Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F369E2BD/00F29B8E594311EABDC6E160F8AEA228/A936AAF870F711EA8C00D420F8AEA228.roa
File: A936AAF870F711EA8C00D420F8AEA228.roa (raw, json)
Hash identifier: h7Qbm3X2TCVgdgM0/cTt4WYwz33KdG8jIAvDj0CvfDA=
Subject key identifier: D8:48:2E:9A:7E:96:71:09:EE:65:77:89:2F:64:6E:B0:BE:7B:0C:65
Certificate issuer: /CN=F369E2BDAF/serialNumber=1C3DB9D020C29BFE4910FA14AA5014F604A4267F
Certificate serial: 26
Authority key identifier: 1C:3D:B9:D0:20:C2:9B:FE:49:10:FA:14:AA:50:14:F6:04:A4:26:7F
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/HD250CDCm_5JEPoUqlAU9gSkJn8.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F369E2BD/00F29B8E594311EABDC6E160F8AEA228/A936AAF870F711EA8C00D420F8AEA228.roa
Signing time: Sat 28 Mar 2020 13:25:59 +0000
ROA not before: Sat 28 Mar 2020 13:25:53 +0000
ROA not after: Fri 01 Mar 2030 13:25:53 +0000
asID: 328622
IP address blocks: 102.223.233.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F369E2BD/00F29B8E594311EABDC6E160F8AEA228/HD250CDCm_5JEPoUqlAU9gSkJn8.crl
rsync://rpki.afrinic.net/repository/member_repository/F369E2BD/00F29B8E594311EABDC6E160F8AEA228/HD250CDCm_5JEPoUqlAU9gSkJn8.mft
rsync://rpki.afrinic.net/repository/afrinic/HD250CDCm_5JEPoUqlAU9gSkJn8.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 38 (0x26)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F369E2BDAF/serialNumber=1C3DB9D020C29BFE4910FA14AA5014F604A4267F
Validity
Not Before: Mar 28 13:25:53 2020 GMT
Not After : Mar 1 13:25:53 2030 GMT
Subject: CN=5e7f5067-d343
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:2e:44:58:c1:05:b4:70:7c:7a:30:fb:37:ce:
30:cd:07:fe:f9:3f:2c:04:44:da:e1:07:c1:50:f8:
3f:70:3b:58:b9:87:f4:ad:92:0d:45:b7:30:38:ac:
7b:93:5f:51:d9:65:28:89:9a:65:68:1f:4f:60:76:
76:ca:aa:21:a9:ef:1d:4b:83:66:80:b9:3f:df:54:
bb:d1:2b:e6:52:ee:27:3e:22:ce:9f:69:07:90:f8:
fd:66:15:e1:b6:d9:72:e0:36:d7:87:88:21:a1:24:
5e:40:f8:04:1a:fd:fc:26:3d:3a:dd:16:0f:99:56:
bb:59:f0:7c:32:56:d5:30:89:ba:7a:bb:dd:13:c3:
7a:d1:72:d6:c4:8c:95:ee:c6:4c:d2:11:fe:e4:3d:
6d:00:4e:d8:3e:bb:5f:de:96:a9:42:2f:c2:ad:24:
57:9e:c1:9c:b3:e4:7a:7c:73:e4:c0:d1:64:93:60:
a9:e4:c9:89:6b:64:4a:0a:70:73:e5:c1:ac:3a:0f:
72:b5:45:dd:b9:28:16:8e:7c:c1:69:85:06:57:0d:
74:d4:fd:00:16:59:a8:f7:b4:88:ef:62:fa:dd:b4:
ae:a9:86:29:a4:60:db:c9:98:cd:ae:d7:33:4e:e3:
14:39:ca:66:5a:a7:e4:ef:e9:36:20:d7:0a:fc:54:
b3:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:48:2E:9A:7E:96:71:09:EE:65:77:89:2F:64:6E:B0:BE:7B:0C:65
X509v3 Authority Key Identifier:
keyid:1C:3D:B9:D0:20:C2:9B:FE:49:10:FA:14:AA:50:14:F6:04:A4:26:7F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F369E2BD/00F29B8E594311EABDC6E160F8AEA228/HD250CDCm_5JEPoUqlAU9gSkJn8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/HD250CDCm_5JEPoUqlAU9gSkJn8.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F369E2BD/00F29B8E594311EABDC6E160F8AEA228/A936AAF870F711EA8C00D420F8AEA228.roa
sbgp-ipAddrBlock: critical
IPv4:
102.223.233.0/24
Signature Algorithm: sha256WithRSAEncryption
7d:dc:d2:52:b9:33:93:14:8f:7a:59:99:58:eb:ad:b4:a0:a7:
0d:ff:0b:de:8a:16:41:6f:e2:00:f9:a0:12:a3:90:b7:4a:a7:
a9:d4:3c:ab:ca:97:06:70:da:5e:56:68:f1:97:ae:16:d0:18:
87:33:55:18:28:0a:41:a5:2e:90:b7:40:97:a4:51:59:e9:62:
a7:8d:85:03:8e:6b:87:d4:8f:0a:7b:d1:02:2f:37:28:54:43:
0e:79:43:dc:ab:75:cf:f4:e6:1c:89:44:0c:aa:77:45:2d:41:
d3:d4:d7:f0:3c:e0:e8:59:e4:2a:3f:39:13:39:9e:71:b0:ba:
b6:99:75:96:be:c6:8d:47:78:de:0c:e9:bd:26:57:17:71:0d:
57:96:3d:27:51:42:06:45:b2:eb:c4:3b:92:cb:8d:50:7d:d2:
62:18:86:35:d6:4a:8d:5e:de:6c:a1:19:b4:9a:c0:a5:2b:7a:
aa:b9:c0:35:39:f3:29:58:2a:a1:06:2b:d1:02:f3:65:72:f1:
eb:0b:38:a2:78:c9:79:47:78:89:c0:b3:61:c3:37:39:00:9a:
ad:07:af:d7:2c:cf:bd:70:d5:38:f9:a2:87:63:71:d5:7b:aa:
b9:7a:69:99:15:a9:d8:02:5a:9d:d3:7c:75:d8:bc:a5:e8:50:
88:66:d0:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:10:13 2024 by rpki-client on console-fra.rpki-client.org