Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F369E2BD/00F29B8E594311EABDC6E160F8AEA228/EC2721A870F711EA94C12321F8AEA228.roa
File: EC2721A870F711EA94C12321F8AEA228.roa (raw, json)
Hash identifier: H0RK+OL9qt2hdg5NTBlkcYhhkAHhYl2IgSl91pWodCw=
Subject key identifier: D0:61:DA:13:F2:11:37:65:E9:53:6B:00:70:80:76:AB:28:4D:BC:AA
Certificate issuer: /CN=F369E2BDAF/serialNumber=1C3DB9D020C29BFE4910FA14AA5014F604A4267F
Certificate serial: 2A
Authority key identifier: 1C:3D:B9:D0:20:C2:9B:FE:49:10:FA:14:AA:50:14:F6:04:A4:26:7F
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/HD250CDCm_5JEPoUqlAU9gSkJn8.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F369E2BD/00F29B8E594311EABDC6E160F8AEA228/EC2721A870F711EA94C12321F8AEA228.roa
Signing time: Sat 28 Mar 2020 13:27:51 +0000
ROA not before: Sat 28 Mar 2020 13:27:47 +0000
ROA not after: Fri 01 Mar 2030 13:27:47 +0000
asID: 328622
IP address blocks: 102.223.235.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F369E2BD/00F29B8E594311EABDC6E160F8AEA228/HD250CDCm_5JEPoUqlAU9gSkJn8.crl
rsync://rpki.afrinic.net/repository/member_repository/F369E2BD/00F29B8E594311EABDC6E160F8AEA228/HD250CDCm_5JEPoUqlAU9gSkJn8.mft
rsync://rpki.afrinic.net/repository/afrinic/HD250CDCm_5JEPoUqlAU9gSkJn8.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 42 (0x2a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F369E2BDAF/serialNumber=1C3DB9D020C29BFE4910FA14AA5014F604A4267F
Validity
Not Before: Mar 28 13:27:47 2020 GMT
Not After : Mar 1 13:27:47 2030 GMT
Subject: CN=5e7f50d7-f983
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:f3:7e:d2:08:69:65:c1:d7:a4:09:6a:58:07:
b1:2f:47:17:b0:5d:b0:8e:87:b0:f2:67:76:98:08:
f0:78:c8:03:73:54:f5:17:f2:47:16:c3:ef:9d:0c:
29:39:47:68:b2:b4:66:d0:57:14:b9:13:5b:8c:60:
23:21:52:d3:25:5e:af:96:30:02:63:0b:07:db:15:
f9:46:01:46:3e:39:84:07:b1:c8:20:14:fd:f7:55:
3c:f9:60:21:63:bb:3f:31:d5:96:ee:98:b2:c3:2b:
27:87:81:ee:fb:03:0e:10:a3:7a:6e:b7:06:10:3c:
74:a0:2c:b7:64:82:c3:8c:3e:9c:2f:32:40:ef:3c:
5e:a1:90:f0:e5:b5:fb:dc:f0:1c:85:1b:e1:ea:bf:
c7:a7:3e:57:e7:c6:75:d6:9e:39:45:17:76:54:91:
29:fc:89:35:a1:f2:ad:03:f9:84:f1:f0:9c:3c:09:
36:f2:f3:67:3e:18:07:cd:fa:b7:98:60:1e:fe:d0:
0a:98:40:d9:68:0c:43:11:d0:b2:71:fa:61:6d:05:
c9:d7:5c:99:8a:e6:df:9d:19:3f:39:2a:e0:51:60:
1e:7e:44:ce:07:64:76:0f:84:02:99:bd:5f:c8:b3:
fc:ec:a6:c7:74:28:d1:3d:47:38:41:00:7c:1c:3f:
0c:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:61:DA:13:F2:11:37:65:E9:53:6B:00:70:80:76:AB:28:4D:BC:AA
X509v3 Authority Key Identifier:
keyid:1C:3D:B9:D0:20:C2:9B:FE:49:10:FA:14:AA:50:14:F6:04:A4:26:7F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F369E2BD/00F29B8E594311EABDC6E160F8AEA228/HD250CDCm_5JEPoUqlAU9gSkJn8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/HD250CDCm_5JEPoUqlAU9gSkJn8.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F369E2BD/00F29B8E594311EABDC6E160F8AEA228/EC2721A870F711EA94C12321F8AEA228.roa
sbgp-ipAddrBlock: critical
IPv4:
102.223.235.0/24
Signature Algorithm: sha256WithRSAEncryption
58:8f:38:f9:81:7f:75:8f:38:64:4c:81:24:0e:74:cb:40:95:
91:c8:84:5e:23:2b:5c:78:69:fb:e1:13:f4:14:1a:a3:4e:2c:
e9:3a:04:eb:c3:1e:c2:f2:40:20:1e:1e:51:d0:01:b6:dd:2d:
26:4a:77:77:c4:78:06:98:61:f4:ec:1b:63:74:0c:5a:db:69:
8a:67:3b:2d:c8:28:72:d0:7a:f2:bd:31:0c:a4:0e:14:52:21:
ea:e0:27:41:64:63:cf:5f:0b:f8:d0:eb:b6:43:d3:f0:89:07:
6f:e4:2f:41:14:43:cb:cc:db:f4:6b:f6:34:0c:fd:22:36:a0:
93:31:a6:70:da:b3:8b:1d:d7:8a:74:f8:e4:34:7a:53:dc:bb:
84:ad:70:ca:26:36:83:99:a7:43:e6:55:57:b5:b4:7b:af:a1:
61:37:14:7b:25:df:6b:53:bc:f1:c5:d0:c0:b5:38:d4:5e:7b:
04:2c:36:a6:ad:91:7d:c7:91:24:b4:56:00:45:ab:4d:e9:9f:
25:28:34:22:2a:90:40:c3:f2:91:2e:5d:78:f1:ad:c4:2f:66:
dd:44:0e:ae:ee:54:20:62:bc:f4:85:8a:e4:e5:1d:36:55:a4:
6c:0a:8e:de:25:04:57:65:69:6d:40:dd:58:8c:6a:99:15:3d:
6f:26:69:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:05:18 2024 by rpki-client on console-ams.rpki-client.org