Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F367F26D/2D5854E870B911E9B7123D3FF8AEA228/DD377C8CECC311EE9147A3C0775412E6.roa
File: DD377C8CECC311EE9147A3C0775412E6.roa (raw, json)
Hash identifier: NLvAngBkDWgdSocM3OP6MpCBbIBTpSnwK++fJeiXNgI=
Subject key identifier: 6D:BA:39:15:8E:28:1A:8D:C5:9E:D3:32:C9:1F:7D:1F:85:BE:34:DD
Certificate issuer: /CN=F367F26DAF/serialNumber=AB19964619FF85343CC091180673A8AC528610F4
Certificate serial: 0753
Authority key identifier: AB:19:96:46:19:FF:85:34:3C:C0:91:18:06:73:A8:AC:52:86:10:F4
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/qxmWRhn_hTQ8wJEYBnOorFKGEPQ.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F367F26D/2D5854E870B911E9B7123D3FF8AEA228/DD377C8CECC311EE9147A3C0775412E6.roa
Signing time: Thu 28 Mar 2024 05:27:27 +0000
ROA not before: Thu 28 Mar 2024 05:27:23 +0000
ROA not after: Fri 01 Dec 2028 05:27:23 +0000
asID: 328366
IP address blocks: 102.209.140.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F367F26D/2D5854E870B911E9B7123D3FF8AEA228/qxmWRhn_hTQ8wJEYBnOorFKGEPQ.crl
rsync://rpki.afrinic.net/repository/member_repository/F367F26D/2D5854E870B911E9B7123D3FF8AEA228/qxmWRhn_hTQ8wJEYBnOorFKGEPQ.mft
rsync://rpki.afrinic.net/repository/afrinic/qxmWRhn_hTQ8wJEYBnOorFKGEPQ.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 01 May 2024 09:43:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1875 (0x753)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F367F26DAF/serialNumber=AB19964619FF85343CC091180673A8AC528610F4
Validity
Not Before: Mar 28 05:27:23 2024 GMT
Not After : Dec 1 05:27:23 2028 GMT
Subject: CN=6604ffbf-1e4f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:74:dc:7b:29:06:46:97:18:98:d3:20:bb:36:
59:fe:d4:62:a0:2b:5c:97:49:ca:40:73:80:ef:c2:
87:6a:78:0f:d3:e1:5e:3f:b2:c1:e6:c9:ca:bd:90:
3c:c7:5d:56:0a:88:6d:62:d8:52:d5:88:ad:23:43:
87:93:de:47:e3:66:fe:c1:6b:ae:c1:31:1e:33:e3:
b0:8f:a8:f4:bb:e8:6e:c8:a5:1a:0f:90:39:84:de:
d4:6c:66:13:00:d2:b3:ef:34:f1:1b:a7:db:b0:8e:
01:23:2b:19:32:54:a7:40:f9:8f:99:be:57:d2:a4:
ea:91:50:91:d7:cb:b0:69:63:f3:f8:b1:c9:df:b5:
0f:a0:8f:dc:50:55:bf:54:02:95:40:7c:bc:3e:16:
6e:32:5d:49:8e:23:a5:6a:d3:e9:fb:32:7c:91:65:
3f:0c:f1:b2:14:e2:79:06:a2:3d:5b:b2:54:00:cc:
4d:c9:22:14:5c:c6:58:93:b6:91:81:a7:ca:26:fc:
8d:d9:19:d4:51:98:20:1f:86:4d:2f:06:d9:3a:2a:
18:24:9d:da:95:78:38:30:b7:a7:a6:bc:34:8d:6e:
2f:34:b5:a8:ab:ad:99:b3:ff:28:ed:ce:5b:93:8e:
0d:77:11:5c:a1:54:0d:02:6d:90:50:41:73:e3:37:
c8:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:BA:39:15:8E:28:1A:8D:C5:9E:D3:32:C9:1F:7D:1F:85:BE:34:DD
X509v3 Authority Key Identifier:
keyid:AB:19:96:46:19:FF:85:34:3C:C0:91:18:06:73:A8:AC:52:86:10:F4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F367F26D/2D5854E870B911E9B7123D3FF8AEA228/qxmWRhn_hTQ8wJEYBnOorFKGEPQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/qxmWRhn_hTQ8wJEYBnOorFKGEPQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F367F26D/2D5854E870B911E9B7123D3FF8AEA228/DD377C8CECC311EE9147A3C0775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.209.140.0/22
Signature Algorithm: sha256WithRSAEncryption
b6:9e:72:17:c0:8f:93:e4:d8:3d:8b:f5:33:58:de:dd:a3:95:
31:2c:9a:7d:46:ae:d2:a4:6a:15:3e:8e:18:a2:29:a7:18:dd:
15:13:99:a0:8b:bd:54:4f:3a:d7:6b:63:14:ce:4a:71:31:3b:
b2:ca:89:7c:65:d6:30:52:43:21:3c:fe:64:48:fe:eb:54:08:
d5:eb:17:11:39:5c:e1:73:a8:af:cc:44:74:56:e9:e8:a9:6f:
35:61:df:7a:dc:d9:93:8e:81:94:66:65:32:2c:af:ed:48:c7:
53:8d:3e:ee:b7:2e:e7:c1:18:9a:d8:5a:69:06:1a:f3:e3:22:
27:46:30:c5:6c:e5:ed:b1:e0:8d:4c:af:50:ef:1c:da:a5:4a:
72:c6:4b:21:04:fd:7d:b2:0e:a3:87:5a:d1:1a:79:50:1b:d5:
42:11:ae:b7:e8:a0:e4:18:10:9b:75:10:5f:60:89:fa:a9:1a:
3d:e7:33:4e:9e:8c:e5:30:f9:d8:42:01:67:26:92:bd:26:06:
b6:1e:9d:4c:c8:cc:b7:25:56:d0:78:ca:9a:60:35:1d:b3:20:
f5:c7:1a:32:50:86:6f:d6:07:cf:91:3f:d8:54:78:cb:b7:15:
f2:42:ad:3d:1f:0c:36:aa:23:e8:4f:1b:b7:ae:2f:17:c4:72:
84:2a:41:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 30 02:02:29 2024 by rpki-client on console-fra.rpki-client.org