Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3698401/FDAB9DBCD53211EDA1D50A99F1222468/35441182D53311ED963F8F99F1222468.roa
File: 35441182D53311ED963F8F99F1222468.roa (raw, json)
Hash identifier: gr96mVOMzkU8Q9PplUdoOUbnlh56hiVDAqPFQPickwU=
Subject key identifier: 72:77:BF:39:CE:E1:11:1A:3B:58:E4:65:C1:FD:EA:96:67:64:69:04
Certificate issuer: /CN=F3698401AF/serialNumber=27CC94944B38980CA2E0862A5DFC44D8640417CF
Certificate serial: 02
Authority key identifier: 27:CC:94:94:4B:38:98:0C:A2:E0:86:2A:5D:FC:44:D8:64:04:17:CF
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/J8yUlEs4mAyi4IYqXfxE2GQEF88.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3698401/FDAB9DBCD53211EDA1D50A99F1222468/35441182D53311ED963F8F99F1222468.roa
Signing time: Fri 07 Apr 2023 10:59:03 +0000
ROA not before: Fri 07 Apr 2023 10:58:58 +0000
ROA not after: Sat 31 Dec 2033 10:58:58 +0000
asID: 328975
IP address blocks: 102.218.124.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3698401/FDAB9DBCD53211EDA1D50A99F1222468/J8yUlEs4mAyi4IYqXfxE2GQEF88.crl
rsync://rpki.afrinic.net/repository/member_repository/F3698401/FDAB9DBCD53211EDA1D50A99F1222468/J8yUlEs4mAyi4IYqXfxE2GQEF88.mft
rsync://rpki.afrinic.net/repository/afrinic/J8yUlEs4mAyi4IYqXfxE2GQEF88.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 28 Jun 2024 00:05:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2 (0x2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3698401AF/serialNumber=27CC94944B38980CA2E0862A5DFC44D8640417CF
Validity
Not Before: Apr 7 10:58:58 2023 GMT
Not After : Dec 31 10:58:58 2033 GMT
Subject: CN=642ff777-5cd1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:27:98:69:c0:b8:4c:2e:93:0e:a1:88:f1:06:
ae:38:d4:5d:6f:c9:83:58:ea:dd:2b:09:86:5b:7f:
3a:24:38:f5:49:9a:68:ce:61:85:23:3a:4f:60:73:
f8:c8:16:d1:8b:95:68:24:cc:9b:df:ba:d1:f3:06:
2c:89:9e:23:6b:18:0a:65:16:e0:43:54:7f:47:b2:
8d:15:eb:8f:52:df:4d:ce:d1:c5:1f:ba:7c:b3:8b:
04:90:06:15:6f:ab:ae:86:28:3b:55:10:b7:1e:c2:
f0:06:20:62:03:d6:a1:f8:ba:e9:9d:5f:79:e1:77:
15:6d:d7:a6:79:d3:e4:57:97:6c:f6:ea:52:91:9c:
63:b9:3f:88:4b:40:14:a1:68:b4:52:ea:68:b1:7e:
99:58:d5:bd:3c:a3:c1:76:7b:4c:88:aa:f6:29:b4:
c5:68:47:86:af:7e:8a:62:ef:02:6b:71:42:78:6d:
93:2f:5e:d2:7e:4c:fa:f5:4e:e8:de:de:77:29:f3:
ab:61:84:49:ab:ff:dd:f9:f0:cf:04:6a:34:a8:ef:
cd:02:87:30:70:79:f4:61:d1:e4:87:28:3c:d2:b7:
00:20:19:14:01:83:65:33:c3:8b:dc:a4:c2:0d:d4:
fe:c5:a1:7d:8b:41:f8:6a:2b:ec:c0:43:03:41:a8:
4b:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:77:BF:39:CE:E1:11:1A:3B:58:E4:65:C1:FD:EA:96:67:64:69:04
X509v3 Authority Key Identifier:
keyid:27:CC:94:94:4B:38:98:0C:A2:E0:86:2A:5D:FC:44:D8:64:04:17:CF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3698401/FDAB9DBCD53211EDA1D50A99F1222468/J8yUlEs4mAyi4IYqXfxE2GQEF88.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/J8yUlEs4mAyi4IYqXfxE2GQEF88.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3698401/FDAB9DBCD53211EDA1D50A99F1222468/35441182D53311ED963F8F99F1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.218.124.0/22
Signature Algorithm: sha256WithRSAEncryption
8b:06:31:7e:86:b5:fb:7c:3a:ca:9c:d8:b5:96:a4:24:91:16:
21:5b:7e:5d:e2:09:ca:33:f4:da:2d:14:13:1d:0d:7f:d2:f3:
bb:f3:5f:ef:e4:65:d4:94:b2:ab:f2:b9:4d:d3:ac:9e:3b:4f:
93:05:6e:2b:c8:16:3c:4f:06:df:3c:0f:a0:cd:d7:1a:2c:3b:
63:c0:cb:86:8a:67:90:69:0d:0d:bf:fd:3a:68:76:0b:db:a9:
97:2c:f4:6b:6e:54:8d:7e:08:61:4e:a4:4b:e8:99:d0:ba:8a:
0a:c4:a2:e0:ac:d3:f7:6a:ad:16:2a:52:0f:26:35:a3:e1:15:
17:85:2c:2b:32:e1:eb:2a:3d:5c:aa:76:92:0c:65:03:c2:ac:
47:1f:23:fc:4b:8e:35:d1:34:71:59:68:cb:bb:32:ac:01:83:
8e:9b:f4:0b:82:2a:54:52:05:5f:25:2e:2e:0b:40:7f:b3:0e:
69:a8:a6:03:02:89:91:02:3c:89:6e:71:f3:e7:ec:4a:0d:d5:
0e:49:59:3b:6f:72:f5:2a:85:ca:09:3a:33:de:e7:6d:3b:9a:
f5:b4:80:e8:bb:25:a6:50:3e:3c:f7:1e:2b:96:d1:66:5e:28:
65:07:6f:1e:ee:4c:15:fc:d6:ea:69:a4:6b:11:59:9f:6d:62:
e4:6c:88:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 26 04:28:50 2024 by rpki-client on console-ams.rpki-client.org