Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F365E0EF/377530C4DAAE11ECA024B6D3F1222468/D763DBA871A111EF9436E86F762E951A.roa
File: D763DBA871A111EF9436E86F762E951A.roa (raw, json)
Hash identifier: qropYAoqucax6ncLs9eruJFo9UBTM6S+IM1PViOJCTw=
Subject key identifier: C7:8F:7E:DD:BF:91:45:6B:A1:11:B5:85:79:ED:47:B3:E1:77:A6:D1
Certificate issuer: /CN=F365E0EFAF/serialNumber=399D04F1168E65976D1AD6E8ECC5C01414781ED5
Certificate serial: 0368
Authority key identifier: 39:9D:04:F1:16:8E:65:97:6D:1A:D6:E8:EC:C5:C0:14:14:78:1E:D5
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/OZ0E8RaOZZdtGtbo7MXAFBR4HtU.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F365E0EF/377530C4DAAE11ECA024B6D3F1222468/D763DBA871A111EF9436E86F762E951A.roa
Signing time: Fri 13 Sep 2024 07:28:59 +0000
ROA not before: Fri 13 Sep 2024 07:28:55 +0000
ROA not after: Mon 13 Sep 2027 07:28:55 +0000
asID: 328164
IP address blocks: 102.36.248.0/22 maxlen: 22
2c0f:ebe8::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F365E0EF/377530C4DAAE11ECA024B6D3F1222468/OZ0E8RaOZZdtGtbo7MXAFBR4HtU.crl
rsync://rpki.afrinic.net/repository/member_repository/F365E0EF/377530C4DAAE11ECA024B6D3F1222468/OZ0E8RaOZZdtGtbo7MXAFBR4HtU.mft
rsync://rpki.afrinic.net/repository/afrinic/OZ0E8RaOZZdtGtbo7MXAFBR4HtU.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 872 (0x368)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F365E0EFAF/serialNumber=399D04F1168E65976D1AD6E8ECC5C01414781ED5
Validity
Not Before: Sep 13 07:28:55 2024 GMT
Not After : Sep 13 07:28:55 2027 GMT
Subject: CN=66e3e9bb-18ae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:03:d7:6a:b5:98:97:8e:02:03:c3:62:a2:71:
69:98:d8:0f:44:cf:09:e0:38:14:37:78:39:c2:42:
bc:d1:aa:dc:01:85:78:4f:d1:19:53:a2:75:7b:85:
b4:96:aa:73:13:c3:54:4c:61:ac:d3:11:86:03:13:
ae:78:19:19:b8:4b:ec:37:93:89:05:d8:7f:f4:18:
12:9b:7d:bc:30:ca:78:8f:dc:66:6e:d2:ef:09:db:
d3:3f:cf:72:59:9b:5c:c2:63:29:0e:22:77:19:0c:
5b:0c:00:66:5d:20:c4:cc:a6:70:ac:e4:55:ae:ea:
94:53:cb:84:9b:ac:98:25:5e:52:5b:4c:0d:34:d2:
91:ef:55:8f:8f:ee:64:c7:56:53:ff:8a:e3:e0:c1:
51:a3:7f:41:7c:de:31:12:4b:24:b9:de:61:e4:59:
8a:6b:23:6d:54:e0:00:5d:9d:8b:4c:07:d1:d4:f9:
d4:8a:18:a2:41:d6:98:7d:8a:68:a9:f9:be:8d:75:
24:50:51:59:b5:51:b9:90:62:04:21:aa:68:7b:15:
6a:6e:7d:46:11:f7:f5:30:c1:77:84:00:0c:7a:d0:
21:85:e1:3a:14:e1:a8:9e:09:0a:bd:2d:ef:7f:30:
81:4d:c2:db:71:fc:47:2d:31:ff:2d:ed:20:53:85:
00:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:8F:7E:DD:BF:91:45:6B:A1:11:B5:85:79:ED:47:B3:E1:77:A6:D1
X509v3 Authority Key Identifier:
keyid:39:9D:04:F1:16:8E:65:97:6D:1A:D6:E8:EC:C5:C0:14:14:78:1E:D5
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F365E0EF/377530C4DAAE11ECA024B6D3F1222468/OZ0E8RaOZZdtGtbo7MXAFBR4HtU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/OZ0E8RaOZZdtGtbo7MXAFBR4HtU.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F365E0EF/377530C4DAAE11ECA024B6D3F1222468/D763DBA871A111EF9436E86F762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.36.248.0/22
IPv6:
2c0f:ebe8::/32
Signature Algorithm: sha256WithRSAEncryption
8c:44:da:cc:a3:b0:ed:fa:66:df:09:3a:f5:66:1f:d7:4d:27:
6b:57:a5:7f:35:f2:93:56:ad:c2:fb:40:65:60:3e:e1:9a:da:
e8:10:64:1e:25:64:f5:a3:65:ca:e5:38:e9:4d:de:81:53:8d:
71:62:6c:64:49:d5:31:e6:52:6b:32:f1:b3:78:1f:9b:4f:0d:
02:34:5a:4b:c0:3a:af:3f:2e:d1:c1:78:42:cb:b3:7a:b2:ea:
ba:9d:8b:92:48:fe:eb:13:ac:e5:a6:5f:9d:bd:51:4e:7d:8a:
02:66:7e:0b:92:b5:48:bc:5f:32:62:5b:84:78:9f:65:10:7d:
c3:37:2d:e2:dc:6e:4b:54:51:d0:f8:b9:cf:43:17:71:39:0e:
85:e2:9e:2d:4a:b1:b2:2b:71:e0:a9:fa:c3:31:f2:fc:d9:e7:
bd:bf:90:a6:e1:f6:36:26:60:4d:a4:e1:7b:cb:b2:35:08:01:
b6:5a:0d:0c:75:b7:61:7d:0e:51:d7:2a:66:7c:71:a2:0c:90:
a9:2e:84:b6:68:e9:8f:7f:52:44:ad:54:9f:8f:37:87:ea:48:
b1:24:86:73:b1:c7:0d:09:80:5b:e4:2c:33:45:b1:73:eb:4b:
d2:53:8a:ea:af:ad:3e:17:73:71:56:4b:a4:96:e1:2f:59:c6:
df:46:40:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:03:35 2024 by rpki-client on console-ams.rpki-client.org