Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F366DA43/24A4D94634EE11ED88ECD0ECF1222468/835DF5F834EE11ED901FCEEDF1222468.roa
File: 835DF5F834EE11ED901FCEEDF1222468.roa (raw, json)
Hash identifier: 7FPE0FhlSAjUMelmubiUwThbu0o5YNAG9Z3oUXP8EmA=
Subject key identifier: 5B:70:AE:8E:59:E7:6B:57:DD:70:70:A8:E1:5F:9B:1B:E5:DE:25:77
Certificate issuer: /CN=F366DA43AF/serialNumber=0620973C4AA194B69F477D9BED5597C94D0DD0F8
Certificate serial: 02
Authority key identifier: 06:20:97:3C:4A:A1:94:B6:9F:47:7D:9B:ED:55:97:C9:4D:0D:D0:F8
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/BiCXPEqhlLafR32b7VWXyU0N0Pg.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F366DA43/24A4D94634EE11ED88ECD0ECF1222468/835DF5F834EE11ED901FCEEDF1222468.roa
Signing time: Thu 15 Sep 2022 12:04:13 +0000
ROA not before: Thu 15 Sep 2022 12:04:10 +0000
ROA not after: Wed 15 Sep 2032 12:04:10 +0000
asID: 329097
IP address blocks: 102.215.38.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F366DA43/24A4D94634EE11ED88ECD0ECF1222468/BiCXPEqhlLafR32b7VWXyU0N0Pg.crl
rsync://rpki.afrinic.net/repository/member_repository/F366DA43/24A4D94634EE11ED88ECD0ECF1222468/BiCXPEqhlLafR32b7VWXyU0N0Pg.mft
rsync://rpki.afrinic.net/repository/afrinic/BiCXPEqhlLafR32b7VWXyU0N0Pg.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2 (0x2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F366DA43AF/serialNumber=0620973C4AA194B69F477D9BED5597C94D0DD0F8
Validity
Not Before: Sep 15 12:04:10 2022 GMT
Not After : Sep 15 12:04:10 2032 GMT
Subject: CN=632314bd-01a7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:ea:4a:f0:ce:39:78:81:83:a1:7c:fb:bd:eb:
90:2d:35:c4:98:b5:d3:16:bf:cc:79:43:eb:7e:e5:
25:71:f0:b8:a7:09:34:0b:dc:5a:6a:43:99:95:1b:
cc:53:4d:be:2c:8a:83:27:46:89:b8:a6:84:8c:fc:
89:19:3d:c0:dc:98:7a:d9:73:d3:3b:ef:70:d2:40:
bb:78:b8:92:dc:76:5c:77:91:f0:9b:c8:a3:27:ac:
29:4d:df:95:ac:ec:7c:e8:3f:48:bd:16:fe:fa:ab:
0e:ba:53:2b:99:bc:8d:70:4a:d5:5c:62:1f:12:32:
0a:80:a0:9a:6e:3e:37:9e:82:46:ae:1d:5e:be:22:
79:70:62:e6:02:66:ee:a2:cf:55:20:c9:d4:90:41:
47:6e:6f:e5:e4:24:be:19:92:77:40:c7:0a:64:6a:
40:29:0b:33:05:5f:aa:29:13:73:50:1e:89:e0:bf:
50:19:27:7c:ac:3c:e1:b0:a8:2b:b6:05:99:a8:e2:
07:92:34:b5:ff:ee:67:f0:c2:33:b4:b3:fa:d7:e7:
d1:42:62:96:41:b5:d7:81:59:f0:ef:0f:0b:85:3d:
b5:9d:49:15:13:fb:51:a7:8d:90:10:f6:24:86:50:
a2:80:b6:a7:07:32:25:3b:ae:14:74:e5:1d:9d:9e:
8f:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:70:AE:8E:59:E7:6B:57:DD:70:70:A8:E1:5F:9B:1B:E5:DE:25:77
X509v3 Authority Key Identifier:
keyid:06:20:97:3C:4A:A1:94:B6:9F:47:7D:9B:ED:55:97:C9:4D:0D:D0:F8
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F366DA43/24A4D94634EE11ED88ECD0ECF1222468/BiCXPEqhlLafR32b7VWXyU0N0Pg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/BiCXPEqhlLafR32b7VWXyU0N0Pg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F366DA43/24A4D94634EE11ED88ECD0ECF1222468/835DF5F834EE11ED901FCEEDF1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.215.38.0/24
Signature Algorithm: sha256WithRSAEncryption
4a:b7:7c:b3:55:bb:dd:8e:cb:92:32:05:51:dc:a4:64:2d:f3:
54:bc:98:0e:88:42:6a:1f:99:de:0f:18:41:9e:e0:18:36:cb:
64:dc:46:a5:b1:76:ca:e3:40:54:bc:f1:2f:bd:a7:ee:12:05:
1c:ab:95:58:3c:54:be:55:41:cd:82:18:07:be:cc:91:ec:8a:
e1:bc:99:03:f3:be:c4:95:df:04:6b:80:b4:67:e1:1d:76:62:
9f:e1:01:57:7f:ca:e1:06:9d:80:8f:8b:67:b0:9a:50:91:41:
d8:fd:cc:76:c0:cf:3f:5b:bd:7a:66:26:e4:4d:82:37:c8:69:
48:02:6f:ed:55:e8:6b:65:11:bd:0d:e5:03:1a:31:03:bd:28:
b7:f3:e5:3d:ac:63:2d:4c:69:54:3f:b5:bd:7c:3c:04:ca:60:
9c:e7:e0:55:10:f2:e1:79:af:ae:c9:5a:00:01:f3:6c:2a:4a:
f3:ce:5b:49:10:c8:c9:1b:a6:b8:fb:06:f1:4b:ec:0c:48:83:
4f:33:91:f0:7e:4d:07:58:ea:d5:22:dc:42:0b:06:a2:53:27:
43:cf:35:09:34:6e:42:e5:02:c4:54:57:8a:6e:05:61:4e:11:
89:92:1b:9a:4e:ee:66:fd:e5:96:25:96:44:c6:df:77:04:5e:
22:37:eb:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:03:43 2024 by rpki-client on console-ams.rpki-client.org