Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36A1CEF/7F388DE4F13811EB917FD717D8A014CE/11AC7B6A124811ECA010225ED8A014CE.roa
File: 11AC7B6A124811ECA010225ED8A014CE.roa (raw, json)
Hash identifier: NuKKPHhieBdz0VtTkdtt2pca0XP6l2AgJ2AAzjs2NuY=
Subject key identifier: 12:06:4D:D5:EA:E4:94:63:17:BD:E5:91:BD:80:BF:E5:1D:EE:62:77
Certificate issuer: /CN=F36A1CEFAF/serialNumber=82F1C6611A3A1467DB3D78A4A5FED50A08A57B13
Certificate serial: 36
Authority key identifier: 82:F1:C6:61:1A:3A:14:67:DB:3D:78:A4:A5:FE:D5:0A:08:A5:7B:13
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/gvHGYRo6FGfbPXikpf7VCgilexM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36A1CEF/7F388DE4F13811EB917FD717D8A014CE/11AC7B6A124811ECA010225ED8A014CE.roa
Signing time: Fri 10 Sep 2021 15:02:08 +0000
ROA not before: Fri 10 Sep 2021 15:02:05 +0000
ROA not after: Wed 10 Sep 2031 15:02:05 +0000
asID: 37645
IP address blocks: 102.218.180.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36A1CEF/7F388DE4F13811EB917FD717D8A014CE/gvHGYRo6FGfbPXikpf7VCgilexM.crl
rsync://rpki.afrinic.net/repository/member_repository/F36A1CEF/7F388DE4F13811EB917FD717D8A014CE/gvHGYRo6FGfbPXikpf7VCgilexM.mft
rsync://rpki.afrinic.net/repository/afrinic/gvHGYRo6FGfbPXikpf7VCgilexM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 21 May 2024 00:04:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 54 (0x36)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36A1CEFAF/serialNumber=82F1C6611A3A1467DB3D78A4A5FED50A08A57B13
Validity
Not Before: Sep 10 15:02:05 2021 GMT
Not After : Sep 10 15:02:05 2031 GMT
Subject: CN=613b7370-f366
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:13:6f:cc:da:d2:a7:15:db:91:b2:16:18:fa:
13:30:62:59:85:ff:d4:d9:87:82:67:c0:55:7b:48:
db:d3:d7:bc:b4:ae:be:94:ff:02:43:d7:7c:f8:f1:
01:49:13:c6:be:69:7d:bc:62:ee:72:bd:f1:64:f2:
69:7a:4c:5d:0f:4c:5e:ca:6e:5a:5d:73:86:2a:fe:
04:5b:e0:96:98:1d:66:74:a9:71:cc:64:09:36:80:
64:44:f3:ee:3b:de:43:56:e6:e0:ce:26:73:63:1d:
f4:51:27:6d:ed:83:2f:fd:7d:ca:9d:ce:ea:13:2e:
3f:d7:71:38:8b:8c:63:97:f6:fd:08:d4:64:0c:73:
f6:34:4b:81:60:a3:cb:ff:7f:2f:fe:de:00:55:8b:
14:ad:01:78:f2:93:b3:fc:e9:eb:39:72:1a:aa:3c:
63:c9:1f:3d:ae:a2:13:c4:99:96:2a:da:b8:c7:43:
e2:90:18:92:26:3f:19:c6:ee:02:2d:c3:68:df:f0:
25:0c:14:94:b8:69:7a:64:8a:e6:2c:e0:de:62:1f:
f0:ae:51:cf:a8:a8:5d:a1:f4:c2:5e:13:93:23:76:
89:a9:3a:28:af:cf:5d:4f:ac:1b:f8:ad:41:91:57:
6b:5c:7b:c3:8d:5e:7e:68:f7:25:32:d0:89:74:f5:
c3:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:06:4D:D5:EA:E4:94:63:17:BD:E5:91:BD:80:BF:E5:1D:EE:62:77
X509v3 Authority Key Identifier:
keyid:82:F1:C6:61:1A:3A:14:67:DB:3D:78:A4:A5:FE:D5:0A:08:A5:7B:13
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36A1CEF/7F388DE4F13811EB917FD717D8A014CE/gvHGYRo6FGfbPXikpf7VCgilexM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/gvHGYRo6FGfbPXikpf7VCgilexM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36A1CEF/7F388DE4F13811EB917FD717D8A014CE/11AC7B6A124811ECA010225ED8A014CE.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.218.180.0/22
Signature Algorithm: sha256WithRSAEncryption
a4:7e:26:9c:19:9c:67:43:a8:51:ed:d3:89:41:bb:72:1f:83:
b5:8c:54:86:ae:bf:5b:55:c7:5b:d3:5c:1b:1f:1c:89:ce:87:
33:6d:32:0e:45:4b:2a:07:bb:1e:02:f6:6f:d4:16:83:d7:7f:
13:64:2e:07:ab:a6:fb:bd:7b:0f:1d:c7:72:63:d5:8e:85:e3:
ea:70:a3:8b:15:bf:9a:35:ab:c4:18:bc:3f:86:d4:24:88:19:
64:c2:dd:e2:57:13:4e:2c:82:2f:a0:8d:ba:8f:ee:df:6d:7e:
83:56:5f:cd:2c:77:fa:b7:4c:ab:65:5b:37:5d:b8:ab:85:3b:
75:88:db:71:cc:0d:eb:5d:4b:bc:a0:19:f0:cf:bb:32:95:d3:
60:57:9b:6c:cf:29:b1:6c:92:7a:14:c3:36:4b:ee:eb:00:78:
8d:1b:f5:bc:80:64:c7:ae:14:b8:36:fd:73:ce:d7:b3:f4:5d:
5d:25:24:23:5a:06:bc:c7:ca:94:25:97:d7:2b:3f:9d:f0:3e:
bc:89:c3:e3:6d:05:cd:3d:1e:41:ff:6c:c6:f0:af:42:f7:16:
cf:32:70:5f:02:84:de:5b:b2:47:54:bb:5c:b1:68:21:6d:1a:
db:0c:b8:54:31:40:d5:2d:6f:86:ba:26:f9:68:8b:b5:5d:f3:
24:3f:6c:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 19 02:39:32 2024 by rpki-client on console-fra.rpki-client.org