Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3644FF0/745F62409B4511ED93C950AEF1222468/21B47314CB7811EEBA542266775412E6.roa
File: 21B47314CB7811EEBA542266775412E6.roa (raw, json)
Hash identifier: 0ojuwYcEOwgzKTIrlc1k6YRbS0hpoIl7oRt+4VpWBiY=
Subject key identifier: 2E:47:72:C8:3B:AC:98:8A:A9:CB:F7:65:34:F7:60:56:0C:77:6E:F5
Certificate issuer: /CN=F3644FF0AF/serialNumber=E89EFE351E60252A26256D8DEE8F69E7724CAD5A
Certificate serial: 019D
Authority key identifier: E8:9E:FE:35:1E:60:25:2A:26:25:6D:8D:EE:8F:69:E7:72:4C:AD:5A
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/6J7-NR5gJSomJW2N7o9p53JMrVo.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3644FF0/745F62409B4511ED93C950AEF1222468/21B47314CB7811EEBA542266775412E6.roa
Signing time: Wed 14 Feb 2024 20:32:12 +0000
ROA not before: Wed 14 Feb 2024 20:32:07 +0000
ROA not after: Fri 14 Feb 2025 20:32:07 +0000
asID: 329027
IP address blocks: 102.213.44.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3644FF0/745F62409B4511ED93C950AEF1222468/6J7-NR5gJSomJW2N7o9p53JMrVo.crl
rsync://rpki.afrinic.net/repository/member_repository/F3644FF0/745F62409B4511ED93C950AEF1222468/6J7-NR5gJSomJW2N7o9p53JMrVo.mft
rsync://rpki.afrinic.net/repository/afrinic/6J7-NR5gJSomJW2N7o9p53JMrVo.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 413 (0x19d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3644FF0AF/serialNumber=E89EFE351E60252A26256D8DEE8F69E7724CAD5A
Validity
Not Before: Feb 14 20:32:07 2024 GMT
Not After : Feb 14 20:32:07 2025 GMT
Subject: CN=65cd234c-aecc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:56:26:2f:e7:e6:f3:88:55:69:eb:21:bc:82:
13:79:90:fd:47:3f:1b:16:cb:18:64:a3:a6:e6:73:
c9:d9:fe:e5:e8:bc:99:f7:f6:45:a1:4b:3d:9a:bc:
cc:70:d7:09:e6:c0:b0:70:f0:be:98:7e:bb:0e:83:
03:b8:54:1c:1f:f5:31:50:6a:39:bb:41:ca:6b:7f:
0c:57:dd:ba:32:4b:d5:6a:e4:c3:58:6e:f6:59:49:
24:56:10:62:8c:85:14:ae:45:7f:6d:cc:73:e9:c8:
fd:aa:34:04:61:7d:22:50:aa:7b:c2:07:1b:37:36:
9b:61:cb:1b:1b:f6:3f:5e:49:b2:21:46:34:91:b1:
e9:ac:71:82:e1:8c:73:65:cc:d4:d8:97:fa:18:93:
e3:10:75:0e:c4:fb:55:61:dd:4e:87:54:94:3e:76:
3a:16:62:d2:cc:31:9e:6f:64:05:62:d0:c4:6d:62:
4d:ed:6d:fc:83:15:61:9f:6b:10:22:da:4e:92:55:
49:47:dd:ae:33:01:91:81:12:ed:f9:48:0d:1f:34:
08:39:cd:74:01:b1:5b:9d:70:9d:1c:aa:51:51:c1:
31:10:5f:b6:c3:5e:21:8e:d3:c8:64:39:3a:2b:17:
06:7c:af:a4:9b:e7:0a:64:f9:7c:d1:65:a1:98:31:
d9:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:47:72:C8:3B:AC:98:8A:A9:CB:F7:65:34:F7:60:56:0C:77:6E:F5
X509v3 Authority Key Identifier:
keyid:E8:9E:FE:35:1E:60:25:2A:26:25:6D:8D:EE:8F:69:E7:72:4C:AD:5A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3644FF0/745F62409B4511ED93C950AEF1222468/6J7-NR5gJSomJW2N7o9p53JMrVo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/6J7-NR5gJSomJW2N7o9p53JMrVo.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3644FF0/745F62409B4511ED93C950AEF1222468/21B47314CB7811EEBA542266775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.213.44.0/22
Signature Algorithm: sha256WithRSAEncryption
2c:51:04:db:48:52:f6:75:ba:e6:17:08:76:9d:eb:9f:f0:a9:
bd:f2:2a:98:cd:a5:2d:f2:38:8e:a0:38:b2:ab:e0:8d:1e:39:
9a:ee:cd:b0:b6:cc:40:de:54:db:89:24:22:1d:be:88:b1:4b:
58:8e:24:6a:8e:db:f0:e6:61:91:b7:4e:fe:30:d1:47:6e:18:
79:cd:33:61:35:2f:42:5e:85:6f:46:08:73:d6:d4:14:69:dd:
e7:92:17:12:bd:3a:db:e4:e4:5c:75:ba:8a:2a:a2:62:c0:2a:
29:57:97:24:4c:d4:eb:4b:35:1b:42:a4:d0:e5:37:1a:31:4e:
6d:c8:96:4a:6d:5e:30:d6:10:42:80:8e:53:5f:9e:29:e6:30:
b5:11:4a:74:40:58:16:b6:45:ff:ea:63:d7:20:58:65:31:70:
8d:70:5d:b8:d0:99:38:24:a4:41:d0:0e:3b:53:b1:65:56:92:
1f:cf:b4:48:dd:d1:ed:6f:a9:53:2b:4c:1e:ed:46:f4:bb:61:
b4:cb:a9:a1:48:86:ff:88:02:11:fe:65:cd:90:6f:fc:c0:26:
89:d8:0b:84:8d:e3:f6:0a:ca:4e:82:70:c6:ad:ae:ef:3d:12:
30:db:06:4d:2d:97:30:19:b0:1d:43:00:be:c1:56:87:af:3d:
f0:08:19:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 03:52:53 2024 by rpki-client on console-fra.rpki-client.org