Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3654397/8D7B31801F9611ED8233F28CF1222468/874E638C8D2F11EF9C8AF066762E951A.roa
File: 874E638C8D2F11EF9C8AF066762E951A.roa (raw, json)
Hash identifier: O85avq2bUivuWjrVehcYQJBynrJ6PpYQYRDS324FA9Y=
Subject key identifier: A6:40:87:08:37:89:20:13:AA:C1:BB:59:F0:AD:62:CF:8B:4E:39:AE
Certificate issuer: /CN=F3654397AF/serialNumber=03E20EEF150503A0B195118AE887687F5A4279C2
Certificate serial: 0356
Authority key identifier: 03:E2:0E:EF:15:05:03:A0:B1:95:11:8A:E8:87:68:7F:5A:42:79:C2
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/A-IO7xUFA6CxlRGK6Idof1pCecI.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3654397/8D7B31801F9611ED8233F28CF1222468/874E638C8D2F11EF9C8AF066762E951A.roa
Signing time: Fri 18 Oct 2024 09:01:14 +0000
ROA not before: Fri 18 Oct 2024 09:01:11 +0000
ROA not after: Sat 18 Oct 2025 09:01:11 +0000
asID: 328660
IP address blocks: 102.223.228.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3654397/8D7B31801F9611ED8233F28CF1222468/A-IO7xUFA6CxlRGK6Idof1pCecI.crl
rsync://rpki.afrinic.net/repository/member_repository/F3654397/8D7B31801F9611ED8233F28CF1222468/A-IO7xUFA6CxlRGK6Idof1pCecI.mft
rsync://rpki.afrinic.net/repository/afrinic/A-IO7xUFA6CxlRGK6Idof1pCecI.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 854 (0x356)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3654397AF/serialNumber=03E20EEF150503A0B195118AE887687F5A4279C2
Validity
Not Before: Oct 18 09:01:11 2024 GMT
Not After : Oct 18 09:01:11 2025 GMT
Subject: CN=671223da-04cc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:0b:7c:7f:e0:05:9e:e0:bf:7a:29:63:c2:bd:
50:9a:9e:fc:0f:c4:e5:bb:15:47:9b:a1:d6:fa:72:
2f:a9:dc:2c:1a:62:a5:cd:2e:64:54:e5:66:09:2e:
69:87:fc:8e:f6:65:23:8e:10:56:c0:05:e0:3e:02:
15:ee:b0:33:cf:0f:c2:36:00:b3:5e:6c:71:54:0f:
39:36:96:00:18:d2:ce:c0:d0:74:bf:ac:41:80:3a:
9e:ef:fd:16:81:9a:60:ff:6a:e6:04:4f:c9:7a:43:
0e:bc:c0:34:92:42:c3:34:44:33:f0:f9:91:2e:92:
89:70:b2:df:cc:c7:ef:74:f3:7c:2f:58:7d:39:da:
80:c7:3d:e2:12:bc:dd:ac:34:f8:91:60:ff:a0:d1:
36:50:d5:d5:15:d1:4d:74:ba:b1:f5:75:d7:42:96:
7b:04:c8:94:3d:ca:60:f4:c5:e8:03:d2:78:f7:ae:
24:7d:e8:b3:6a:02:9d:f0:87:5f:cc:9d:ae:6c:5b:
46:ae:a7:6a:7a:1b:c8:ec:76:b8:c7:7a:42:af:3e:
92:34:a0:6c:b4:53:3b:99:c0:75:4f:9b:47:9b:df:
c5:ea:48:e9:8b:f8:dd:4a:ce:eb:b3:17:00:bc:3a:
20:c0:b5:27:8e:f5:f4:8a:52:1f:22:56:86:ce:0d:
5d:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:40:87:08:37:89:20:13:AA:C1:BB:59:F0:AD:62:CF:8B:4E:39:AE
X509v3 Authority Key Identifier:
keyid:03:E2:0E:EF:15:05:03:A0:B1:95:11:8A:E8:87:68:7F:5A:42:79:C2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3654397/8D7B31801F9611ED8233F28CF1222468/A-IO7xUFA6CxlRGK6Idof1pCecI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/A-IO7xUFA6CxlRGK6Idof1pCecI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3654397/8D7B31801F9611ED8233F28CF1222468/874E638C8D2F11EF9C8AF066762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.223.228.0/22
Signature Algorithm: sha256WithRSAEncryption
a4:a0:6f:6c:db:08:64:e0:ec:9f:e1:29:8c:e9:bd:5b:43:28:
3b:0f:82:47:ee:3f:71:81:47:c4:26:5c:95:4d:f7:7d:69:fa:
1b:13:a9:34:0d:7c:3f:2c:52:a0:2f:5b:68:68:50:d2:1c:da:
fa:a1:4f:bf:48:aa:f4:ae:98:aa:d7:11:44:44:9c:62:da:9d:
5f:8b:72:a0:1e:31:b0:7a:8a:1e:2c:db:c5:91:57:27:b1:1a:
87:ba:9b:73:7c:32:3c:b1:2e:81:c1:c9:ae:a9:c1:9e:7c:c0:
07:f1:c3:fd:da:47:ef:d5:78:b1:64:0c:75:94:e7:c8:49:b5:
e1:3d:ee:bc:3a:ff:62:b5:bf:09:1e:37:04:d1:a4:4c:cc:15:
16:a2:1e:b1:36:00:ac:ab:4e:b9:8c:c4:ea:03:39:53:ac:bf:
5a:19:36:b0:12:00:78:02:ad:07:c2:8f:2f:85:55:95:e6:8c:
82:dc:e2:7f:df:5c:35:29:e6:91:af:ed:f2:f4:0b:f8:40:83:
76:62:de:9d:3f:44:d7:6e:40:8f:06:b5:59:b7:70:87:7c:f7:
f5:9b:ad:e7:79:ad:98:be:ee:19:7e:4e:eb:f0:20:a8:fc:00:
81:4f:59:e6:f0:4e:17:a3:fc:d3:ba:17:c6:9f:c6:08:5b:a3:
99:0a:7b:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 03:52:54 2024 by rpki-client on console-fra.rpki-client.org