Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F361153A/80C7DFF806B211ED9B0617E9F1222468/23856708386E11EF995BECA7762E951A.roa
File: 23856708386E11EF995BECA7762E951A.roa (raw, json)
Hash identifier: FIO2lhhCB7uaoW8hHqlVZE9HJQhcLZ9RTHnddvwwt7Y=
Subject key identifier: 40:AC:3F:F7:26:ED:D4:7F:60:EF:D6:05:E2:4E:9F:C8:C7:27:E8:6A
Certificate issuer: /CN=F361153AAF/serialNumber=17D5DB614BCBD76DAA9FF1A9315915C47F897BF3
Certificate serial: 02EC
Authority key identifier: 17:D5:DB:61:4B:CB:D7:6D:AA:9F:F1:A9:31:59:15:C4:7F:89:7B:F3
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/F9XbYUvL122qn_GpMVkVxH-Je_M.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F361153A/80C7DFF806B211ED9B0617E9F1222468/23856708386E11EF995BECA7762E951A.roa
Signing time: Tue 02 Jul 2024 12:25:17 +0000
ROA not before: Tue 02 Jul 2024 12:25:13 +0000
ROA not after: Wed 31 Dec 2025 12:25:13 +0000
asID: 328857
IP address blocks: 102.220.247.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F361153A/80C7DFF806B211ED9B0617E9F1222468/F9XbYUvL122qn_GpMVkVxH-Je_M.crl
rsync://rpki.afrinic.net/repository/member_repository/F361153A/80C7DFF806B211ED9B0617E9F1222468/F9XbYUvL122qn_GpMVkVxH-Je_M.mft
rsync://rpki.afrinic.net/repository/afrinic/F9XbYUvL122qn_GpMVkVxH-Je_M.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 748 (0x2ec)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F361153AAF/serialNumber=17D5DB614BCBD76DAA9FF1A9315915C47F897BF3
Validity
Not Before: Jul 2 12:25:13 2024 GMT
Not After : Dec 31 12:25:13 2025 GMT
Subject: CN=6683f1ad-4301
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:cb:77:b7:34:37:4f:b7:bd:ba:c1:3b:c9:ab:
d7:f4:6f:ae:cd:ac:64:9f:94:57:da:c5:8d:7f:6c:
e5:d2:ad:43:32:09:23:fa:cc:09:5c:c5:31:ba:da:
c6:59:d4:a7:e0:02:55:cd:a2:e0:d8:81:ee:8d:72:
a0:f0:34:f7:1e:c9:45:67:3d:09:8c:21:d8:43:d5:
a7:25:50:2b:57:ac:e9:b6:ca:55:a8:2f:43:e4:88:
28:f2:d5:b6:ca:13:af:c0:3c:89:8c:1a:fb:68:42:
fd:6b:be:0c:c9:b6:54:69:85:25:f5:8e:22:85:9a:
19:0f:3d:9b:d3:78:51:c9:19:ab:b1:a4:cc:d1:b9:
9f:78:a9:64:0d:b7:af:ab:1a:b6:d1:65:cd:1f:e5:
34:c7:ff:ec:62:67:12:e4:8e:af:37:96:8d:43:be:
d3:f4:dd:20:e1:c6:0f:10:77:df:5c:70:17:06:56:
fc:97:1a:98:89:85:2e:1f:4b:60:b2:4d:55:a0:51:
a1:af:e3:f0:d3:57:b1:e8:6e:72:1b:3a:4a:9d:13:
c6:0b:3d:81:9a:38:6f:df:d3:10:fb:3f:0b:9c:8a:
ea:54:9b:b9:db:c8:48:4f:8d:3a:e6:d9:66:4a:e4:
71:b4:53:6e:c6:33:7a:bc:3b:7e:1d:d4:9c:21:8b:
a7:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:AC:3F:F7:26:ED:D4:7F:60:EF:D6:05:E2:4E:9F:C8:C7:27:E8:6A
X509v3 Authority Key Identifier:
keyid:17:D5:DB:61:4B:CB:D7:6D:AA:9F:F1:A9:31:59:15:C4:7F:89:7B:F3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F361153A/80C7DFF806B211ED9B0617E9F1222468/F9XbYUvL122qn_GpMVkVxH-Je_M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/F9XbYUvL122qn_GpMVkVxH-Je_M.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F361153A/80C7DFF806B211ED9B0617E9F1222468/23856708386E11EF995BECA7762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.220.247.0/24
Signature Algorithm: sha256WithRSAEncryption
e9:84:7b:3b:97:da:a4:17:e8:a6:fc:9b:27:25:7b:fd:99:b2:
ba:d2:0d:be:21:43:18:e7:c1:61:68:6d:34:1e:47:80:11:e9:
88:58:d5:19:15:e3:87:6b:37:50:d2:66:3a:2b:67:a1:6a:c1:
03:94:57:43:1e:17:bf:fd:54:5d:9d:87:0d:a6:25:62:f8:0a:
ec:7f:6c:fc:e6:b3:84:63:de:3e:f0:06:96:4f:a6:b3:5b:e7:
ad:ca:a4:98:cb:e4:d2:c3:b5:ff:3b:18:9a:5e:b8:c4:9d:49:
ea:2d:8e:f8:79:99:74:03:ea:cc:ce:93:7f:b2:8d:66:80:91:
07:5d:bb:14:9e:45:54:6e:af:0c:f7:6a:8a:4e:f9:34:e0:fc:
48:da:ae:61:98:43:66:fc:f3:e7:fe:7b:83:f1:7d:98:f4:6e:
0f:66:d0:21:88:5e:c4:17:ac:2d:4b:bd:b5:89:00:34:8e:cc:
8f:3e:fb:f4:25:29:43:e3:d5:56:5d:5d:19:39:59:81:88:1f:
69:cc:6f:3c:05:bf:8d:8d:95:7a:73:97:e3:44:f4:a5:54:73:
20:c8:4b:30:ef:e1:41:c8:28:26:b7:a7:b8:9e:da:6e:2a:57:
db:85:ac:03:f2:eb:3a:73:3f:5d:77:aa:3b:11:07:4b:ec:2a:
50:3e:f2:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 03:52:52 2024 by rpki-client on console-fra.rpki-client.org