Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36A1CEF/7F388DE4F13811EB917FD717D8A014CE/38270294F36311EDBEFE48354AD9E6FC.roa
File: 38270294F36311EDBEFE48354AD9E6FC.roa (raw, json)
Hash identifier: JCpUwcLlyeyID1rok4mjUMaVBm5RDKXVOymn9hFwm98=
Subject key identifier: 1D:E4:FA:3B:BA:5C:94:44:F1:F3:D8:F4:83:AD:1A:AB:F7:4C:55:4E
Certificate issuer: /CN=F36A1CEFAF/serialNumber=82F1C6611A3A1467DB3D78A4A5FED50A08A57B13
Certificate serial: 02E2
Authority key identifier: 82:F1:C6:61:1A:3A:14:67:DB:3D:78:A4:A5:FE:D5:0A:08:A5:7B:13
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/gvHGYRo6FGfbPXikpf7VCgilexM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36A1CEF/7F388DE4F13811EB917FD717D8A014CE/38270294F36311EDBEFE48354AD9E6FC.roa
Signing time: Mon 15 May 2023 20:58:19 +0000
ROA not before: Mon 15 May 2023 20:58:12 +0000
ROA not after: Mon 04 Aug 2042 20:58:12 +0000
asID: 37645
IP address blocks: 102.213.108.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36A1CEF/7F388DE4F13811EB917FD717D8A014CE/gvHGYRo6FGfbPXikpf7VCgilexM.crl
rsync://rpki.afrinic.net/repository/member_repository/F36A1CEF/7F388DE4F13811EB917FD717D8A014CE/gvHGYRo6FGfbPXikpf7VCgilexM.mft
rsync://rpki.afrinic.net/repository/afrinic/gvHGYRo6FGfbPXikpf7VCgilexM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 29 May 2024 00:04:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 738 (0x2e2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36A1CEFAF/serialNumber=82F1C6611A3A1467DB3D78A4A5FED50A08A57B13
Validity
Not Before: May 15 20:58:12 2023 GMT
Not After : Aug 4 20:58:12 2042 GMT
Subject: CN=64629ceb-6fa4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:93:1f:3a:f6:dd:44:26:1b:f6:71:a2:28:dc:
b5:ae:7c:42:45:00:2a:54:f4:ec:f1:85:7c:52:1f:
8d:54:dc:5d:26:05:a6:49:da:96:ec:a3:55:d8:3f:
23:30:7a:2e:70:c5:4c:3a:4d:2d:f9:b1:3d:f9:e4:
59:01:1c:40:ed:98:ca:23:e9:d7:6e:1a:8f:19:b4:
9a:eb:e3:8a:47:63:ae:3c:a5:12:41:ac:61:94:da:
44:4a:e9:27:5b:64:50:93:16:31:4f:f4:49:49:44:
54:ea:9e:e0:be:49:e6:3c:96:18:8d:bd:be:d8:b4:
c5:9d:0e:63:43:76:42:e1:dd:00:1d:cc:40:ac:9e:
64:02:71:13:79:26:23:54:9c:f7:7f:9f:06:e3:39:
47:9a:20:9e:05:24:84:9a:a8:8d:b5:34:90:60:f7:
e9:a9:d2:ae:a6:c0:7c:ef:1e:9c:3d:18:f0:51:0f:
a4:32:66:d5:89:0f:64:5d:01:8f:60:36:70:8d:3c:
6f:b0:50:0e:0a:64:86:e2:ee:94:88:5a:2f:6f:48:
11:42:e1:a0:cb:bb:cd:52:e7:19:e8:27:4b:78:af:
38:67:ab:7d:57:46:f6:a3:47:85:c6:b6:6a:42:8b:
94:9f:d2:00:d0:fc:32:b5:c2:4f:d4:e0:3d:d6:5b:
8d:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:E4:FA:3B:BA:5C:94:44:F1:F3:D8:F4:83:AD:1A:AB:F7:4C:55:4E
X509v3 Authority Key Identifier:
keyid:82:F1:C6:61:1A:3A:14:67:DB:3D:78:A4:A5:FE:D5:0A:08:A5:7B:13
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36A1CEF/7F388DE4F13811EB917FD717D8A014CE/gvHGYRo6FGfbPXikpf7VCgilexM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/gvHGYRo6FGfbPXikpf7VCgilexM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36A1CEF/7F388DE4F13811EB917FD717D8A014CE/38270294F36311EDBEFE48354AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.213.108.0/22
Signature Algorithm: sha256WithRSAEncryption
83:d9:f2:7b:13:05:b1:38:bf:5a:fe:ad:a3:cc:ec:f5:8b:d9:
e8:f2:47:61:1a:e1:13:fd:72:b0:f2:3c:a3:be:eb:d1:bc:b5:
d9:e0:f1:ee:8f:48:dc:7f:08:b1:b8:37:66:a7:16:19:0b:43:
2d:f2:fa:68:ba:75:7e:3a:0b:b6:7a:2a:a7:7c:2e:78:e2:1d:
b9:57:55:c3:04:2d:b5:52:81:08:3a:e8:93:77:82:46:98:92:
ac:92:13:29:84:ff:d0:24:a4:a0:c2:e1:b8:39:a5:d8:06:b1:
af:c3:7f:78:aa:2e:21:4e:69:7d:00:06:c3:ed:0a:15:b3:1c:
a7:31:cc:c9:2c:73:97:bb:1d:f3:bd:2f:0e:f4:a3:96:ef:84:
b3:df:b0:14:ce:68:cc:45:83:e5:de:76:78:6b:07:9c:40:6d:
31:4c:08:d9:33:b7:94:68:23:f7:81:eb:49:b2:e7:02:ad:65:
69:35:0b:c4:0e:7a:65:39:db:dc:0e:70:70:25:f6:1a:97:6f:
b8:b3:87:e5:14:7a:74:15:59:81:6d:61:00:24:58:14:9f:1e:
43:6c:06:15:31:24:8d:75:c5:da:53:ec:09:d5:c4:38:e9:36:
5e:3e:18:ef:eb:c7:9a:28:b2:5f:76:96:e7:6d:03:1c:82:c0:
04:b3:9b:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 27 02:56:58 2024 by rpki-client on console-fra.rpki-client.org