Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F364EAB0/3CAB40F448EA11EF885DEE9E762E951A/7DA8929649D011EF8540F4B5762E951A.roa
File: 7DA8929649D011EF8540F4B5762E951A.roa (raw, json)
Hash identifier: YovCsrPwXRshmsWk3A69TUGehERZxXiw2xy+oTe5v1Y=
Subject key identifier: CA:94:6E:95:47:27:8C:B5:0B:BD:39:73:96:37:A9:FF:6A:2F:67:F3
Certificate issuer: /CN=F364EAB0AF/serialNumber=D43A2A54B2CD367642C768668A13846B89EC8DEF
Certificate serial: 05
Authority key identifier: D4:3A:2A:54:B2:CD:36:76:42:C7:68:66:8A:13:84:6B:89:EC:8D:EF
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/1DoqVLLNNnZCx2hmihOEa4nsje8.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F364EAB0/3CAB40F448EA11EF885DEE9E762E951A/7DA8929649D011EF8540F4B5762E951A.roa
Signing time: Wed 24 Jul 2024 15:22:08 +0000
ROA not before: Wed 24 Jul 2024 15:22:05 +0000
ROA not after: Sun 31 Jul 2044 15:22:05 +0000
asID: 14618
IP address blocks: 102.208.248.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F364EAB0/3CAB40F448EA11EF885DEE9E762E951A/1DoqVLLNNnZCx2hmihOEa4nsje8.crl
rsync://rpki.afrinic.net/repository/member_repository/F364EAB0/3CAB40F448EA11EF885DEE9E762E951A/1DoqVLLNNnZCx2hmihOEa4nsje8.mft
rsync://rpki.afrinic.net/repository/afrinic/1DoqVLLNNnZCx2hmihOEa4nsje8.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 20 Oct 2024 00:05:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5 (0x5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F364EAB0AF/serialNumber=D43A2A54B2CD367642C768668A13846B89EC8DEF
Validity
Not Before: Jul 24 15:22:05 2024 GMT
Not After : Jul 31 15:22:05 2044 GMT
Subject: CN=66a11c20-83c8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:e2:b7:c4:90:96:f0:fe:b0:9b:44:0a:eb:80:
c8:cc:b2:f3:60:ae:41:34:72:e1:46:94:6c:ee:0a:
e7:6b:4f:53:49:b6:32:b4:f4:7c:1a:27:44:e4:8d:
66:b7:43:87:8a:6a:fa:77:7c:a7:ce:51:7d:f5:cb:
f7:47:33:7d:81:72:55:4e:70:aa:3e:60:28:00:91:
9c:ad:32:6e:94:12:cc:59:98:a0:fc:b7:28:1f:d7:
98:db:5a:42:17:0c:25:b3:b8:67:e9:6a:68:72:34:
2b:f9:79:b2:b0:31:6f:73:7d:cb:87:8a:3a:b3:d0:
69:0c:3f:f1:07:8d:3e:40:4b:72:d5:24:f4:1a:c1:
24:42:8f:ae:e9:67:9f:1c:8e:da:26:99:41:0c:28:
f9:e3:c6:1c:05:4a:c7:66:b7:a9:90:ac:4a:da:5f:
e8:77:4a:4d:ed:a0:a3:ef:50:ed:d4:86:61:56:da:
11:9e:0a:9f:5a:57:26:52:1d:14:be:a3:22:74:f5:
ac:7c:58:32:06:47:4d:12:a3:7f:f1:f5:7f:e7:41:
d9:fe:21:de:ba:fc:b3:d3:09:b6:64:ca:df:b0:92:
e9:67:c7:7e:5a:98:86:dd:33:8d:5b:5e:b4:2c:0e:
5e:3b:0d:75:bf:a0:a6:34:f3:df:e7:fb:e6:0f:99:
a6:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:94:6E:95:47:27:8C:B5:0B:BD:39:73:96:37:A9:FF:6A:2F:67:F3
X509v3 Authority Key Identifier:
keyid:D4:3A:2A:54:B2:CD:36:76:42:C7:68:66:8A:13:84:6B:89:EC:8D:EF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F364EAB0/3CAB40F448EA11EF885DEE9E762E951A/1DoqVLLNNnZCx2hmihOEa4nsje8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/1DoqVLLNNnZCx2hmihOEa4nsje8.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F364EAB0/3CAB40F448EA11EF885DEE9E762E951A/7DA8929649D011EF8540F4B5762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.208.248.0/22
Signature Algorithm: sha256WithRSAEncryption
8f:e0:d3:69:5e:c0:25:86:e6:53:3c:dd:91:00:aa:e0:fc:19:
b8:75:c1:ee:69:54:d1:56:b0:be:37:a6:36:52:01:e8:cd:d2:
54:46:df:9f:08:cf:1d:51:1f:d9:22:ec:4e:8a:b6:07:63:32:
8e:14:df:6f:f7:55:49:00:0b:39:a4:6f:ef:09:8c:eb:bf:53:
7d:be:7d:a4:a4:18:a3:ad:35:9f:29:81:5b:bd:e4:b7:49:fe:
e9:55:d0:7b:99:26:4b:ec:73:b6:81:bb:d2:fa:74:27:8b:b9:
dd:0a:51:95:c0:ee:bb:26:39:9d:7f:16:9b:0e:60:ea:2e:f5:
73:3c:4e:e2:62:ca:92:07:bf:2c:39:8b:9f:68:88:36:3c:e8:
e4:d7:da:f3:66:5b:7e:d0:a6:91:ce:22:2f:75:6d:f2:11:fe:
47:6a:5b:cf:65:6d:4d:69:5f:ca:f4:44:a9:29:89:c4:a9:f3:
ca:b4:86:0d:16:26:e6:08:e5:c1:70:4b:c9:20:f6:1d:fa:ab:
f6:7f:b2:4d:36:4a:14:64:39:02:03:6e:da:67:3d:21:66:9c:
a4:55:78:8c:67:1b:c1:2e:73:23:3e:0b:7f:e5:f1:1c:b5:94:
7e:ce:b5:37:d6:00:93:cd:c5:62:41:87:51:22:0d:b6:fa:29:
7b:d5:fc:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Oct 18 04:55:53 2024 by rpki-client on console-fra.rpki-client.org