Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F369F058/8B32E79A553911E9A572702FF8AEA228/25843EB0123711EFB5C1A851017001B1.roa
File: 25843EB0123711EFB5C1A851017001B1.roa (raw, json)
Hash identifier: 5Dbg0It6Gnjot6cZHpwak5GthbHzIipbWJ6mhVVl1e8=
Subject key identifier: 37:22:6D:13:EE:29:B9:F8:38:D0:34:EE:DF:D2:75:CA:AE:FA:27:B6
Certificate issuer: /CN=F369F058AF/serialNumber=C92E885827C67619E13175703017C4442DDFEACF
Certificate serial: 078B
Authority key identifier: C9:2E:88:58:27:C6:76:19:E1:31:75:70:30:17:C4:44:2D:DF:EA:CF
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/yS6IWCfGdhnhMXVwMBfERC3f6s8.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F369F058/8B32E79A553911E9A572702FF8AEA228/25843EB0123711EFB5C1A851017001B1.roa
Signing time: Tue 14 May 2024 21:15:53 +0000
ROA not before: Tue 14 May 2024 21:15:50 +0000
ROA not after: Tue 31 Dec 2030 21:15:50 +0000
asID: 328114
IP address blocks: 102.211.252.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F369F058/8B32E79A553911E9A572702FF8AEA228/yS6IWCfGdhnhMXVwMBfERC3f6s8.crl
rsync://rpki.afrinic.net/repository/member_repository/F369F058/8B32E79A553911E9A572702FF8AEA228/yS6IWCfGdhnhMXVwMBfERC3f6s8.mft
rsync://rpki.afrinic.net/repository/afrinic/yS6IWCfGdhnhMXVwMBfERC3f6s8.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1931 (0x78b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F369F058AF/serialNumber=C92E885827C67619E13175703017C4442DDFEACF
Validity
Not Before: May 14 21:15:50 2024 GMT
Not After : Dec 31 21:15:50 2030 GMT
Subject: CN=6643d489-ed56
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:d9:82:71:84:42:d4:b5:aa:d7:3d:7f:b7:e8:
af:e4:85:72:d9:29:e3:8a:42:34:66:ed:5d:b5:96:
db:a0:54:e5:85:93:0d:9b:b7:78:0f:5c:1d:28:0d:
97:d1:c8:80:96:da:7f:aa:c2:36:fb:dd:5e:84:ba:
0a:30:da:a8:87:54:d4:1d:a3:cb:47:69:82:db:97:
2f:a3:b2:3d:6f:76:ba:6f:df:22:08:e6:7e:8a:dc:
1d:3e:f9:47:83:ad:7c:1e:74:2b:a9:46:1f:de:34:
4c:7c:4a:a1:24:ca:af:15:27:29:66:b7:cd:ae:78:
b7:25:14:14:52:f9:28:b2:a0:fc:bb:61:be:d2:c4:
dc:ff:92:18:2c:85:cc:84:d4:97:db:97:7d:38:fc:
49:44:2c:19:33:f4:db:e8:8b:2f:5e:fc:9d:3f:6a:
e0:e7:31:c6:0c:5d:09:67:4d:73:c1:db:d8:23:7d:
be:59:e5:d7:67:ed:1d:18:7a:1e:34:4b:b0:62:4b:
3a:4e:27:d6:77:0f:18:68:de:70:2d:55:b8:3e:f8:
38:33:73:ef:2a:ae:49:15:b3:4e:7a:33:7b:a6:3f:
87:78:e4:93:18:0e:71:26:81:d8:c7:ab:9a:42:eb:
c4:76:36:3a:06:95:08:d6:18:19:4a:f3:92:9a:28:
b3:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:22:6D:13:EE:29:B9:F8:38:D0:34:EE:DF:D2:75:CA:AE:FA:27:B6
X509v3 Authority Key Identifier:
keyid:C9:2E:88:58:27:C6:76:19:E1:31:75:70:30:17:C4:44:2D:DF:EA:CF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F369F058/8B32E79A553911E9A572702FF8AEA228/yS6IWCfGdhnhMXVwMBfERC3f6s8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/yS6IWCfGdhnhMXVwMBfERC3f6s8.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F369F058/8B32E79A553911E9A572702FF8AEA228/25843EB0123711EFB5C1A851017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.211.252.0/22
Signature Algorithm: sha256WithRSAEncryption
5d:e6:fa:7b:d9:bd:5f:c3:2c:8c:e6:eb:b8:60:45:9f:41:a8:
64:98:03:a0:a1:92:2a:d8:4c:dd:ad:c4:38:5f:45:aa:c6:ee:
7c:40:bc:23:eb:18:46:0a:b6:47:40:2a:04:34:db:2a:d8:ae:
89:3b:32:50:5b:66:ff:cf:df:15:a7:df:84:d7:39:7b:52:1d:
f9:4d:cd:b2:6a:ae:21:a0:8d:01:42:eb:8b:9a:d5:60:35:dc:
37:11:0e:12:ec:23:f2:3d:74:52:23:f5:70:f2:ed:59:50:95:
15:34:67:27:e3:3d:0e:3a:a0:a1:ec:62:11:60:ea:70:ed:92:
5a:94:f7:79:09:e6:a8:d5:c0:3d:38:86:c3:fd:bd:91:33:36:
ba:5e:5a:d0:ef:e7:c8:82:04:9f:08:ea:f8:94:3a:bb:a7:19:
49:9a:7b:3b:cd:6b:ba:4c:8f:42:ed:bd:cc:f1:24:b9:4b:47:
8c:2a:71:12:a9:35:46:6a:ff:41:7d:2a:2a:55:65:97:d1:30:
cd:f9:4f:74:38:ec:47:54:cd:e7:e8:d0:e8:a0:78:0c:43:f0:
a1:80:c9:23:28:16:40:0e:ac:ba:e1:8b:71:53:8c:14:03:bf:
2e:ff:67:d3:68:f1:50:b6:2e:cd:bf:50:3e:44:29:1a:dd:ac:
60:76:85:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:10:13 2024 by rpki-client on console-fra.rpki-client.org