Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F362B8A8/B5C94E4C9C2511EBAD78FF53F8AEA228/BD35823837EA11ED900673C9F1222468.roa
File: BD35823837EA11ED900673C9F1222468.roa (raw, json)
Hash identifier: K3b0R/z4frBDGrfF/mCTN3o21drYDHR1MM4314IVJ6A=
Subject key identifier: 1F:87:E7:1A:A2:F6:2E:EA:53:8F:46:02:FD:10:C3:37:BF:69:11:87
Certificate issuer: /CN=F362B8A8AF/serialNumber=DF376480DCF07A1B7AD164DE64A3EA215F247541
Certificate serial: 0245
Authority key identifier: DF:37:64:80:DC:F0:7A:1B:7A:D1:64:DE:64:A3:EA:21:5F:24:75:41
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/3zdkgNzweht60WTeZKPqIV8kdUE.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F362B8A8/B5C94E4C9C2511EBAD78FF53F8AEA228/BD35823837EA11ED900673C9F1222468.roa
Signing time: Mon 19 Sep 2022 07:14:46 +0000
ROA not before: Mon 19 Sep 2022 07:14:42 +0000
ROA not after: Sun 19 Sep 2032 07:14:42 +0000
asID: 37053
IP address blocks: 102.214.92.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F362B8A8/B5C94E4C9C2511EBAD78FF53F8AEA228/3zdkgNzweht60WTeZKPqIV8kdUE.crl
rsync://rpki.afrinic.net/repository/member_repository/F362B8A8/B5C94E4C9C2511EBAD78FF53F8AEA228/3zdkgNzweht60WTeZKPqIV8kdUE.mft
rsync://rpki.afrinic.net/repository/afrinic/3zdkgNzweht60WTeZKPqIV8kdUE.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 581 (0x245)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F362B8A8AF/serialNumber=DF376480DCF07A1B7AD164DE64A3EA215F247541
Validity
Not Before: Sep 19 07:14:42 2022 GMT
Not After : Sep 19 07:14:42 2032 GMT
Subject: CN=632816e5-7b67
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:77:29:65:d6:58:23:96:ab:4c:c0:6c:36:c1:
c6:8a:2d:bc:14:8a:ac:ae:96:e4:cb:b9:40:02:e9:
9a:da:b2:dd:5c:a0:42:0f:98:b7:d3:f1:59:01:23:
4f:4f:3c:a6:92:17:e2:2c:33:1a:72:91:da:81:2e:
32:7c:1f:24:3a:bc:eb:bf:d3:da:88:e1:ef:02:20:
ed:a9:0f:0a:7b:3c:d1:52:11:0c:7e:e4:b1:fc:a7:
9f:ee:10:bd:25:95:5b:f8:fb:b2:8d:c1:04:f3:88:
16:3d:58:5f:99:3e:f2:2c:c9:85:71:54:0d:85:82:
8e:4d:f4:fe:30:56:74:04:ba:32:59:56:1f:31:1f:
73:0d:88:6c:2d:8f:b5:74:ee:59:3c:09:ff:78:b2:
ed:34:48:82:9a:e2:0f:dd:c3:89:55:11:4b:ce:a8:
9f:d5:0a:0d:68:96:fa:f6:50:c9:f1:a3:78:86:62:
4d:a9:32:33:70:49:5c:34:5c:23:dc:ae:7f:b6:9a:
ea:91:29:af:23:fc:9d:ec:fd:ce:d4:ea:e2:c3:1a:
e3:06:7e:d5:a8:67:c8:25:7e:dd:18:e8:d2:9f:6a:
96:30:f2:dd:e1:83:1d:fd:b7:ac:d8:03:8f:28:51:
71:35:3a:5d:97:0f:f8:ba:e2:db:e3:1c:5e:9c:60:
d4:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:87:E7:1A:A2:F6:2E:EA:53:8F:46:02:FD:10:C3:37:BF:69:11:87
X509v3 Authority Key Identifier:
keyid:DF:37:64:80:DC:F0:7A:1B:7A:D1:64:DE:64:A3:EA:21:5F:24:75:41
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F362B8A8/B5C94E4C9C2511EBAD78FF53F8AEA228/3zdkgNzweht60WTeZKPqIV8kdUE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/3zdkgNzweht60WTeZKPqIV8kdUE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F362B8A8/B5C94E4C9C2511EBAD78FF53F8AEA228/BD35823837EA11ED900673C9F1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.214.92.0/22
Signature Algorithm: sha256WithRSAEncryption
91:47:12:21:68:dd:53:4a:3a:3f:81:96:a3:e5:32:ee:a0:0f:
ca:5c:ae:85:f9:cc:79:d8:1b:38:02:de:c8:e5:00:af:f1:6f:
db:6e:45:e3:50:db:92:93:22:db:a6:39:7b:6c:00:1a:7b:c6:
3b:bb:80:b3:b7:3c:43:6d:59:5a:ce:25:2c:b0:86:fd:e4:a2:
86:ea:8a:de:6c:7c:1a:ad:36:14:17:65:7f:cb:75:fa:7d:12:
fc:62:d5:5a:fc:74:a9:35:8c:61:66:13:05:5c:1b:13:af:49:
4c:45:00:4e:35:2b:e1:db:b3:cd:ae:7f:26:e6:96:81:54:4f:
f1:a6:13:11:47:5b:b0:05:f8:31:16:13:47:5c:12:96:79:72:
79:2a:b1:59:6b:df:0e:bd:18:b4:38:95:6d:57:18:37:22:bd:
09:40:ce:28:52:08:af:ba:25:8a:66:af:42:2f:98:20:7e:9c:
d4:3f:10:88:be:fb:2d:fa:52:13:f3:07:78:99:09:e9:e3:9f:
a9:bc:56:f5:85:23:62:5f:18:5d:9a:07:32:cb:66:b9:a5:e5:
34:00:84:72:e7:1b:26:45:ed:0d:7c:a1:ef:30:8a:cb:e2:70:
1c:0d:10:83:d3:3b:c5:a6:62:7f:95:05:fa:64:e0:33:ac:b9:
7d:4d:24:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:03:32 2024 by rpki-client on console-ams.rpki-client.org