Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3654397/8D7B31801F9611ED8233F28CF1222468/1335FFE28D3811EFB04BF79A762E951A.roa
File: 1335FFE28D3811EFB04BF79A762E951A.roa (raw, json)
Hash identifier: 99TholDjwcLj+m/yJ7KqVhsO3P8ByuERL/bCKtbBO8M=
Subject key identifier: 13:2C:A8:D8:80:59:7B:48:11:3D:3A:CA:21:2D:68:2A:D2:52:30:E3
Certificate issuer: /CN=F3654397AF/serialNumber=03E20EEF150503A0B195118AE887687F5A4279C2
Certificate serial: 0361
Authority key identifier: 03:E2:0E:EF:15:05:03:A0:B1:95:11:8A:E8:87:68:7F:5A:42:79:C2
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/A-IO7xUFA6CxlRGK6Idof1pCecI.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3654397/8D7B31801F9611ED8233F28CF1222468/1335FFE28D3811EFB04BF79A762E951A.roa
Signing time: Fri 18 Oct 2024 10:02:25 +0000
ROA not before: Fri 18 Oct 2024 10:02:22 +0000
ROA not after: Sat 18 Oct 2025 10:02:22 +0000
asID: 328660
IP address blocks: 102.223.231.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3654397/8D7B31801F9611ED8233F28CF1222468/A-IO7xUFA6CxlRGK6Idof1pCecI.crl
rsync://rpki.afrinic.net/repository/member_repository/F3654397/8D7B31801F9611ED8233F28CF1222468/A-IO7xUFA6CxlRGK6Idof1pCecI.mft
rsync://rpki.afrinic.net/repository/afrinic/A-IO7xUFA6CxlRGK6Idof1pCecI.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 865 (0x361)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3654397AF/serialNumber=03E20EEF150503A0B195118AE887687F5A4279C2
Validity
Not Before: Oct 18 10:02:22 2024 GMT
Not After : Oct 18 10:02:22 2025 GMT
Subject: CN=67123231-a56e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:0a:4d:1b:31:2c:ce:7b:0f:18:83:84:4f:1f:
12:23:d0:1a:99:ee:07:85:4b:a4:95:a5:3e:63:be:
c9:b5:29:22:f6:8a:e7:b6:0a:01:1c:ae:57:1b:2b:
5f:f8:b1:a9:44:05:e1:72:5b:a4:50:09:76:6d:0e:
68:71:29:c3:cd:8c:d5:cf:6d:5d:79:bd:d8:bb:d7:
34:50:57:20:22:13:e7:79:92:b4:ad:b3:41:8e:37:
5b:66:38:24:b1:f3:40:9c:ef:32:d2:1c:46:bc:a4:
71:da:ce:68:67:27:ae:80:b6:a3:86:26:2c:a1:d2:
d7:38:47:ba:60:88:4f:45:86:ee:0c:c4:f6:19:80:
a6:e7:bd:e4:09:86:5e:7c:43:05:37:41:1d:b5:56:
5d:9d:72:de:c4:2b:61:47:66:0f:00:8e:82:c0:2d:
1c:10:5b:5f:98:5e:28:8d:35:9b:17:df:b6:99:0c:
f8:3f:bc:2c:21:d6:93:8e:bf:38:ce:3b:d5:a4:ff:
86:cc:3e:1c:28:ce:78:3d:d3:1e:b0:42:cf:fc:2f:
bf:36:20:97:dd:96:69:d8:ef:2b:7d:d4:8a:b4:47:
5f:f5:37:01:24:57:4c:56:ad:83:ee:66:38:4b:77:
51:e1:c3:f9:e2:46:ed:59:28:28:30:e9:f7:4e:65:
bb:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:2C:A8:D8:80:59:7B:48:11:3D:3A:CA:21:2D:68:2A:D2:52:30:E3
X509v3 Authority Key Identifier:
keyid:03:E2:0E:EF:15:05:03:A0:B1:95:11:8A:E8:87:68:7F:5A:42:79:C2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3654397/8D7B31801F9611ED8233F28CF1222468/A-IO7xUFA6CxlRGK6Idof1pCecI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/A-IO7xUFA6CxlRGK6Idof1pCecI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3654397/8D7B31801F9611ED8233F28CF1222468/1335FFE28D3811EFB04BF79A762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.223.231.0/24
Signature Algorithm: sha256WithRSAEncryption
b7:12:68:6e:17:46:8c:5d:6c:85:88:75:3c:3f:a6:e1:9b:41:
c7:b8:e2:00:d1:f8:29:8d:a6:04:07:85:d5:b9:4c:d8:fa:ae:
6b:ca:81:a6:fc:73:30:73:76:ea:7d:be:c1:57:8f:0b:cb:e7:
37:69:e5:92:2b:e3:fd:6a:6f:1f:97:b6:f7:0b:37:8b:28:68:
76:29:15:73:de:a4:2f:ec:6a:25:a9:0e:b7:3b:28:71:af:5b:
cb:62:aa:ea:49:08:8e:d5:e5:b4:d7:a7:64:b9:a3:08:a9:07:
66:32:fc:b3:a9:33:6c:e6:2c:19:4a:cd:f5:05:0b:e1:fb:8f:
36:73:94:91:15:b6:d4:ff:4d:da:04:28:ca:8a:70:f2:6b:54:
c0:40:da:58:70:14:72:e3:45:b9:51:40:c9:0c:ba:fe:23:81:
61:fd:8c:e1:e6:13:dc:a0:de:9a:98:5b:12:f3:37:04:b7:6d:
6c:2f:50:c0:ed:39:19:45:a8:e0:dc:65:d0:9c:66:fb:5c:30:
1c:38:da:01:27:29:82:c6:ad:5b:d4:f7:1d:62:2f:c9:7a:8e:
59:d2:6b:6f:8d:1d:cb:e7:1e:49:5a:df:6e:c1:9a:07:e6:8e:
23:88:62:10:98:1c:2d:de:59:ba:89:37:4b:a4:a7:37:bc:61:
6c:3a:4d:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:03:34 2024 by rpki-client on console-ams.rpki-client.org