Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F362C18C/45883290ABD111EBB1A6715EF8AEA228/784D3B4C9FDC11EEB028656CD25BE465.roa
File: 784D3B4C9FDC11EEB028656CD25BE465.roa (raw, json)
Hash identifier: 5QoXZJbqT+ySU4hj2oN6kGa1VCpaZwPumrhrnlX/vLg=
Subject key identifier: 84:70:95:FE:03:17:E3:8B:C4:B2:3E:06:31:A6:A3:9C:D4:93:F1:4B
Certificate issuer: /CN=F362C18CAF/serialNumber=63E0BB6B3433CD5D71A42B0169BDB01E20E4557F
Certificate serial: 03EA
Authority key identifier: 63:E0:BB:6B:34:33:CD:5D:71:A4:2B:01:69:BD:B0:1E:20:E4:55:7F
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/Y-C7azQzzV1xpCsBab2wHiDkVX8.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F362C18C/45883290ABD111EBB1A6715EF8AEA228/784D3B4C9FDC11EEB028656CD25BE465.roa
Signing time: Thu 21 Dec 2023 08:39:35 +0000
ROA not before: Thu 21 Dec 2023 08:39:32 +0000
ROA not after: Tue 20 Dec 2033 08:39:32 +0000
asID: 328528
IP address blocks: 102.36.160.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F362C18C/45883290ABD111EBB1A6715EF8AEA228/Y-C7azQzzV1xpCsBab2wHiDkVX8.crl
rsync://rpki.afrinic.net/repository/member_repository/F362C18C/45883290ABD111EBB1A6715EF8AEA228/Y-C7azQzzV1xpCsBab2wHiDkVX8.mft
rsync://rpki.afrinic.net/repository/afrinic/Y-C7azQzzV1xpCsBab2wHiDkVX8.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 25 May 2024 00:04:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1002 (0x3ea)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F362C18CAF/serialNumber=63E0BB6B3433CD5D71A42B0169BDB01E20E4557F
Validity
Not Before: Dec 21 08:39:32 2023 GMT
Not After : Dec 20 08:39:32 2033 GMT
Subject: CN=6583f9c7-6411
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:3c:3b:d2:ee:7a:f7:51:01:d0:c5:81:82:c8:
bd:23:2c:9a:6e:b0:36:84:1b:63:8b:55:f3:70:80:
ed:e1:ce:a7:e1:3e:0d:e6:7e:21:24:34:4c:c7:0d:
04:f2:3e:aa:84:24:d0:b0:cc:59:97:dc:2b:e6:12:
19:9c:96:a2:ed:0f:77:fd:c5:6f:3a:5a:3c:d0:57:
0f:52:22:a9:61:6e:b8:af:92:14:5e:90:98:b1:f9:
53:f4:6b:86:77:2f:ea:d5:9b:3a:80:d7:4f:1a:fd:
5b:58:4b:00:ef:7f:7d:e0:6d:25:8a:f5:4b:53:a2:
0f:d7:43:31:4c:6d:e5:75:95:f8:86:79:6e:5e:a8:
19:90:64:56:e9:60:ff:2a:69:9c:7f:32:2e:9d:d4:
bf:33:12:b1:fc:78:61:67:27:28:f7:c3:ca:93:e4:
d4:2b:78:ba:d3:66:15:ea:be:80:c4:59:42:b0:96:
fc:2d:fd:9a:84:37:18:7c:33:71:94:46:c3:58:56:
5e:d5:f1:94:ff:18:ea:e1:eb:6e:29:5c:26:2f:8f:
29:64:28:f8:fd:1f:4f:92:07:b2:d8:52:7c:34:05:
99:be:eb:06:84:ae:98:bc:ca:36:26:0a:99:20:52:
01:a6:7d:f2:cf:a2:c0:18:20:a2:6f:cd:48:d2:85:
4e:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:70:95:FE:03:17:E3:8B:C4:B2:3E:06:31:A6:A3:9C:D4:93:F1:4B
X509v3 Authority Key Identifier:
keyid:63:E0:BB:6B:34:33:CD:5D:71:A4:2B:01:69:BD:B0:1E:20:E4:55:7F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F362C18C/45883290ABD111EBB1A6715EF8AEA228/Y-C7azQzzV1xpCsBab2wHiDkVX8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/Y-C7azQzzV1xpCsBab2wHiDkVX8.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F362C18C/45883290ABD111EBB1A6715EF8AEA228/784D3B4C9FDC11EEB028656CD25BE465.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.36.160.0/22
Signature Algorithm: sha256WithRSAEncryption
a4:9b:d2:2d:72:e8:f6:6d:72:53:a1:e6:c0:83:b5:4c:54:e3:
02:b3:e0:49:34:eb:82:92:e2:ea:e5:64:14:a1:64:5e:ac:80:
cc:a0:f9:dd:35:b7:d4:0a:e5:b5:68:5d:0f:59:fa:2a:79:1e:
33:f6:1d:f5:28:9a:c4:79:6c:2d:e9:76:7f:24:e0:6c:53:dd:
f0:94:ac:77:01:84:e5:a8:c8:f4:5c:f9:57:e9:de:46:71:00:
fb:38:26:2a:c1:72:c6:86:87:d1:37:62:bd:73:df:db:9d:ea:
7d:9c:fc:1e:9e:bb:fc:5f:df:de:02:38:ac:0f:52:ad:ad:17:
74:52:0e:65:34:fe:9a:b0:e3:3c:90:f8:63:91:6d:af:ba:80:
45:c6:c3:5d:2e:25:55:6f:88:0d:d5:d7:fc:1e:6a:e2:2e:4b:
8c:43:fa:bd:3f:67:47:46:dd:20:b8:fe:4c:dd:fc:99:8a:06:
79:2f:61:ec:0c:d0:ea:db:74:1b:fd:1c:aa:b6:f7:73:96:f5:
87:8b:c3:f6:77:bf:8c:a2:51:f3:4c:97:9a:97:8c:0f:dc:1a:
f1:b9:81:d5:cd:70:1f:e1:e3:66:b2:72:b9:27:9b:8f:b7:3f:
b9:58:80:e1:8e:d7:df:aa:63:54:34:5a:82:98:39:99:16:ef:
51:f3:c5:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 23 02:38:57 2024 by rpki-client on console-ams.rpki-client.org