Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F361E497/708176AAF93211EC88DB648CF1222468/08D750B8FB9111EC80F40194F1222468.roa
File: 08D750B8FB9111EC80F40194F1222468.roa (raw, json)
Hash identifier: Nh4OvBKp1qS4BddvATEM7GauwQ1rZ+sG7Y/Z75HPcSg=
Subject key identifier: 6A:02:55:62:06:97:A7:C1:A2:09:A8:DA:AC:F7:15:F1:0A:E3:9A:14
Certificate issuer: /CN=F361E497AF/serialNumber=24F4E354DDDEC8913823B0F92407A534ABF3F982
Certificate serial: 05
Authority key identifier: 24:F4:E3:54:DD:DE:C8:91:38:23:B0:F9:24:07:A5:34:AB:F3:F9:82
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JPTjVN3eyJE4I7D5JAelNKvz-YI.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F361E497/708176AAF93211EC88DB648CF1222468/08D750B8FB9111EC80F40194F1222468.roa
Signing time: Mon 04 Jul 2022 12:01:28 +0000
ROA not before: Mon 04 Jul 2022 12:01:22 +0000
ROA not after: Wed 31 Jul 2030 12:01:22 +0000
asID: 329084
IP address blocks: 102.215.152.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F361E497/708176AAF93211EC88DB648CF1222468/JPTjVN3eyJE4I7D5JAelNKvz-YI.crl
rsync://rpki.afrinic.net/repository/member_repository/F361E497/708176AAF93211EC88DB648CF1222468/JPTjVN3eyJE4I7D5JAelNKvz-YI.mft
rsync://rpki.afrinic.net/repository/afrinic/JPTjVN3eyJE4I7D5JAelNKvz-YI.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5 (0x5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F361E497AF/serialNumber=24F4E354DDDEC8913823B0F92407A534ABF3F982
Validity
Not Before: Jul 4 12:01:22 2022 GMT
Not After : Jul 31 12:01:22 2030 GMT
Subject: CN=62c2d698-d043
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:ce:fd:ab:fd:30:57:92:51:59:d7:80:89:40:
d9:db:5c:2b:4d:09:7c:3a:57:4f:b6:56:64:93:76:
61:03:25:67:ba:c5:4f:6a:3e:25:5b:8d:2c:28:2a:
e4:94:37:fb:f8:c7:b6:86:d2:0b:f5:cc:e4:e1:9b:
d9:61:ca:8e:88:eb:2e:74:ff:90:5a:2c:7e:86:a6:
2a:dd:ac:bc:1d:cf:0f:51:d6:0d:87:1f:6f:b9:2e:
4f:ca:5f:6f:b8:84:5f:6e:ff:a6:8b:59:50:c7:8d:
66:00:14:f9:7b:2e:aa:d0:8d:1a:06:88:ce:80:35:
87:d2:10:26:ad:0a:1c:be:f5:f9:55:17:16:28:3f:
88:f2:46:50:76:57:b8:19:84:61:6c:85:f8:bc:e2:
7e:2c:a7:4f:84:e5:ad:e6:99:e3:cc:0a:2d:2a:ac:
bb:cc:68:13:4c:6e:24:3a:99:90:89:4e:d6:d8:6a:
12:5b:64:ae:74:a1:dd:5d:35:85:a1:84:06:d5:ea:
fd:77:bb:92:22:52:9a:41:74:11:18:33:c7:2a:2e:
ad:bd:1d:fa:03:7d:2a:66:2b:b1:46:44:74:01:4f:
c8:3c:7a:95:11:d6:9d:76:ff:e2:e1:65:b1:0b:fb:
58:03:0d:5c:96:6a:92:60:97:3c:25:ba:00:1c:60:
30:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:02:55:62:06:97:A7:C1:A2:09:A8:DA:AC:F7:15:F1:0A:E3:9A:14
X509v3 Authority Key Identifier:
keyid:24:F4:E3:54:DD:DE:C8:91:38:23:B0:F9:24:07:A5:34:AB:F3:F9:82
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F361E497/708176AAF93211EC88DB648CF1222468/JPTjVN3eyJE4I7D5JAelNKvz-YI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JPTjVN3eyJE4I7D5JAelNKvz-YI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F361E497/708176AAF93211EC88DB648CF1222468/08D750B8FB9111EC80F40194F1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.215.152.0/24
Signature Algorithm: sha256WithRSAEncryption
08:ee:5f:6b:82:99:ed:b5:8b:70:99:59:8c:25:8a:7c:55:20:
2e:ad:7f:08:5c:9a:03:58:d0:76:ac:89:6a:29:40:de:17:95:
44:f7:22:42:51:9e:24:3c:2b:fc:1f:d1:e4:35:aa:f6:0b:1e:
70:0e:a5:ad:89:3b:f6:06:13:a9:bf:b7:e0:3b:42:10:99:d1:
bd:50:c3:56:93:60:8d:9f:b3:fe:c6:ad:25:c7:62:3f:d4:be:
8a:7b:65:3d:09:c0:10:28:a1:6a:c5:41:26:d4:39:c1:12:59:
67:b6:3f:15:1d:61:2f:f0:7d:9f:65:c8:db:7c:16:3d:fe:c3:
ff:b1:2c:38:8d:40:7b:31:e2:e3:75:16:ae:85:8d:f1:94:9f:
0a:f2:a7:3b:81:25:fd:91:76:7f:6c:c2:0f:8c:24:81:0b:ed:
d8:f6:94:e9:7b:7c:58:09:22:17:d1:23:e5:b2:52:93:e5:b2:
76:9a:ba:18:36:29:8f:0f:96:c8:fa:1a:94:ad:b6:14:88:66:
a7:ca:b9:8b:45:cf:c5:24:e9:f0:b0:60:70:81:e1:4f:35:9d:
41:28:c8:d7:0e:b9:74:5a:f5:c3:67:e2:7f:ed:e8:ea:97:da:
ab:c7:37:1c:ec:ff:3d:4c:04:23:42:d1:3d:cd:8d:51:0a:c2:
9d:01:23:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:03:31 2024 by rpki-client on console-ams.rpki-client.org