov 2024 07:23:48 +0000
ROA not before: Wed 20 Nov 2024 07:23:43 +0000
ROA not after: Sun 31 Dec 2034 07:23:43 +0000
asID: 328977
IP address blocks: 102.207.168.0/22 maxlen: 24
2c0f:6300::/32 maxlen: 56
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36FE19E/AB7E78BE48DF11EDA761B29CF1222468/x4zcO11LE2dctIrTtjvgHsWoB_g.crl
rsync://rpki.afrinic.net/repository/member_repository/F36FE19E/AB7E78BE48DF11EDA761B29CF1222468/x4zcO11LE2dctIrTtjvgHsWoB_g.mft
rsync://rpki.afrinic.net/repository/afrinic/x4zcO11LE2dctIrTtjvgHsWoB_g.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 834 (0x342)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36FE19EAF/serialNumber=C78CDC3B5D4B13675CB48AD3B63BE01EC5A807F8
Validity
Not Before: Nov 20 07:23:43 2024 GMT
Not After : Dec 31 07:23:43 2034 GMT
Subject: CN=673d8e84-e519
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:3d:10:02:4a:c0:8b:da:dd:f5:38:01:08:7c:
9d:19:75:d5:02:e7:45:ed:d6:4e:7f:90:75:ef:64:
76:39:fb:2a:a5:d5:56:04:6c:a0:bf:f6:fb:10:f8:
66:15:f9:c0:1a:95:50:b7:56:59:9b:85:aa:46:25:
e9:fe:5b:3d:0f:1d:d6:61:05:61:23:dd:23:2c:52:
92:1d:91:57:1e:ef:15:6d:66:b5:b0:86:d4:62:26:
ff:15:bb:c5:7a:ff:b7:04:f4:24:64:5d:b0:47:66:
e6:53:ee:88:4d:0f:91:3d:89:35:24:b2:95:f7:eb:
81:18:57:22:ad:aa:83:a9:56:2a:bd:83:fd:a8:bf:
2b:37:28:a8:0c:db:b2:7c:14:bb:01:a3:80:ca:24:
3d:b9:2d:8e:d4:fa:45:5b:35:a1:3f:c5:2c:66:b6:
69:31:ee:6f:b5:a1:84:ed:d4:9f:84:35:c5:e0:02:
b9:95:82:af:32:ed:df:e5:1b:bc:05:24:67:5f:d9:
f3:fe:e6:1f:a9:e7:6b:25:47:65:88:dd:92:02:b1:
1e:17:3e:45:67:69:80:f3:51:ea:62:36:e0:3e:38:
e5:4b:4c:8b:32:60:ce:86:8e:85:85:5b:0d:56:4e:
86:eb:43:81:41:cd:f8:58:91:11:37:ad:fa:db:71:
2f:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:35:9A:D4:1E:E1:9D:92:AC:DA:61:16:29:7D:46:C0:73:7D:9F:A9
X509v3 Authority Key Identifier:
keyid:C7:8C:DC:3B:5D:4B:13:67:5C:B4:8A:D3:B6:3B:E0:1E:C5:A8:07:F8
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36FE19E/AB7E78BE48DF11EDA761B29CF1222468/x4zcO11LE2dctIrTtjvgHsWoB_g.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/x4zcO11LE2dctIrTtjvgHsWoB_g.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36FE19E/AB7E78BE48DF11EDA761B29CF1222468/61F3ED46A71011EFA4F58993762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.207.168.0/22
IPv6:
2c0f:6300::/32
Signature Algorithm: sha256WithRSAEncryption
4f:22:d6:ec:b4:b6:f7:59:d0:95:7f:2f:74:03:18:1e:cf:a1:
d9:23:ea:ab:c7:ea:be:5f:38:48:d2:ea:e6:cd:12:de:13:aa:
5f:f8:c0:62:58:1d:ea:f1:89:45:e8:0e:66:48:2a:0c:30:bc:
80:c7:80:2c:61:a6:fa:47:8a:04:4e:33:d9:a7:ea:35:8a:29:
24:2c:e3:7d:59:e9:dc:87:6c:dc:1b:c4:13:f6:33:93:1e:c0:
d8:2f:7a:51:6e:cd:1f:63:35:17:90:a9:4d:d2:62:6e:18:8d:
7e:8a:d0:75:17:84:bb:88:f7:f5:06:a7:5d:b5:a5:6a:4d:81:
21:c0:6d:05:7c:fc:fa:73:d0:3c:c6:14:ee:61:22:b9:7b:b5:
91:3b:65:4d:00:14:a0:ac:61:21:2d:1f:e6:4a:57:90:5c:12:
22:1b:73:68:c3:94:8b:fa:79:ba:ac:da:39:50:46:a7:61:65:
1f:1f:8e:2c:f8:6c:e9:7e:9b:a0:f4:e8:fe:84:91:de:3b:22:
f6:c5:15:a6:70:36:4f:3f:9f:ee:83:a3:97:67:e6:4e:a1:e6:
65:2a:27:d7:49:44:ba:b1:0b:ee:03:f8:e5:4e:b9:dd:b2:79:
af:d1:7f:51:e3:9c:cc:89:af:67:9b:88:f8:8f:a3:cc:3c:83:
e8:a8:21:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 03:53:01 2024 by rpki-client on console-fra.rpki-client.org