Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F362B38E/73C193E2DF6111E9BE5A2C30F8AEA228/4858F51CFA4D11EABBA27850F8AEA228.roa
File: 4858F51CFA4D11EABBA27850F8AEA228.roa (raw, json)
Hash identifier: Olh+jgWHlwq+DKjvm0GuVrQlvzus73+4FrLb2T2hZPI=
Subject key identifier: 01:F3:77:5A:33:3D:46:9C:05:6E:64:24:83:AA:C3:21:94:B7:C2:E6
Certificate issuer: /CN=F362B38EAF/serialNumber=AD4004D8518DEB99CED3FFFAB635AA174E700FD7
Certificate serial: 02B5
Authority key identifier: AD:40:04:D8:51:8D:EB:99:CE:D3:FF:FA:B6:35:AA:17:4E:70:0F:D7
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/rUAE2FGN65nO0__6tjWqF05wD9c.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F362B38E/73C193E2DF6111E9BE5A2C30F8AEA228/4858F51CFA4D11EABBA27850F8AEA228.roa
Signing time: Sat 19 Sep 2020 07:54:03 +0000
ROA not before: Sat 19 Sep 2020 07:53:56 +0000
ROA not after: Tue 31 Dec 2030 07:53:56 +0000
asID: 327687
IP address blocks: 102.34.0.0/16 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F362B38E/73C193E2DF6111E9BE5A2C30F8AEA228/rUAE2FGN65nO0__6tjWqF05wD9c.crl
rsync://rpki.afrinic.net/repository/member_repository/F362B38E/73C193E2DF6111E9BE5A2C30F8AEA228/rUAE2FGN65nO0__6tjWqF05wD9c.mft
rsync://rpki.afrinic.net/repository/afrinic/rUAE2FGN65nO0__6tjWqF05wD9c.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 693 (0x2b5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F362B38EAF/serialNumber=AD4004D8518DEB99CED3FFFAB635AA174E700FD7
Validity
Not Before: Sep 19 07:53:56 2020 GMT
Not After : Dec 31 07:53:56 2030 GMT
Subject: CN=5f65b91a-a6fe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:9e:7d:0d:68:01:af:ad:eb:d1:be:32:5c:0a:
d4:d1:6e:94:52:b1:bc:6b:29:9b:e0:b7:1c:13:19:
88:a3:55:26:2c:a5:68:42:9d:a9:70:de:b2:50:a6:
aa:ab:78:8c:46:92:11:4d:b8:6e:e7:56:4b:cd:10:
54:e2:dc:2a:0c:29:ff:a2:31:1e:de:34:66:10:df:
b3:20:b8:a8:f3:66:23:a8:d2:fb:3a:72:43:11:15:
1f:63:dc:e6:57:3c:72:fe:06:f0:33:18:f8:35:64:
13:c3:68:e2:3d:e0:09:53:ca:8e:3c:2e:25:a6:3b:
c5:1f:9b:42:ab:10:61:77:59:9f:88:82:bc:c7:19:
50:eb:31:69:31:9f:f8:ce:72:6f:1a:59:c0:b3:5c:
34:db:13:b4:8e:04:a6:cf:7d:a7:b0:9b:26:eb:c8:
ae:1c:b4:4b:57:b6:ca:7b:ff:d2:cb:c9:d2:e7:90:
a8:a5:5c:6b:a9:78:18:f1:91:f9:35:a2:f7:41:82:
e7:56:56:53:b2:a8:cd:b9:0c:12:34:4b:e8:21:e4:
7b:01:37:2b:2d:25:60:6b:b2:3e:76:00:c6:65:12:
b3:94:0c:c0:26:79:0b:a2:eb:b1:04:d8:7c:52:e8:
cd:51:ed:f1:53:d5:c5:80:b7:4f:37:c7:ec:4b:37:
07:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:F3:77:5A:33:3D:46:9C:05:6E:64:24:83:AA:C3:21:94:B7:C2:E6
X509v3 Authority Key Identifier:
keyid:AD:40:04:D8:51:8D:EB:99:CE:D3:FF:FA:B6:35:AA:17:4E:70:0F:D7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F362B38E/73C193E2DF6111E9BE5A2C30F8AEA228/rUAE2FGN65nO0__6tjWqF05wD9c.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/rUAE2FGN65nO0__6tjWqF05wD9c.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F362B38E/73C193E2DF6111E9BE5A2C30F8AEA228/4858F51CFA4D11EABBA27850F8AEA228.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.34.0.0/16
Signature Algorithm: sha256WithRSAEncryption
93:f8:95:9f:a1:09:25:60:f8:52:43:03:f3:7b:4e:aa:b3:6b:
c6:62:d4:e2:da:fe:05:65:d1:91:40:22:d2:67:9b:db:c7:6c:
c4:60:bf:54:30:1a:4e:1b:93:d5:22:f4:83:23:fb:9b:23:1c:
71:de:9f:1c:e5:ad:33:de:84:b3:5a:f6:22:96:da:7e:22:34:
d0:4a:0e:38:bc:b0:19:f6:6a:a9:ec:ff:ec:8d:41:5d:67:19:
f1:c5:c4:1e:bd:db:c3:1e:99:9e:3a:58:48:cd:54:dd:50:e9:
84:0d:f6:da:1a:1c:ae:55:67:58:4e:b1:f3:a2:01:9b:6f:83:
4a:c9:bd:f3:45:b1:cf:9c:1c:bd:c2:b4:2d:15:34:9f:80:d3:
5f:37:c6:19:2c:c4:15:66:5d:e4:f1:87:37:bd:13:35:3e:af:
b8:24:9a:af:47:23:59:39:20:6a:cb:74:8b:6c:1a:30:37:1b:
c6:3f:49:39:2d:ac:ec:bb:7b:8f:97:87:bb:b4:4d:be:64:5b:
50:25:c9:96:21:c7:4d:a6:63:f0:f4:d3:2f:82:34:9a:35:cb:
1c:65:c7:bb:86:56:7b:4c:6d:e0:9b:33:3d:58:38:7d:99:c8:
e6:08:76:a5:f0:ce:0c:de:53:53:35:59:0a:98:52:9a:c0:3a:
2e:23:8c:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:03:32 2024 by rpki-client on console-ams.rpki-client.org