Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F369E9B3/EE40A58A558C11EFAFCCFBA0762E951A/883F08DE558D11EF9A2F85A5762E951A.roa
File: 883F08DE558D11EF9A2F85A5762E951A.roa (raw, json)
Hash identifier: ySYYKTeap9cY6VM3kWqqsRKL0CCODwX/Fg1+7ggjuo0=
Subject key identifier: 38:3D:EE:3C:06:F2:17:16:6B:8F:E7:50:0E:92:B7:E2:F9:B8:79:36
Certificate issuer: /CN=F369E9B3AF/serialNumber=F574B16BA86AD96E00DEDACD6341F9A824EA47A7
Certificate serial: 02
Authority key identifier: F5:74:B1:6B:A8:6A:D9:6E:00:DE:DA:CD:63:41:F9:A8:24:EA:47:A7
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/9XSxa6hq2W4A3trNY0H5qCTqR6c.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F369E9B3/EE40A58A558C11EFAFCCFBA0762E951A/883F08DE558D11EF9A2F85A5762E951A.roa
Signing time: Thu 08 Aug 2024 13:53:04 +0000
ROA not before: Thu 08 Aug 2024 13:52:59 +0000
ROA not after: Mon 31 Mar 2025 13:52:59 +0000
asID: 329472
IP address blocks: 102.208.48.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F369E9B3/EE40A58A558C11EFAFCCFBA0762E951A/9XSxa6hq2W4A3trNY0H5qCTqR6c.crl
rsync://rpki.afrinic.net/repository/member_repository/F369E9B3/EE40A58A558C11EFAFCCFBA0762E951A/9XSxa6hq2W4A3trNY0H5qCTqR6c.mft
rsync://rpki.afrinic.net/repository/afrinic/9XSxa6hq2W4A3trNY0H5qCTqR6c.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 26 Oct 2024 00:05:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2 (0x2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F369E9B3AF/serialNumber=F574B16BA86AD96E00DEDACD6341F9A824EA47A7
Validity
Not Before: Aug 8 13:52:59 2024 GMT
Not After : Mar 31 13:52:59 2025 GMT
Subject: CN=66b4cdc0-d360
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:93:a4:b3:26:c9:16:33:f3:71:d6:6b:28:ad:
08:ae:02:8d:b6:cf:56:7b:68:af:ab:91:bc:7c:ba:
3e:65:5d:d9:54:6f:23:4a:e3:df:ed:78:74:73:d0:
04:2a:c4:ca:b5:a5:4d:91:43:ad:76:e2:5b:a0:4e:
65:f9:32:a4:4f:98:9e:6b:60:2e:b1:95:dc:29:a4:
47:a1:70:75:ab:51:20:8a:7d:f9:18:b4:9a:51:9b:
da:5c:c9:bc:13:c9:2f:01:1c:e3:a6:ce:f6:dc:9d:
71:bb:de:e3:e6:27:4b:b3:77:85:ee:f0:ad:6f:1d:
d0:70:17:a9:41:da:86:44:08:fd:39:e9:d5:1c:81:
15:90:85:f0:2a:05:c8:51:61:5f:7c:22:f2:84:33:
11:90:7b:95:e3:1b:cb:16:45:52:0f:81:c7:ba:48:
c1:3b:de:1f:b6:27:bd:dd:61:6d:6d:d6:1a:ab:e7:
90:cb:72:34:8c:89:6b:39:53:ed:7c:11:61:58:51:
2c:03:72:aa:e0:3c:02:9f:1b:85:32:9f:2c:a6:a2:
ea:b8:1f:a6:50:fa:40:76:e7:03:a5:72:97:3d:b0:
b4:53:0c:cc:20:69:2c:b8:09:78:b8:79:94:79:ea:
f3:a2:69:fa:6c:2d:f1:75:de:35:7a:39:93:91:a5:
52:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:3D:EE:3C:06:F2:17:16:6B:8F:E7:50:0E:92:B7:E2:F9:B8:79:36
X509v3 Authority Key Identifier:
keyid:F5:74:B1:6B:A8:6A:D9:6E:00:DE:DA:CD:63:41:F9:A8:24:EA:47:A7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F369E9B3/EE40A58A558C11EFAFCCFBA0762E951A/9XSxa6hq2W4A3trNY0H5qCTqR6c.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/9XSxa6hq2W4A3trNY0H5qCTqR6c.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F369E9B3/EE40A58A558C11EFAFCCFBA0762E951A/883F08DE558D11EF9A2F85A5762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.208.48.0/22
Signature Algorithm: sha256WithRSAEncryption
89:1c:74:50:cf:0c:fd:79:11:51:09:3f:58:f8:8e:6b:d9:02:
76:1e:15:93:28:ab:41:af:ba:11:ca:a7:9d:01:5b:75:e5:37:
8f:f8:2e:11:74:11:2f:7c:fa:16:f4:2f:a9:7d:86:a9:ad:18:
05:14:25:cd:c9:3d:2e:32:d1:d7:c9:a2:28:3d:4a:d1:d2:52:
59:6a:6b:36:e3:04:01:bf:a8:01:c1:68:37:a9:5d:d9:62:b8:
10:80:ba:a2:58:6d:8c:ad:b1:6e:9f:e4:38:9e:dc:94:ac:c6:
df:77:e8:17:83:9e:da:64:38:c3:86:82:e2:c0:af:61:6d:c5:
d5:c8:01:fa:f6:a5:e9:8d:c5:35:e7:37:e5:2b:ca:0c:16:13:
30:ac:25:c4:80:3a:5e:a9:7c:af:1b:12:13:0a:bb:ff:eb:50:
ed:29:98:21:ac:91:ff:63:4f:91:90:0b:49:18:69:dd:21:64:
24:de:73:e9:c0:2e:a1:49:50:5d:9a:54:e3:45:78:73:ab:03:
fc:01:5b:84:57:96:62:57:de:1e:4f:73:5d:3d:27:97:c7:2c:
29:56:f3:20:af:49:1e:7f:f0:29:5a:0d:2f:1d:f2:c6:24:76:
b7:a4:e0:f2:51:31:77:95:79:f7:34:1c:72:71:49:84:83:6e:
eb:68:50:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Oct 24 06:47:49 2024 by rpki-client on console-fra.rpki-client.org