Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36FF74C/709E8022289E11EF88799A067DDC24C2/6883EC322C8211EF82CEC0ED7CDC24C2.roa
File: 6883EC322C8211EF82CEC0ED7CDC24C2.roa (raw, json)
Hash identifier: Al+25UVZ/TGZulMqlsc3cCdFsOzq/5m8B34hb4F8eiM=
Subject key identifier: 25:BB:B0:B6:42:D3:11:ED:30:CB:8C:6B:58:58:41:F8:01:C1:F3:5D
Certificate issuer: /CN=F36FF74CAF/serialNumber=78F0A3D3BAC49A14884763D937D3CA1920953B15
Certificate serial: 13
Authority key identifier: 78:F0:A3:D3:BA:C4:9A:14:88:47:63:D9:37:D3:CA:19:20:95:3B:15
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/ePCj07rEmhSIR2PZN9PKGSCVOxU.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36FF74C/709E8022289E11EF88799A067DDC24C2/6883EC322C8211EF82CEC0ED7CDC24C2.roa
Signing time: Mon 17 Jun 2024 08:20:08 +0000
ROA not before: Mon 17 Jun 2024 08:20:05 +0000
ROA not after: Mon 03 Jun 2030 08:20:05 +0000
asID: 328503
IP address blocks: 102.67.32.0/20 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36FF74C/709E8022289E11EF88799A067DDC24C2/ePCj07rEmhSIR2PZN9PKGSCVOxU.crl
rsync://rpki.afrinic.net/repository/member_repository/F36FF74C/709E8022289E11EF88799A067DDC24C2/ePCj07rEmhSIR2PZN9PKGSCVOxU.mft
rsync://rpki.afrinic.net/repository/afrinic/ePCj07rEmhSIR2PZN9PKGSCVOxU.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 19 (0x13)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36FF74CAF/serialNumber=78F0A3D3BAC49A14884763D937D3CA1920953B15
Validity
Not Before: Jun 17 08:20:05 2024 GMT
Not After : Jun 3 08:20:05 2030 GMT
Subject: CN=666ff1b8-a62d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f4:79:49:d3:33:db:d0:35:32:cb:bb:b1:ca:b3:
cd:8f:a2:1c:23:6e:f6:e0:e6:76:08:aa:7e:0d:20:
33:86:06:32:8c:76:51:01:b7:8d:8a:b2:99:c9:4a:
6d:24:f9:85:e2:9e:25:20:e9:87:2b:06:d5:c1:64:
4f:78:fc:c4:ae:6f:89:8b:b6:c8:3b:df:54:32:3c:
4d:a8:c1:b1:69:d7:d5:3c:6e:77:b6:66:1c:3c:ae:
66:9f:85:fd:e3:6b:d8:27:da:48:17:ef:13:47:c0:
78:2f:9c:ae:bb:2f:28:1b:b0:a1:07:74:83:66:3b:
c8:26:67:e7:6f:a7:f1:f9:c2:9c:07:73:68:7f:67:
99:c5:32:f9:f0:0e:44:d2:c8:88:81:da:04:4f:06:
7a:ee:97:10:94:09:2b:69:b4:50:a0:5f:ee:07:94:
4a:1b:1b:ab:61:4f:25:b7:25:6a:b0:54:73:0d:3f:
fe:7c:a9:1c:b0:72:e8:ff:ba:99:d3:9c:71:3a:83:
ce:1d:a9:ed:eb:8b:c7:5c:62:50:73:3f:a4:ec:ce:
06:d1:50:d7:ee:69:23:d5:fa:34:d0:c2:b8:b6:35:
f7:27:15:3b:09:83:34:e3:fb:06:5c:88:1a:1f:92:
46:b0:36:d1:e2:fb:e9:f8:1d:95:4e:e8:c2:7e:b7:
67:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:BB:B0:B6:42:D3:11:ED:30:CB:8C:6B:58:58:41:F8:01:C1:F3:5D
X509v3 Authority Key Identifier:
keyid:78:F0:A3:D3:BA:C4:9A:14:88:47:63:D9:37:D3:CA:19:20:95:3B:15
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36FF74C/709E8022289E11EF88799A067DDC24C2/ePCj07rEmhSIR2PZN9PKGSCVOxU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/ePCj07rEmhSIR2PZN9PKGSCVOxU.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36FF74C/709E8022289E11EF88799A067DDC24C2/6883EC322C8211EF82CEC0ED7CDC24C2.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.67.32.0/20
Signature Algorithm: sha256WithRSAEncryption
24:63:75:3d:82:8d:bf:25:93:71:e2:cc:5e:bc:6b:fd:39:18:
f4:0f:43:52:66:7a:72:18:d3:c0:b5:71:62:10:ce:4f:ec:63:
c6:7f:3f:6d:3d:48:0c:5a:e9:30:8b:7e:d2:9f:2e:31:1c:c9:
35:4d:4d:c9:d8:c0:a0:78:6f:f8:d1:5d:f8:a7:69:ab:c4:12:
28:9e:64:4a:35:ef:f2:2f:17:15:82:6c:f9:f9:e4:29:52:1f:
e2:1c:a6:67:81:d5:d2:60:50:d7:f9:fe:6a:d0:a3:75:ee:34:
34:24:11:67:4d:06:6b:87:3d:ae:10:05:22:e9:d3:4c:a5:30:
2e:e2:2f:8d:fa:00:06:4e:6a:17:d1:7d:02:41:e7:ba:42:51:
43:a4:ed:24:b6:43:e3:17:0f:5f:f7:22:3a:fc:88:46:54:9a:
ad:12:9f:03:c7:61:07:49:af:bf:bf:38:75:53:6b:fe:22:80:
32:a1:66:f7:7c:69:a0:43:50:a5:e0:f0:9f:36:df:db:5f:29:
5b:3c:22:bc:7d:05:48:25:b9:45:28:6c:62:e3:46:1d:5e:54:
75:00:e1:66:cc:cc:69:f1:0f:07:26:1f:46:9c:12:ad:b3:f7:
24:c2:49:02:f6:5e:9a:f1:78:2a:89:16:69:4e:b2:26:25:fb:
b6:63:9d:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 03:53:01 2024 by rpki-client on console-fra.rpki-client.org