Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36232DE/EDEE9450D2EF11EDA5921BB9F1222468/A022F938E6DE11EE8BB93D89775412E6.roa
File: A022F938E6DE11EE8BB93D89775412E6.roa (raw, json)
Hash identifier: b5ixpkMPoYMmCdzxpHP+lWQSSc74srmP1IqBwwmh/kw=
Subject key identifier: 2B:86:5B:7B:B1:6E:E9:D5:43:67:0B:D4:25:D1:D6:B1:CA:38:85:B4
Certificate issuer: /CN=F36232DEAF/serialNumber=1080ACBECDCA1604B666C08B90BDDBEE585D2CF9
Certificate serial: 0173
Authority key identifier: 10:80:AC:BE:CD:CA:16:04:B6:66:C0:8B:90:BD:DB:EE:58:5D:2C:F9
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/EICsvs3KFgS2ZsCLkL3b7lhdLPk.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36232DE/EDEE9450D2EF11EDA5921BB9F1222468/A022F938E6DE11EE8BB93D89775412E6.roa
Signing time: Wed 20 Mar 2024 17:23:54 +0000
ROA not before: Wed 20 Mar 2024 17:23:50 +0000
ROA not after: Fri 20 Mar 2026 17:23:50 +0000
asID: 328539
IP address blocks: 102.209.252.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36232DE/EDEE9450D2EF11EDA5921BB9F1222468/EICsvs3KFgS2ZsCLkL3b7lhdLPk.crl
rsync://rpki.afrinic.net/repository/member_repository/F36232DE/EDEE9450D2EF11EDA5921BB9F1222468/EICsvs3KFgS2ZsCLkL3b7lhdLPk.mft
rsync://rpki.afrinic.net/repository/afrinic/EICsvs3KFgS2ZsCLkL3b7lhdLPk.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 371 (0x173)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36232DEAF/serialNumber=1080ACBECDCA1604B666C08B90BDDBEE585D2CF9
Validity
Not Before: Mar 20 17:23:50 2024 GMT
Not After : Mar 20 17:23:50 2026 GMT
Subject: CN=65fb1baa-a112
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:dd:76:fc:64:f0:a2:ca:82:d5:f4:79:24:da:
a5:bd:b7:7e:11:eb:3e:d9:f4:48:2f:29:26:3b:fb:
a3:5b:7a:db:8d:a2:c2:24:6a:a3:c8:f5:5b:b9:c0:
d5:71:ec:fd:78:db:71:d1:ed:47:4f:3d:47:4b:4c:
28:e0:a3:ef:38:16:3a:f3:fa:0c:d4:a6:84:3d:ec:
dd:30:92:6b:d6:22:5e:ac:54:5b:ca:09:d9:11:d6:
8c:4c:f7:1b:57:b5:af:15:2b:2c:cb:11:1a:f6:96:
2b:54:09:8a:2b:96:22:4e:9b:a4:37:bf:61:29:1a:
08:8d:e0:dd:9a:59:ed:60:80:3b:83:d5:a5:96:62:
68:b8:e3:87:85:fc:aa:cc:26:60:63:c9:be:ab:e6:
56:bc:10:97:8f:53:38:76:f1:1b:6f:33:93:a9:79:
56:47:ef:3d:f6:02:27:bb:f1:9a:f0:c7:01:e9:27:
4b:2d:bf:81:1f:a1:34:dc:f6:01:51:51:56:29:bd:
d9:50:f8:61:b4:f8:8d:47:e6:74:3c:d9:b8:0f:be:
b5:3e:29:3d:e6:78:86:fd:58:9b:dd:38:4a:8f:7a:
d9:15:bb:07:8b:69:28:2d:15:16:8d:5f:54:a1:cf:
f7:48:4d:f0:42:33:17:7b:74:dc:4a:e5:35:61:12:
5c:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:86:5B:7B:B1:6E:E9:D5:43:67:0B:D4:25:D1:D6:B1:CA:38:85:B4
X509v3 Authority Key Identifier:
keyid:10:80:AC:BE:CD:CA:16:04:B6:66:C0:8B:90:BD:DB:EE:58:5D:2C:F9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36232DE/EDEE9450D2EF11EDA5921BB9F1222468/EICsvs3KFgS2ZsCLkL3b7lhdLPk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/EICsvs3KFgS2ZsCLkL3b7lhdLPk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36232DE/EDEE9450D2EF11EDA5921BB9F1222468/A022F938E6DE11EE8BB93D89775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.209.252.0/22
Signature Algorithm: sha256WithRSAEncryption
0e:7d:93:18:97:c8:fb:75:18:e0:fb:9d:e5:9b:3a:42:71:07:
7e:51:96:c5:fe:e1:d7:16:35:d5:46:74:54:36:4c:9e:44:67:
cf:fd:0e:27:ab:98:85:51:f6:2a:cf:6c:12:b4:40:b0:cb:93:
19:fa:31:e3:23:71:45:73:29:c7:a5:53:c7:d0:e4:19:ff:0e:
ee:a4:2b:40:a2:3d:4d:35:96:80:ee:5e:7f:f6:35:b4:3d:c3:
46:71:d6:3c:0c:e2:ad:28:bc:0b:bf:cb:db:cb:e4:90:e4:40:
40:26:38:31:90:11:b9:d2:e7:18:e2:f4:b9:11:af:37:ea:b2:
29:06:e6:75:03:82:b6:29:8d:f7:31:ee:14:3d:5f:7c:3b:c6:
91:68:ae:f0:db:77:7f:bc:46:61:fd:c8:73:eb:96:7b:4e:9e:
99:1a:d3:7b:2f:22:a5:2a:95:15:45:25:65:0f:d5:49:e5:8f:
1e:be:32:67:36:8d:ea:7e:0a:6e:c6:4f:f2:ac:dd:35:fc:e8:
1e:ac:10:e8:e6:1e:6a:02:ca:08:a6:18:ec:ff:95:0b:ba:f2:
f9:99:77:49:9a:d3:8e:0d:f4:2e:0c:40:ba:8f:d1:5a:66:f8:
75:46:1b:9c:bf:04:45:b3:ab:3a:28:71:b8:51:b6:9c:4a:2d:
9f:35:34:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:03:31 2024 by rpki-client on console-ams.rpki-client.org