Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F362412E/3A239A207E3811EE854EE4394AD9E6FC/ED02D88AE81A11EE8623BCC5775412E6.roa
File: ED02D88AE81A11EE8623BCC5775412E6.roa (raw, json)
Hash identifier: mvHTVhODmwdELfP/e2cG297ECeboGj2BsOL9AUtxSak=
Subject key identifier: F2:67:BD:15:44:E6:18:7C:95:C3:F8:70:A3:5A:DC:C5:59:9A:56:99
Certificate issuer: /CN=F362412EAF/serialNumber=D628E4C96ABA9CFB124477867BBDF1A4435F0F5B
Certificate serial: 9B
Authority key identifier: D6:28:E4:C9:6A:BA:9C:FB:12:44:77:86:7B:BD:F1:A4:43:5F:0F:5B
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/1ijkyWq6nPsSRHeGe73xpENfD1s.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F362412E/3A239A207E3811EE854EE4394AD9E6FC/ED02D88AE81A11EE8623BCC5775412E6.roa
Signing time: Fri 22 Mar 2024 07:08:04 +0000
ROA not before: Fri 22 Mar 2024 07:08:01 +0000
ROA not after: Tue 22 Mar 2044 07:08:01 +0000
asID: 36962
IP address blocks: 102.210.160.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F362412E/3A239A207E3811EE854EE4394AD9E6FC/1ijkyWq6nPsSRHeGe73xpENfD1s.crl
rsync://rpki.afrinic.net/repository/member_repository/F362412E/3A239A207E3811EE854EE4394AD9E6FC/1ijkyWq6nPsSRHeGe73xpENfD1s.mft
rsync://rpki.afrinic.net/repository/afrinic/1ijkyWq6nPsSRHeGe73xpENfD1s.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 155 (0x9b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F362412EAF/serialNumber=D628E4C96ABA9CFB124477867BBDF1A4435F0F5B
Validity
Not Before: Mar 22 07:08:01 2024 GMT
Not After : Mar 22 07:08:01 2044 GMT
Subject: CN=65fd2e54-4b90
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:ab:15:a5:e8:c6:1d:0e:c3:7c:7c:30:d2:3f:
4c:ea:46:4d:6b:b6:9e:e5:c5:5a:2d:a2:52:96:39:
2b:32:86:59:6f:bf:21:b0:df:66:62:7c:6f:af:7b:
26:6e:ba:d2:64:49:6e:c0:38:7c:e7:56:9e:39:f0:
e5:7a:19:85:3b:8a:8e:ec:64:48:cb:07:77:34:f2:
5e:c6:15:7d:5e:2f:cb:4f:b2:26:7c:76:95:8a:59:
bb:de:f9:c0:46:70:07:27:e8:33:24:91:59:cd:cb:
9c:9f:aa:de:d4:67:81:1c:f9:c3:7a:9d:68:c0:7c:
90:9f:18:df:5e:2d:d2:df:d5:bd:72:92:f6:00:cc:
46:fc:e0:75:34:ee:3e:6e:80:f1:78:98:0c:c2:b1:
dc:a1:f5:aa:bd:32:f8:0d:c4:72:c8:49:14:06:2d:
e8:78:c2:7c:9d:84:6c:2c:70:d4:38:af:77:e2:0d:
1c:43:dd:3e:ac:36:08:85:54:bd:ca:7a:27:0f:0b:
57:50:75:be:74:28:b5:0d:bf:16:03:45:73:78:8b:
05:f6:9b:93:09:88:57:01:a1:41:8f:b1:d3:d2:9d:
d0:12:8d:26:e4:6f:db:69:fb:65:68:53:d8:82:0a:
19:d6:38:38:ac:ff:0e:60:b1:4c:6a:cd:24:96:7f:
fb:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:67:BD:15:44:E6:18:7C:95:C3:F8:70:A3:5A:DC:C5:59:9A:56:99
X509v3 Authority Key Identifier:
keyid:D6:28:E4:C9:6A:BA:9C:FB:12:44:77:86:7B:BD:F1:A4:43:5F:0F:5B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F362412E/3A239A207E3811EE854EE4394AD9E6FC/1ijkyWq6nPsSRHeGe73xpENfD1s.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/1ijkyWq6nPsSRHeGe73xpENfD1s.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F362412E/3A239A207E3811EE854EE4394AD9E6FC/ED02D88AE81A11EE8623BCC5775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.210.160.0/22
Signature Algorithm: sha256WithRSAEncryption
c1:6e:bd:4a:13:2d:9e:61:5d:a1:a9:e2:53:91:b8:4c:28:6b:
6a:fa:c9:52:d8:67:0a:d0:dd:5f:39:f7:b6:1a:69:28:25:a3:
9d:01:d1:2c:8c:21:4a:f0:8a:1b:fa:0c:08:af:6c:94:fe:ab:
d6:8a:3e:f1:dc:19:0c:db:87:72:72:8d:57:85:b6:ec:5b:c2:
52:82:34:bb:d6:f4:09:85:c3:2f:53:23:85:09:ec:8c:cd:18:
77:14:b6:5b:fa:9d:ea:bb:78:9f:ed:9d:0f:9a:83:8c:64:6e:
90:c0:2c:bb:bc:cc:e2:fd:f2:c0:21:39:aa:58:a7:af:0e:17:
cf:02:db:b7:a8:b2:0c:03:79:db:1b:ef:37:13:f1:fd:14:c3:
98:6b:d9:78:90:d5:14:d8:7f:7e:8e:ed:0e:ea:57:97:38:fe:
39:f3:c8:78:b2:79:97:bc:aa:f7:c9:52:b8:e4:5c:06:1e:66:
7b:b1:a1:ae:a7:0d:b7:d0:83:19:14:18:be:53:9b:45:49:9e:
bb:6b:f4:00:e1:91:32:89:5a:fc:33:77:69:e2:4e:a7:5e:08:
58:25:27:4e:cd:6c:b2:61:23:41:61:aa:93:e1:5f:43:b6:be:
b8:27:03:db:f1:b2:22:37:48:95:ae:55:cc:22:e0:1e:78:03:
40:48:d5:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:03:31 2024 by rpki-client on console-ams.rpki-client.org