Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36455FB/157D54F455CB11ED97DF9691F1222468/CB200990B0EE11ED9130F4BDF1222468.roa
File: CB200990B0EE11ED9130F4BDF1222468.roa (raw, json)
Hash identifier: fQ09LEmlKPbkg+C38k1zz+KfIUo55sSASlLjZwmLSCM=
Subject key identifier: 0F:1D:7F:84:6B:6B:A3:0F:97:61:1E:ED:35:7B:DE:A9:C6:BC:5A:52
Certificate issuer: /CN=F36455FBAF/serialNumber=4462A2E3D1536684A6AD23280CFDA18585BA46E8
Certificate serial: 8D
Authority key identifier: 44:62:A2:E3:D1:53:66:84:A6:AD:23:28:0C:FD:A1:85:85:BA:46:E8
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/RGKi49FTZoSmrSMoDP2hhYW6Rug.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36455FB/157D54F455CB11ED97DF9691F1222468/CB200990B0EE11ED9130F4BDF1222468.roa
Signing time: Mon 20 Feb 2023 07:18:38 +0000
ROA not before: Mon 20 Feb 2023 07:18:33 +0000
ROA not after: Wed 20 Feb 2030 07:18:33 +0000
asID: 328785
IP address blocks: 102.212.156.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36455FB/157D54F455CB11ED97DF9691F1222468/RGKi49FTZoSmrSMoDP2hhYW6Rug.crl
rsync://rpki.afrinic.net/repository/member_repository/F36455FB/157D54F455CB11ED97DF9691F1222468/RGKi49FTZoSmrSMoDP2hhYW6Rug.mft
rsync://rpki.afrinic.net/repository/afrinic/RGKi49FTZoSmrSMoDP2hhYW6Rug.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 30 May 2024 00:04:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 141 (0x8d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36455FBAF/serialNumber=4462A2E3D1536684A6AD23280CFDA18585BA46E8
Validity
Not Before: Feb 20 07:18:33 2023 GMT
Not After : Feb 20 07:18:33 2030 GMT
Subject: CN=63f31ecd-d4fa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:80:2c:7e:c4:fc:03:d0:0a:b1:4e:18:14:6c:
c0:e1:62:9d:9e:58:7b:62:c5:97:9a:a3:da:7b:38:
aa:35:4c:8f:94:2a:22:93:23:16:0e:b0:28:93:dd:
d8:bc:4b:79:82:1e:77:65:2b:74:9b:e1:3b:7b:85:
5c:c3:37:6d:bb:5a:35:04:28:08:7f:3f:22:c6:c3:
4f:d1:a0:4a:9d:7c:74:48:ac:3b:30:a8:9f:60:81:
c6:16:88:af:bf:5d:85:ac:89:43:df:a0:78:b9:92:
34:fa:6e:b8:06:41:2d:f1:aa:2d:35:f0:f1:4c:61:
d6:d6:10:9e:83:6e:8c:28:d0:03:da:29:36:d2:0c:
58:bc:e8:85:ca:e0:04:ba:d5:eb:cf:aa:4e:d5:ba:
65:27:f3:35:57:6a:04:4d:c1:81:d0:43:36:1f:ad:
b8:0c:fc:88:98:9c:6b:e3:90:3e:5c:d0:83:33:ac:
52:19:12:e7:d6:ff:d8:06:dd:80:e4:5d:f1:4a:83:
07:e3:30:cd:9b:f4:e6:f3:ce:d6:7e:23:be:82:20:
bc:9d:71:9f:14:6e:cf:f1:fd:53:4d:6d:7f:3e:b9:
b7:5d:1f:48:65:9c:07:d6:ff:cf:b7:10:81:00:a9:
a5:c4:1c:53:73:b5:4c:00:d6:a4:7e:fc:4e:5c:b8:
03:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:1D:7F:84:6B:6B:A3:0F:97:61:1E:ED:35:7B:DE:A9:C6:BC:5A:52
X509v3 Authority Key Identifier:
keyid:44:62:A2:E3:D1:53:66:84:A6:AD:23:28:0C:FD:A1:85:85:BA:46:E8
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36455FB/157D54F455CB11ED97DF9691F1222468/RGKi49FTZoSmrSMoDP2hhYW6Rug.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/RGKi49FTZoSmrSMoDP2hhYW6Rug.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36455FB/157D54F455CB11ED97DF9691F1222468/CB200990B0EE11ED9130F4BDF1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.212.156.0/22
Signature Algorithm: sha256WithRSAEncryption
a4:31:98:58:6e:78:3e:63:73:b3:d9:c7:bd:89:17:27:b1:02:
47:51:af:d5:15:c4:c1:f0:13:8c:34:ec:04:1b:87:e1:66:cd:
5a:cf:32:98:ba:05:e9:e9:2a:74:a2:ae:95:ab:96:5a:c6:fa:
2e:87:b4:29:29:18:08:b0:ee:d2:66:fa:0c:bd:2d:94:d9:17:
3a:10:c3:cf:24:37:70:43:c0:b1:1c:b5:d0:0f:04:f9:16:07:
84:ad:ec:18:b4:32:6d:ad:5e:24:04:f7:a0:d3:30:10:81:dc:
b1:52:10:58:9d:14:1a:4a:85:9d:2a:55:97:ad:a0:0b:08:0b:
f1:c2:21:a9:2d:3e:47:64:6a:12:d4:fc:ea:5e:a3:0c:a6:b9:
81:76:30:e9:70:9d:7c:a5:04:f3:79:7d:a8:c0:4f:3d:15:5a:
f2:3d:6d:c3:c3:52:c9:41:c2:e2:fd:17:78:f9:dc:70:db:4c:
b4:ed:44:f8:79:e6:70:3d:8f:71:4c:fa:ad:11:61:43:15:f0:
18:ed:ba:86:33:ba:fb:f0:f5:ce:cb:59:68:4e:33:a6:ae:e3:
ec:8c:e7:f1:a7:f4:a1:0f:39:73:87:68:7c:46:d9:2d:dc:5d:
3a:c6:13:7e:49:70:2c:ac:e7:2c:31:a7:e1:e9:17:07:23:58:
70:58:d3:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 28 03:12:54 2024 by rpki-client on console-fra.rpki-client.org