Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F369E2BD/00F29B8E594311EABDC6E160F8AEA228/8A7230BA70F711EAB773C020F8AEA228.roa
File: 8A7230BA70F711EAB773C020F8AEA228.roa (raw, json)
Hash identifier: +UY6ocsMAssEaQx/2vFU1pZTXFT3vRCaWp9MYhngoW4=
Subject key identifier: 74:AC:30:48:62:6B:93:8F:BA:02:47:30:03:1C:17:03:05:D5:8C:04
Certificate issuer: /CN=F369E2BDAF/serialNumber=1C3DB9D020C29BFE4910FA14AA5014F604A4267F
Certificate serial: 24
Authority key identifier: 1C:3D:B9:D0:20:C2:9B:FE:49:10:FA:14:AA:50:14:F6:04:A4:26:7F
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/HD250CDCm_5JEPoUqlAU9gSkJn8.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F369E2BD/00F29B8E594311EABDC6E160F8AEA228/8A7230BA70F711EAB773C020F8AEA228.roa
Signing time: Sat 28 Mar 2020 13:25:07 +0000
ROA not before: Sat 28 Mar 2020 13:25:02 +0000
ROA not after: Fri 01 Mar 2030 13:25:02 +0000
asID: 328622
IP address blocks: 102.223.232.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F369E2BD/00F29B8E594311EABDC6E160F8AEA228/HD250CDCm_5JEPoUqlAU9gSkJn8.crl
rsync://rpki.afrinic.net/repository/member_repository/F369E2BD/00F29B8E594311EABDC6E160F8AEA228/HD250CDCm_5JEPoUqlAU9gSkJn8.mft
rsync://rpki.afrinic.net/repository/afrinic/HD250CDCm_5JEPoUqlAU9gSkJn8.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 06 May 2024 00:04:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 36 (0x24)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F369E2BDAF/serialNumber=1C3DB9D020C29BFE4910FA14AA5014F604A4267F
Validity
Not Before: Mar 28 13:25:02 2020 GMT
Not After : Mar 1 13:25:02 2030 GMT
Subject: CN=5e7f5033-656b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:4b:0e:31:7f:20:2d:a8:87:34:04:b1:41:80:
75:06:14:df:6e:27:f2:85:82:67:dc:3e:7d:72:65:
46:5f:05:17:62:e8:38:f2:ca:ec:ba:7c:82:57:d0:
e2:1d:dd:ef:28:66:53:09:bd:04:80:44:31:f8:c1:
9d:b0:85:cd:65:fb:cc:34:a7:e4:83:2d:99:ad:3a:
5f:39:5e:20:2c:f4:00:cd:24:4e:70:4d:8c:b0:a1:
49:4b:03:7a:53:d8:7b:83:1d:9f:8f:ab:96:b4:8c:
8e:19:55:1e:fe:95:c0:f9:eb:f6:c1:c4:a5:f7:00:
90:11:fb:57:7e:14:6d:78:07:e0:6d:6a:f8:17:04:
ab:33:93:81:7e:a6:1b:b7:a5:c3:ae:da:39:27:c9:
0d:43:a0:ac:b8:56:87:57:68:c3:a1:77:65:86:82:
ff:7b:f8:9c:7d:c7:09:a5:4d:b9:9d:b4:40:67:7d:
00:d7:80:f8:bb:7a:5c:a7:01:ee:68:51:23:15:9b:
a8:b1:9d:2b:a9:49:1c:d5:56:eb:c9:e6:33:3c:47:
5e:0b:56:3d:96:ad:95:a6:c1:c0:bc:da:ed:d4:69:
85:da:7c:68:0a:a1:10:81:ba:c0:3c:05:0d:03:f1:
3c:44:6d:cf:56:a9:54:74:80:c1:b0:2b:0a:11:15:
eb:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:AC:30:48:62:6B:93:8F:BA:02:47:30:03:1C:17:03:05:D5:8C:04
X509v3 Authority Key Identifier:
keyid:1C:3D:B9:D0:20:C2:9B:FE:49:10:FA:14:AA:50:14:F6:04:A4:26:7F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F369E2BD/00F29B8E594311EABDC6E160F8AEA228/HD250CDCm_5JEPoUqlAU9gSkJn8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/HD250CDCm_5JEPoUqlAU9gSkJn8.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F369E2BD/00F29B8E594311EABDC6E160F8AEA228/8A7230BA70F711EAB773C020F8AEA228.roa
sbgp-ipAddrBlock: critical
IPv4:
102.223.232.0/24
Signature Algorithm: sha256WithRSAEncryption
45:40:39:a9:f0:34:43:f9:37:c1:10:43:3d:54:8f:2e:2f:95:
d4:b1:96:d8:a7:da:ad:23:4b:25:51:70:92:78:1b:cd:64:66:
4e:41:5c:82:25:c9:6e:ce:6b:c7:87:41:9e:c7:30:8a:28:f9:
01:9f:98:6c:4c:16:97:e6:af:0d:cb:55:0d:8c:31:89:ea:69:
2f:7d:df:37:1a:c7:0b:8e:e4:29:da:49:d9:98:bc:2d:4c:b7:
3e:ae:f6:35:0d:4c:aa:9e:d5:71:38:95:a3:77:1f:e0:ed:50:
e8:8f:9f:8f:d4:97:01:a2:3a:75:cf:0e:4a:58:6a:cd:df:e6:
59:0b:37:e3:de:db:8a:21:1d:b1:e6:fd:48:9b:96:c6:02:9a:
7a:30:82:37:24:2e:38:11:24:e8:1e:d7:f7:c9:e5:e3:68:3b:
f1:bb:9a:26:8c:cf:5e:d6:57:5f:0a:d4:86:84:69:26:4a:16:
b8:88:59:fd:53:a0:8d:4d:43:f1:c0:38:39:28:3a:25:cd:76:
26:cf:8d:d5:bd:86:c4:3e:7c:1a:56:58:6b:3c:ed:43:6c:db:
84:2d:2a:2a:01:70:6a:8e:ac:c3:68:22:5e:9f:cf:8b:65:5b:
5c:bc:44:ae:e8:72:f0:eb:d1:70:46:aa:0d:82:57:5c:4a:58:
7f:b6:17:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 4 02:37:56 2024 by rpki-client on console-fra.rpki-client.org