Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3697B99/11FE3600376011EEA28A212C4AD9E6FC/50A77B08376711EEA86E983D4AD9E6FC.roa
File: 50A77B08376711EEA86E983D4AD9E6FC.roa (raw, json)
Hash identifier: 5/a9m6VsXxKX05jWV6oIWoE5c8mQIdE0BHzT5lFqAZI=
Subject key identifier: B6:54:36:19:2F:97:1C:D2:39:A2:77:0A:23:79:22:08:C7:9B:AF:56
Certificate issuer: /CN=F3697B99AF/serialNumber=B4109BEDC4778727E24E9A377CC617BC07C0A735
Certificate serial: 07
Authority key identifier: B4:10:9B:ED:C4:77:87:27:E2:4E:9A:37:7C:C6:17:BC:07:C0:A7:35
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/tBCb7cR3hyfiTpo3fMYXvAfApzU.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3697B99/11FE3600376011EEA28A212C4AD9E6FC/50A77B08376711EEA86E983D4AD9E6FC.roa
Signing time: Thu 10 Aug 2023 10:18:57 +0000
ROA not before: Thu 10 Aug 2023 10:18:54 +0000
ROA not after: Wed 10 Aug 2033 10:18:54 +0000
asID: 328792
IP address blocks: 102.221.53.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3697B99/11FE3600376011EEA28A212C4AD9E6FC/tBCb7cR3hyfiTpo3fMYXvAfApzU.crl
rsync://rpki.afrinic.net/repository/member_repository/F3697B99/11FE3600376011EEA28A212C4AD9E6FC/tBCb7cR3hyfiTpo3fMYXvAfApzU.mft
rsync://rpki.afrinic.net/repository/afrinic/tBCb7cR3hyfiTpo3fMYXvAfApzU.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7 (0x7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3697B99AF/serialNumber=B4109BEDC4778727E24E9A377CC617BC07C0A735
Validity
Not Before: Aug 10 10:18:54 2023 GMT
Not After : Aug 10 10:18:54 2033 GMT
Subject: CN=64d4b991-7a0f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:30:57:18:b0:57:44:e5:d8:b9:99:0d:f0:12:
dc:70:ed:f2:a2:9c:80:27:42:8e:15:78:17:38:98:
03:4e:57:ba:ab:81:2c:d5:b0:ef:b1:ed:46:9b:66:
02:82:4d:d4:9b:1b:af:2d:89:2e:a3:a1:8a:cc:43:
83:9d:73:17:5d:eb:20:f8:e5:bd:2d:4c:57:0d:d9:
18:84:1b:a7:51:3f:5c:f6:48:ca:0c:9c:fb:ee:28:
01:9d:35:32:8f:f7:d1:b9:5e:6e:da:94:37:12:8c:
98:53:6b:a2:82:ec:83:4a:4e:a2:7d:08:3b:7e:4c:
56:a7:cb:ec:0f:e0:c9:7a:83:c9:47:3e:5b:6a:71:
d3:d4:bb:8f:b0:25:4c:98:bb:d1:a4:84:d6:72:f9:
7a:50:b2:48:44:41:a0:e1:6b:74:65:50:cb:0a:cf:
d0:24:15:09:dd:5a:01:3e:66:63:72:52:b2:9d:de:
2d:3e:cf:45:93:e8:b5:09:01:5b:11:e1:51:5d:6a:
d0:d6:4c:1e:7f:01:9e:92:84:18:a6:c0:6f:98:48:
f6:aa:35:6d:e5:2d:11:f0:88:0f:71:1c:fa:ca:98:
52:96:8f:d7:5d:56:20:6a:1a:ae:b4:20:a6:f0:60:
26:06:0c:52:d9:b7:c3:3e:97:d1:b5:f9:d7:a6:49:
9a:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:54:36:19:2F:97:1C:D2:39:A2:77:0A:23:79:22:08:C7:9B:AF:56
X509v3 Authority Key Identifier:
keyid:B4:10:9B:ED:C4:77:87:27:E2:4E:9A:37:7C:C6:17:BC:07:C0:A7:35
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3697B99/11FE3600376011EEA28A212C4AD9E6FC/tBCb7cR3hyfiTpo3fMYXvAfApzU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/tBCb7cR3hyfiTpo3fMYXvAfApzU.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3697B99/11FE3600376011EEA28A212C4AD9E6FC/50A77B08376711EEA86E983D4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.221.53.0/24
Signature Algorithm: sha256WithRSAEncryption
73:b3:28:e3:f6:5b:07:2f:5c:97:aa:89:d7:c7:5e:5a:4b:bb:
be:e7:d5:3f:ac:54:4a:ee:43:b4:7b:0c:1e:f6:05:b4:e5:57:
8e:3b:7f:e4:0d:38:a1:ae:5d:2a:de:3c:0c:15:af:b7:4d:55:
88:a5:0d:b9:11:99:98:7b:92:81:30:71:0c:56:54:d4:99:33:
95:69:e1:ee:48:35:db:c3:bd:55:c6:5f:ca:9a:95:a8:7e:32:
d0:11:3f:81:3c:c1:81:fa:7e:20:bd:a9:3c:dc:76:ae:5d:40:
45:f6:53:03:a4:a7:b6:62:9e:58:8f:d6:a8:e9:d1:22:29:9c:
50:dc:45:d7:f8:9d:45:55:9e:98:dd:f6:dd:2c:df:54:ac:12:
bf:fb:ee:94:e2:13:51:25:0e:42:87:4e:a8:5f:78:49:09:49:
c2:93:84:8a:88:a8:c4:ad:f3:39:89:ae:e8:12:42:4a:ab:53:
b0:9b:a3:72:11:f2:4a:96:06:5f:b2:c2:26:4a:11:61:82:e3:
90:8e:e2:02:28:bb:08:64:ed:51:78:be:5d:a7:c3:c4:32:3f:
2c:33:2b:3d:29:bd:40:cb:6d:eb:8a:ff:d6:ce:14:ca:28:bd:
72:c0:06:08:89:f1:f8:fa:d1:39:e1:c7:fb:0e:c9:71:d3:a2:
19:08:4f:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:05:15 2024 by rpki-client on console-ams.rpki-client.org