Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F366DA43/24A4D94634EE11ED88ECD0ECF1222468/18EA1A1EEFEA11EDBAF5D7884AD9E6FC.roa
File: 18EA1A1EEFEA11EDBAF5D7884AD9E6FC.roa (raw, json)
Hash identifier: Suhxb/oULjMaEZsuBizxaGFSrHq0egh0mczTJVoAnnw=
Subject key identifier: DE:B4:1E:EB:91:E6:DC:76:31:35:68:66:07:A3:62:93:75:0C:DC:A9
Certificate issuer: /CN=F366DA43AF/serialNumber=0620973C4AA194B69F477D9BED5597C94D0DD0F8
Certificate serial: 0100
Authority key identifier: 06:20:97:3C:4A:A1:94:B6:9F:47:7D:9B:ED:55:97:C9:4D:0D:D0:F8
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/BiCXPEqhlLafR32b7VWXyU0N0Pg.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F366DA43/24A4D94634EE11ED88ECD0ECF1222468/18EA1A1EEFEA11EDBAF5D7884AD9E6FC.roa
Signing time: Thu 11 May 2023 10:53:44 +0000
ROA not before: Thu 11 May 2023 10:53:40 +0000
ROA not after: Tue 31 May 2033 10:53:40 +0000
asID: 329097
IP address blocks: 102.215.39.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F366DA43/24A4D94634EE11ED88ECD0ECF1222468/BiCXPEqhlLafR32b7VWXyU0N0Pg.crl
rsync://rpki.afrinic.net/repository/member_repository/F366DA43/24A4D94634EE11ED88ECD0ECF1222468/BiCXPEqhlLafR32b7VWXyU0N0Pg.mft
rsync://rpki.afrinic.net/repository/afrinic/BiCXPEqhlLafR32b7VWXyU0N0Pg.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 21 May 2024 00:04:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 256 (0x100)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F366DA43AF/serialNumber=0620973C4AA194B69F477D9BED5597C94D0DD0F8
Validity
Not Before: May 11 10:53:40 2023 GMT
Not After : May 31 10:53:40 2033 GMT
Subject: CN=645cc938-37a8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:3b:1b:37:29:6e:fd:f2:4e:53:c2:f0:37:68:
11:1c:a8:fb:81:b1:80:d9:ea:28:1f:21:1f:ec:39:
b6:bd:a7:f9:0a:3f:54:14:14:01:49:d4:60:97:02:
7d:66:dc:42:d3:1c:ca:45:3c:62:ce:e3:89:9c:ab:
38:8e:78:8b:48:48:85:aa:0b:03:74:ae:7e:3a:3b:
4a:7b:af:39:c5:4e:21:a2:f6:13:09:2d:ac:80:9e:
48:2c:86:c7:3c:da:8f:cf:fd:79:60:94:57:67:b5:
15:e8:02:5a:ad:24:b2:c2:7b:a4:88:5e:4a:12:63:
00:aa:d5:53:40:09:8f:7e:4f:9f:09:7e:61:74:b5:
8c:6d:eb:36:a7:97:0b:b6:84:0a:ab:7a:33:5f:c7:
6f:22:e2:ff:5b:5d:74:bd:45:88:2a:23:b6:9d:28:
3b:ad:8d:a6:45:4b:19:b5:0b:32:37:06:69:a3:f0:
df:4b:83:1d:c4:9d:a6:c6:3b:48:82:72:20:9b:3f:
49:bb:36:0f:ab:d9:29:dc:cf:b4:28:94:2d:fc:a4:
ae:72:6a:a5:69:df:2a:7b:c5:44:fb:b4:57:30:a3:
c2:9d:be:b0:f8:19:8f:40:65:a4:1b:8c:ae:95:76:
5a:91:50:42:2b:c3:86:51:e5:f1:d0:4e:04:6e:99:
22:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:B4:1E:EB:91:E6:DC:76:31:35:68:66:07:A3:62:93:75:0C:DC:A9
X509v3 Authority Key Identifier:
keyid:06:20:97:3C:4A:A1:94:B6:9F:47:7D:9B:ED:55:97:C9:4D:0D:D0:F8
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F366DA43/24A4D94634EE11ED88ECD0ECF1222468/BiCXPEqhlLafR32b7VWXyU0N0Pg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/BiCXPEqhlLafR32b7VWXyU0N0Pg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F366DA43/24A4D94634EE11ED88ECD0ECF1222468/18EA1A1EEFEA11EDBAF5D7884AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.215.39.0/24
Signature Algorithm: sha256WithRSAEncryption
8e:f1:c2:d8:b0:f4:3d:3e:8a:62:d7:9a:89:67:f5:8a:3c:3d:
af:c9:d0:0a:c0:bc:50:59:07:9d:ab:d9:2a:0c:bf:4d:bb:34:
55:b1:c4:cf:0e:bf:35:ee:20:3a:23:87:e3:03:eb:56:b1:f5:
a5:bb:c3:4d:a6:d7:ef:2b:1f:4d:39:11:1c:01:e1:89:ca:ec:
d9:f5:97:a6:11:03:42:14:0b:4d:8f:0d:0d:2e:5b:24:97:a8:
77:d7:59:99:0b:42:61:73:c5:c6:39:f0:1c:76:4b:4b:75:93:
83:63:48:25:a8:12:cb:09:a8:de:25:9b:c9:40:2c:b1:8a:84:
04:f8:46:c4:6d:28:8c:48:9f:ec:51:24:25:f6:39:b0:4d:5f:
85:4a:d4:47:07:f8:36:86:b9:8c:2f:6d:d1:b2:20:5a:67:83:
78:f4:27:28:52:7d:4a:26:62:f2:b2:95:d5:e1:45:cf:56:4c:
fa:82:5b:cb:80:1e:f7:e8:ec:fa:dc:ae:1e:bd:e0:fc:0a:26:
7a:77:1b:1d:f6:0e:1b:40:78:14:d8:dd:37:ca:2e:8c:22:83:
e8:5f:92:34:e3:d0:b6:49:65:1c:57:cb:59:7c:e7:42:44:ad:
b4:d3:42:f9:b0:74:bd:2c:41:af:75:d7:cb:3c:da:0a:2e:f2:
e4:21:47:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 19 02:39:31 2024 by rpki-client on console-fra.rpki-client.org