Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36251E0/397067ECE53111EEAC6D67C1775412E6/E883F5DAFFAA11EEB452902D017001B1.roa
File: E883F5DAFFAA11EEB452902D017001B1.roa (raw, json)
Hash identifier: DujQOR8lgqXuI7Ca5VeFBLLM9Nr1YJ2AU6XT7Vwygec=
Subject key identifier: 6B:50:0D:F7:F7:53:CB:7A:14:11:88:9D:78:7D:2A:C2:EC:73:5F:40
Certificate issuer: /CN=F36251E0AF/serialNumber=EFB7AA8EF96C13AAADC8476FBDDE9F3277FCD56D
Certificate serial: 2E
Authority key identifier: EF:B7:AA:8E:F9:6C:13:AA:AD:C8:47:6F:BD:DE:9F:32:77:FC:D5:6D
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/77eqjvlsE6qtyEdvvd6fMnf81W0.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36251E0/397067ECE53111EEAC6D67C1775412E6/E883F5DAFFAA11EEB452902D017001B1.roa
Signing time: Sun 21 Apr 2024 06:46:41 +0000
ROA not before: Sun 21 Apr 2024 06:46:37 +0000
ROA not after: Sun 31 Dec 2034 06:46:37 +0000
asID: 329411
IP address blocks: 102.209.136.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36251E0/397067ECE53111EEAC6D67C1775412E6/77eqjvlsE6qtyEdvvd6fMnf81W0.crl
rsync://rpki.afrinic.net/repository/member_repository/F36251E0/397067ECE53111EEAC6D67C1775412E6/77eqjvlsE6qtyEdvvd6fMnf81W0.mft
rsync://rpki.afrinic.net/repository/afrinic/77eqjvlsE6qtyEdvvd6fMnf81W0.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 04 Jun 2024 00:04:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 46 (0x2e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36251E0AF/serialNumber=EFB7AA8EF96C13AAADC8476FBDDE9F3277FCD56D
Validity
Not Before: Apr 21 06:46:37 2024 GMT
Not After : Dec 31 06:46:37 2034 GMT
Subject: CN=6624b650-5045
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:38:c9:27:d4:cb:cc:59:ad:96:66:0d:a0:f5:
fe:84:27:db:d3:d8:54:10:e6:9d:73:ea:a5:66:5c:
c0:b3:9f:6d:d3:76:7d:d2:1a:cd:d5:d6:e5:33:43:
b9:bc:52:dd:be:a1:cd:85:4b:69:d1:25:41:39:0c:
d1:fc:99:10:ec:6e:43:74:5e:6e:9c:85:08:13:27:
a6:fa:c3:15:e6:b7:e3:8e:47:e6:33:1a:f4:65:0c:
70:be:62:72:a1:39:cf:94:53:52:3c:b3:17:db:b0:
35:b9:a9:4f:95:01:2b:55:5c:ef:ee:31:1a:89:43:
ab:f1:de:61:31:1c:26:32:0c:26:f7:de:10:6a:30:
47:8e:28:33:9a:e8:9d:de:18:48:4b:bb:c0:93:33:
75:9b:ec:e9:70:db:e6:6d:ed:b8:b9:8e:98:53:fd:
89:f7:49:f3:29:2d:68:34:1c:8f:e7:87:2d:e6:be:
89:77:24:f0:b4:bb:db:93:b4:74:a0:2b:cf:a7:f1:
a2:d1:e1:f5:e7:0b:0c:84:a9:7d:7d:ba:1c:e4:75:
37:41:48:1b:80:7a:36:a1:61:8d:ba:b1:5f:3b:e5:
8a:84:5f:7e:18:02:a3:95:c1:20:2f:7a:7d:ef:09:
f4:d6:d6:9c:03:fb:b7:d9:ff:e4:8f:d0:56:c0:95:
07:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:50:0D:F7:F7:53:CB:7A:14:11:88:9D:78:7D:2A:C2:EC:73:5F:40
X509v3 Authority Key Identifier:
keyid:EF:B7:AA:8E:F9:6C:13:AA:AD:C8:47:6F:BD:DE:9F:32:77:FC:D5:6D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36251E0/397067ECE53111EEAC6D67C1775412E6/77eqjvlsE6qtyEdvvd6fMnf81W0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/77eqjvlsE6qtyEdvvd6fMnf81W0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36251E0/397067ECE53111EEAC6D67C1775412E6/E883F5DAFFAA11EEB452902D017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.209.136.0/22
Signature Algorithm: sha256WithRSAEncryption
8a:8b:d2:29:38:bd:de:b0:f5:46:fd:8d:49:6b:a0:ec:79:ac:
69:75:2f:01:90:44:77:6b:1f:8b:96:b7:58:d2:1d:38:d5:d5:
61:d4:29:17:ce:4b:0d:5b:31:2e:3a:1c:c1:d3:be:76:64:b4:
c7:cb:eb:ba:62:19:bd:b1:00:cf:ac:41:c2:7a:1e:f9:fe:10:
15:0b:63:ae:c0:19:66:c9:cd:85:b3:84:86:c6:57:fd:7d:cf:
fb:e2:7f:01:77:e9:af:86:7e:c3:a6:08:29:c7:a0:98:1e:6a:
fc:35:96:27:49:c6:af:89:98:9d:3d:d9:0c:05:87:f0:44:88:
0e:32:ac:98:b4:39:78:69:e1:e9:84:52:bc:e6:39:66:be:1e:
73:91:b6:3a:cf:c1:60:f6:d6:20:71:eb:93:1d:66:cf:c6:4c:
38:e7:95:f9:48:10:eb:3b:80:e4:c2:bd:fb:af:b6:fa:be:46:
10:59:6c:51:f2:ea:49:43:43:ed:a3:de:45:17:64:9f:39:77:
35:24:c1:79:cd:d8:75:60:66:f5:7e:98:85:4e:a6:51:7b:68:
86:d7:81:11:e1:0a:4e:4b:f6:fe:4a:e6:a1:1e:6c:8e:64:c1:
2e:42:46:f7:73:57:97:3d:69:fc:65:c2:91:ca:c4:cf:cb:80:
89:da:e6:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 2 03:39:35 2024 by rpki-client on console-ams.rpki-client.org