Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F369E2BD/00F29B8E594311EABDC6E160F8AEA228/34EC88D2594311EAB19C1B61F8AEA228.roa
File: 34EC88D2594311EAB19C1B61F8AEA228.roa (raw, json)
Hash identifier: YNJO/Fu0d3uU51SAVuG+ftYS08KKoUW6lE8R11S/eF8=
Subject key identifier: A6:26:61:50:1A:49:11:D6:DA:A1:64:38:DB:9E:E3:84:BC:1A:84:9C
Certificate issuer: /CN=F369E2BDAF/serialNumber=1C3DB9D020C29BFE4910FA14AA5014F604A4267F
Certificate serial: 02
Authority key identifier: 1C:3D:B9:D0:20:C2:9B:FE:49:10:FA:14:AA:50:14:F6:04:A4:26:7F
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/HD250CDCm_5JEPoUqlAU9gSkJn8.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F369E2BD/00F29B8E594311EABDC6E160F8AEA228/34EC88D2594311EAB19C1B61F8AEA228.roa
Signing time: Thu 27 Feb 2020 09:26:18 +0000
ROA not before: Thu 27 Feb 2020 09:26:13 +0000
ROA not after: Thu 28 Feb 2030 09:26:13 +0000
asID: 328622
IP address blocks: 102.223.232.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F369E2BD/00F29B8E594311EABDC6E160F8AEA228/HD250CDCm_5JEPoUqlAU9gSkJn8.crl
rsync://rpki.afrinic.net/repository/member_repository/F369E2BD/00F29B8E594311EABDC6E160F8AEA228/HD250CDCm_5JEPoUqlAU9gSkJn8.mft
rsync://rpki.afrinic.net/repository/afrinic/HD250CDCm_5JEPoUqlAU9gSkJn8.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 06 May 2024 00:04:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2 (0x2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F369E2BDAF/serialNumber=1C3DB9D020C29BFE4910FA14AA5014F604A4267F
Validity
Not Before: Feb 27 09:26:13 2020 GMT
Not After : Feb 28 09:26:13 2030 GMT
Subject: CN=5e578b39-2c66
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:80:2a:55:18:0f:11:0c:73:73:c4:7c:e4:7a:
45:0e:fe:f2:6a:b0:4d:92:a6:f7:c8:ea:ae:03:a3:
db:d9:2d:0a:22:06:69:0c:4e:aa:0d:09:aa:4f:96:
bf:90:de:8d:74:b7:1e:3d:89:07:2f:44:7a:cb:a8:
d7:0f:ca:32:f0:18:dc:3e:d5:e6:65:71:b9:ac:5b:
02:84:05:93:c4:37:8f:01:f4:fc:a0:37:79:d2:19:
db:32:77:eb:9f:75:b4:3e:81:7c:53:0d:90:04:8f:
27:2e:c0:88:9b:1f:1e:17:be:d3:17:12:94:f6:ab:
b3:8d:b2:d1:ec:98:aa:b6:6d:f6:c8:5e:b6:3b:59:
49:fe:44:cb:88:92:ac:13:62:54:d0:b4:81:02:22:
1a:c6:0f:42:71:b5:c8:28:5d:b4:42:01:b5:b5:f1:
91:de:fa:d8:96:f5:44:1a:69:ec:ce:71:a0:c4:f2:
4e:71:5b:c5:b0:97:c5:8f:9b:54:7a:6b:2f:7d:bf:
f0:5d:ba:a3:1d:86:c6:79:78:e7:aa:a0:35:aa:03:
74:f5:45:e9:ee:13:69:ca:ab:9f:88:f9:8f:de:89:
c5:fc:bd:fb:fa:4c:e2:b6:bd:95:e0:34:8f:2c:84:
5d:7c:dc:38:db:21:04:c1:1c:66:22:69:28:24:0d:
bb:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:26:61:50:1A:49:11:D6:DA:A1:64:38:DB:9E:E3:84:BC:1A:84:9C
X509v3 Authority Key Identifier:
keyid:1C:3D:B9:D0:20:C2:9B:FE:49:10:FA:14:AA:50:14:F6:04:A4:26:7F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F369E2BD/00F29B8E594311EABDC6E160F8AEA228/HD250CDCm_5JEPoUqlAU9gSkJn8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/HD250CDCm_5JEPoUqlAU9gSkJn8.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F369E2BD/00F29B8E594311EABDC6E160F8AEA228/34EC88D2594311EAB19C1B61F8AEA228.roa
sbgp-ipAddrBlock: critical
IPv4:
102.223.232.0/22
Signature Algorithm: sha256WithRSAEncryption
0b:fb:94:4a:fb:78:18:66:89:fc:91:2b:4a:45:30:ef:d8:3a:
3d:a1:21:8b:85:e8:20:5c:eb:7f:f3:9f:61:bb:08:38:44:f0:
23:65:ae:9e:d9:1f:28:1d:5c:80:c0:35:2e:52:6c:9f:52:c1:
47:d0:b4:75:d3:76:d0:a5:4e:bf:b2:c7:5a:3d:18:25:a4:7b:
5d:93:7b:2a:56:9d:cd:01:11:4a:6f:18:bd:8b:61:f1:0f:1f:
2c:ce:80:de:35:95:a0:91:48:3a:dd:39:74:a8:be:86:32:53:
77:d6:91:3a:c4:89:46:50:47:a5:a3:b5:fa:f5:76:fc:b1:10:
99:36:4e:85:24:9c:70:0e:7f:34:1f:6b:46:63:4a:b1:7b:eb:
6e:05:e4:a1:0b:7f:b3:5f:b9:dd:90:19:64:de:50:3d:23:0d:
ea:e5:b6:ac:bd:4a:62:8b:6a:10:ac:a4:6e:6f:ea:1f:0b:37:
89:63:56:a8:1f:33:fe:53:f5:ab:d8:26:2c:35:1c:7e:36:e0:
0d:1c:ac:52:ca:fe:8c:dc:d5:7e:c3:dc:63:06:b5:4d:4e:16:
d6:4f:8c:33:50:a9:94:f1:81:b2:76:60:c4:b0:c0:5a:fe:28:
dd:fa:c0:28:d6:a9:d9:d2:83:1d:e2:2b:a5:f5:12:84:09:bd:
cd:74:53:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 4 01:53:09 2024 by rpki-client on console-ams.rpki-client.org