Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F362B8A8/B5C94E4C9C2511EBAD78FF53F8AEA228/3D415C420CC911EDBA4FEBC8F1222468.roa
File: 3D415C420CC911EDBA4FEBC8F1222468.roa (raw, json)
Hash identifier: h2cyYPdvqsKecbOgrvnDc2rdhf3n2mu1oU/CKpdb2TY=
Subject key identifier: 8D:DD:48:B5:39:0A:5F:74:58:69:D5:A5:55:64:4A:72:3D:67:95:4E
Certificate issuer: /CN=F362B8A8AF/serialNumber=DF376480DCF07A1B7AD164DE64A3EA215F247541
Certificate serial: 020A
Authority key identifier: DF:37:64:80:DC:F0:7A:1B:7A:D1:64:DE:64:A3:EA:21:5F:24:75:41
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/3zdkgNzweht60WTeZKPqIV8kdUE.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F362B8A8/B5C94E4C9C2511EBAD78FF53F8AEA228/3D415C420CC911EDBA4FEBC8F1222468.roa
Signing time: Tue 26 Jul 2022 09:56:38 +0000
ROA not before: Tue 26 Jul 2022 09:56:33 +0000
ROA not after: Fri 26 Jul 2030 09:56:33 +0000
asID: 37053
IP address blocks: 102.217.40.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F362B8A8/B5C94E4C9C2511EBAD78FF53F8AEA228/3zdkgNzweht60WTeZKPqIV8kdUE.crl
rsync://rpki.afrinic.net/repository/member_repository/F362B8A8/B5C94E4C9C2511EBAD78FF53F8AEA228/3zdkgNzweht60WTeZKPqIV8kdUE.mft
rsync://rpki.afrinic.net/repository/afrinic/3zdkgNzweht60WTeZKPqIV8kdUE.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 522 (0x20a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F362B8A8AF/serialNumber=DF376480DCF07A1B7AD164DE64A3EA215F247541
Validity
Not Before: Jul 26 09:56:33 2022 GMT
Not After : Jul 26 09:56:33 2030 GMT
Subject: CN=62dfba55-1d62
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:23:6e:15:26:60:aa:c4:d5:ae:68:f1:e5:f3:
30:28:00:31:4c:49:92:78:44:5e:ea:fd:a5:03:d7:
d7:a4:b4:2c:21:51:19:af:7f:85:ef:7d:13:ab:ec:
6a:23:37:f5:87:0d:63:81:2f:fa:f6:b2:74:64:47:
ee:b6:bd:14:8d:99:69:ce:b1:4e:c6:71:44:03:ec:
a6:c6:20:f5:2b:a5:43:9e:be:72:3e:d7:00:a8:fa:
20:9e:c0:07:2a:ed:88:5b:e1:00:2c:73:7a:31:84:
fd:e1:4c:78:c0:90:56:eb:b2:46:1b:f4:b9:af:4e:
eb:d8:e4:7f:43:fd:f7:0a:97:80:26:02:17:dd:89:
2c:fb:c8:a8:4b:8c:f6:dd:c0:9e:a7:0e:98:c4:1d:
12:29:98:7d:38:40:f0:9a:02:d6:f4:18:f2:50:15:
b9:69:6c:6a:dc:ae:96:02:c8:58:59:e8:71:b1:e4:
7a:c2:65:1d:32:c5:9b:cd:a1:de:2c:7a:e5:8d:92:
9c:d4:9c:77:13:13:71:79:20:bd:51:36:11:60:80:
11:36:4e:0b:25:74:ed:64:a6:e7:df:67:fa:15:03:
5c:24:e1:ac:34:0b:59:b8:e4:87:a1:5c:22:5d:f5:
aa:6c:27:65:d3:3f:71:95:61:d0:9e:78:91:95:e0:
7a:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:DD:48:B5:39:0A:5F:74:58:69:D5:A5:55:64:4A:72:3D:67:95:4E
X509v3 Authority Key Identifier:
keyid:DF:37:64:80:DC:F0:7A:1B:7A:D1:64:DE:64:A3:EA:21:5F:24:75:41
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F362B8A8/B5C94E4C9C2511EBAD78FF53F8AEA228/3zdkgNzweht60WTeZKPqIV8kdUE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/3zdkgNzweht60WTeZKPqIV8kdUE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F362B8A8/B5C94E4C9C2511EBAD78FF53F8AEA228/3D415C420CC911EDBA4FEBC8F1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.217.40.0/22
Signature Algorithm: sha256WithRSAEncryption
49:3c:e4:46:db:0b:03:b1:2b:35:fb:59:48:88:7e:da:89:e7:
c9:8d:87:f7:da:24:f8:0d:e6:12:5b:4f:67:3b:78:e3:1c:25:
e5:d4:bf:13:91:01:55:68:3b:ba:d3:1e:83:c0:7b:55:e8:2e:
02:7c:bb:c5:b1:72:85:c6:cb:74:90:47:63:2e:57:83:72:01:
aa:53:7c:63:f8:44:7f:82:a3:cf:1b:70:63:47:b6:cb:e3:ac:
92:44:45:45:87:d7:eb:9c:52:f3:46:52:19:95:43:73:38:f1:
9c:e7:65:08:fc:b7:02:09:95:0a:19:92:49:a0:da:74:9c:cd:
f5:54:9e:cf:24:9b:72:88:bf:02:ff:ca:65:76:0e:a4:bd:76:
e0:24:4c:06:21:c7:21:8d:0d:db:89:88:2e:2f:b8:49:79:cb:
61:cb:f2:26:5c:6c:75:d6:9e:36:a4:f4:98:04:54:48:0d:2f:
ba:32:ed:f8:30:a4:06:b3:d3:96:02:b5:f6:d0:d3:fa:5d:f0:
21:00:4c:ed:61:35:b3:2f:bb:bd:b7:c7:ea:6d:ca:fe:f4:61:
17:94:9d:50:f4:67:a2:15:df:26:d5:13:05:1e:f4:51:df:fe:
62:80:b5:11:ec:37:d1:dc:0c:af:4b:59:c1:3d:b6:e2:83:b5:
e7:6a:73:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 03:52:53 2024 by rpki-client on console-fra.rpki-client.org