Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F367F26D/2D5854E870B911E9B7123D3FF8AEA228/877BAA2435EF11EE9AA840814AD9E6FC.roa
File: 877BAA2435EF11EE9AA840814AD9E6FC.roa (raw, json)
Hash identifier: L7v+Fkk6UZ4vZun6DcXrXQzXhAefHfj4VaNVSBn4npk=
Subject key identifier: 21:71:82:04:B4:73:3B:32:A2:A7:A6:FF:53:36:8C:BE:01:59:A0:6E
Certificate issuer: /CN=F367F26DAF/serialNumber=AB19964619FF85343CC091180673A8AC528610F4
Certificate serial: 065C
Authority key identifier: AB:19:96:46:19:FF:85:34:3C:C0:91:18:06:73:A8:AC:52:86:10:F4
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/qxmWRhn_hTQ8wJEYBnOorFKGEPQ.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F367F26D/2D5854E870B911E9B7123D3FF8AEA228/877BAA2435EF11EE9AA840814AD9E6FC.roa
Signing time: Tue 08 Aug 2023 13:28:58 +0000
ROA not before: Tue 08 Aug 2023 13:28:54 +0000
ROA not after: Fri 01 Dec 2028 13:28:54 +0000
asID: 328366
IP address blocks: 102.211.180.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F367F26D/2D5854E870B911E9B7123D3FF8AEA228/qxmWRhn_hTQ8wJEYBnOorFKGEPQ.crl
rsync://rpki.afrinic.net/repository/member_repository/F367F26D/2D5854E870B911E9B7123D3FF8AEA228/qxmWRhn_hTQ8wJEYBnOorFKGEPQ.mft
rsync://rpki.afrinic.net/repository/afrinic/qxmWRhn_hTQ8wJEYBnOorFKGEPQ.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 01 May 2024 09:43:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1628 (0x65c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F367F26DAF/serialNumber=AB19964619FF85343CC091180673A8AC528610F4
Validity
Not Before: Aug 8 13:28:54 2023 GMT
Not After : Dec 1 13:28:54 2028 GMT
Subject: CN=64d2431a-c8f9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:83:44:bd:88:b2:98:32:bb:3f:32:5d:b2:99:
af:e0:0d:09:0b:68:c5:0b:5f:74:eb:10:61:78:62:
9e:6f:1a:e9:ed:7c:61:da:b1:45:22:30:f4:cb:0a:
bf:49:ff:f8:1a:2a:65:9f:05:78:8c:fd:0e:da:95:
7f:f4:11:fb:db:bf:fd:d2:d3:a2:43:21:e8:76:88:
20:51:52:43:9d:e0:49:f8:20:83:83:ea:10:fe:54:
69:69:24:6d:8e:05:3a:77:d9:ac:07:5a:16:0f:70:
9b:47:51:8f:7d:99:36:c7:0c:9a:2f:4e:c1:cf:8f:
92:a0:60:25:3c:a6:5e:0d:5b:44:15:bb:f8:c5:19:
5f:9d:0f:f3:99:cd:92:a3:36:65:d7:d1:9d:f7:b3:
2c:e1:7f:ec:79:55:8e:fa:55:e1:d2:9e:af:57:a2:
9e:19:d8:97:5c:91:f2:a4:da:5e:fb:5f:5f:f9:6e:
dc:11:f8:d2:b2:7d:90:a8:50:a5:a2:2b:b8:5a:49:
8b:07:63:a6:08:31:c0:de:5f:49:18:71:8f:f2:53:
5a:28:ea:7a:1d:cf:e1:d3:c9:1f:c4:79:2c:73:86:
ea:48:06:d6:44:25:e0:3f:f1:15:e6:2d:3c:ba:db:
d8:73:37:f2:9d:8c:4c:78:84:c6:93:9a:06:d5:89:
58:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:71:82:04:B4:73:3B:32:A2:A7:A6:FF:53:36:8C:BE:01:59:A0:6E
X509v3 Authority Key Identifier:
keyid:AB:19:96:46:19:FF:85:34:3C:C0:91:18:06:73:A8:AC:52:86:10:F4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F367F26D/2D5854E870B911E9B7123D3FF8AEA228/qxmWRhn_hTQ8wJEYBnOorFKGEPQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/qxmWRhn_hTQ8wJEYBnOorFKGEPQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F367F26D/2D5854E870B911E9B7123D3FF8AEA228/877BAA2435EF11EE9AA840814AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.211.180.0/22
Signature Algorithm: sha256WithRSAEncryption
0b:a1:23:52:33:47:71:6c:34:2d:d7:0b:2d:8d:b4:9c:f1:4c:
d7:55:8b:a9:ad:16:ff:13:7c:d5:61:d9:f1:e8:06:73:28:a2:
d1:a4:dd:0c:05:4c:7d:e9:54:72:8c:a5:15:e9:3f:31:b5:6d:
46:ca:77:b4:96:76:e9:c2:99:cf:a9:70:7e:f9:93:8f:b0:1d:
52:89:23:e0:38:6d:19:da:6d:b1:1d:e0:66:6b:fe:64:74:39:
d2:62:a9:94:d7:d1:12:02:96:d7:e4:39:06:6c:48:e8:5e:bc:
3d:cd:45:a4:60:f0:b4:3a:3b:bf:f8:e4:0f:6e:21:fd:26:2f:
91:bd:41:6d:d2:ef:ab:99:75:16:23:3f:ec:06:61:b1:be:98:
19:68:e9:90:fe:6e:fa:6e:9e:00:ff:68:e8:2c:b0:0b:ee:5e:
83:2c:a0:8d:0b:33:b0:cf:58:a8:f2:99:63:fe:d1:96:bf:0e:
f8:25:01:3f:92:16:1f:3f:e1:35:b4:af:ce:aa:3e:06:a5:a1:
90:c4:44:40:27:60:8f:f0:bf:3f:c9:61:5e:44:d8:b1:0a:fe:
ef:9c:6c:9b:8e:1d:62:d3:6b:6a:73:00:ff:f5:6f:0a:83:44:
f2:20:ad:d3:bf:f5:8e:0e:e3:a7:95:41:a6:be:da:c3:29:13:
c4:41:df:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 30 02:02:29 2024 by rpki-client on console-fra.rpki-client.org