Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36232DE/EDEE9450D2EF11EDA5921BB9F1222468/26D0B63085A111EFAD5977A5762E951A.roa
File: 26D0B63085A111EFAD5977A5762E951A.roa (raw, json)
Hash identifier: 57vzkme8UhFktnIkiygpy4koYJBUac3XwakhuBMlZEM=
Subject key identifier: 4B:7A:A0:BC:76:F1:A3:C9:8B:02:EA:3E:84:14:45:F6:B4:B0:37:B3
Certificate issuer: /CN=F36232DEAF/serialNumber=1080ACBECDCA1604B666C08B90BDDBEE585D2CF9
Certificate serial: 0247
Authority key identifier: 10:80:AC:BE:CD:CA:16:04:B6:66:C0:8B:90:BD:DB:EE:58:5D:2C:F9
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/EICsvs3KFgS2ZsCLkL3b7lhdLPk.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36232DE/EDEE9450D2EF11EDA5921BB9F1222468/26D0B63085A111EFAD5977A5762E951A.roa
Signing time: Tue 08 Oct 2024 18:14:26 +0000
ROA not before: Tue 08 Oct 2024 18:14:22 +0000
ROA not after: Thu 08 Oct 2026 18:14:22 +0000
asID: 328539
IP address blocks: 102.209.64.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36232DE/EDEE9450D2EF11EDA5921BB9F1222468/EICsvs3KFgS2ZsCLkL3b7lhdLPk.crl
rsync://rpki.afrinic.net/repository/member_repository/F36232DE/EDEE9450D2EF11EDA5921BB9F1222468/EICsvs3KFgS2ZsCLkL3b7lhdLPk.mft
rsync://rpki.afrinic.net/repository/afrinic/EICsvs3KFgS2ZsCLkL3b7lhdLPk.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 583 (0x247)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36232DEAF/serialNumber=1080ACBECDCA1604B666C08B90BDDBEE585D2CF9
Validity
Not Before: Oct 8 18:14:22 2024 GMT
Not After : Oct 8 18:14:22 2026 GMT
Subject: CN=67057682-f840
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:81:ed:f0:83:c2:12:1a:c5:80:27:26:ae:22:
dd:87:18:1c:18:e6:9b:e0:05:31:ea:d7:9d:8c:21:
d9:8f:a6:2a:4b:d1:3d:cb:4e:34:db:43:dc:62:1a:
ac:a0:a9:ac:bd:87:fa:af:c4:e5:ee:9c:8d:c8:04:
30:40:97:63:6c:e6:06:4b:af:93:7c:e7:9f:c9:3e:
e0:71:25:87:a7:12:1c:84:22:f2:2e:b1:9e:0a:0f:
c0:ac:d8:69:60:d4:0f:9e:37:b1:0f:5d:a5:22:ee:
7e:d2:cb:26:84:73:f7:f1:bf:e3:66:83:77:2b:3c:
67:32:76:c2:e9:c2:90:1d:c6:5a:25:44:74:18:c1:
4c:bc:15:01:35:c7:91:8d:a8:46:3b:40:96:0d:c3:
02:e3:c7:de:28:f0:bb:5b:77:e6:aa:f2:13:14:2d:
0d:12:41:05:ba:d3:67:0c:dd:e4:a4:36:33:a6:b7:
02:77:3e:b4:69:37:9f:89:a8:07:c8:fe:80:53:24:
58:47:71:04:0c:2c:0b:b0:94:58:e6:0b:7d:83:d1:
6c:e1:f1:f3:a8:2d:1d:21:81:40:dc:85:d9:1b:71:
64:d7:02:58:d3:99:3c:3d:7b:69:81:24:c9:fd:b8:
c3:9a:0d:06:6b:53:83:dd:02:a4:92:68:d6:ba:44:
60:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:7A:A0:BC:76:F1:A3:C9:8B:02:EA:3E:84:14:45:F6:B4:B0:37:B3
X509v3 Authority Key Identifier:
keyid:10:80:AC:BE:CD:CA:16:04:B6:66:C0:8B:90:BD:DB:EE:58:5D:2C:F9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36232DE/EDEE9450D2EF11EDA5921BB9F1222468/EICsvs3KFgS2ZsCLkL3b7lhdLPk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/EICsvs3KFgS2ZsCLkL3b7lhdLPk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36232DE/EDEE9450D2EF11EDA5921BB9F1222468/26D0B63085A111EFAD5977A5762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.209.64.0/22
Signature Algorithm: sha256WithRSAEncryption
03:24:a4:f0:1b:38:eb:ee:08:33:b1:a3:45:16:e0:be:d6:31:
fb:b0:7c:4c:38:c7:85:6d:64:3a:11:d8:65:48:33:d9:4d:ae:
1f:af:00:d8:65:42:1a:71:a7:04:80:ff:47:f8:f5:4d:54:09:
1c:c7:62:e9:a2:c7:64:38:24:46:84:51:5b:22:78:08:ba:e3:
62:48:a4:45:0e:dd:6c:1e:20:1c:62:9d:07:12:31:cd:6e:36:
10:f8:7b:27:79:45:95:78:0b:e1:0e:72:12:0c:54:2b:07:bb:
61:19:33:b1:8b:a1:14:17:29:51:8c:57:1c:5a:a7:f4:10:33:
c2:2c:9b:96:ac:aa:13:82:c8:b6:7a:14:8f:f1:83:4a:ca:81:
e3:fb:4d:60:2f:7d:20:9f:f7:96:1a:4c:26:ee:f7:f1:b2:d9:
59:3d:f8:fb:a0:a1:a4:3a:69:da:01:70:54:b7:3e:a3:be:3d:
ea:11:7c:df:9d:fe:a0:a1:02:9a:26:87:da:06:f3:ec:bd:b1:
c5:4e:da:b2:39:0c:0d:be:d1:fc:be:72:56:ce:50:3a:23:c1:
4c:5c:4f:12:34:47:ac:90:fc:6f:4a:21:ea:b7:ff:47:70:62:
39:19:82:ae:82:7e:1d:04:60:90:d8:7b:00:24:ac:f2:5a:cf:
a5:33:27:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 03:52:52 2024 by rpki-client on console-fra.rpki-client.org