Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36A2303/65715F78594311EAB30F4261F8AEA228/577AF7EE169A11EFAF5B8016017001B1.roa
File: 577AF7EE169A11EFAF5B8016017001B1.roa (raw, json)
Hash identifier: ebHFPBVFI6FEnS8auwZ3hkJ3n12esrKQ6jhZHxu6AUo=
Subject key identifier: 39:B1:92:D0:7C:46:F3:8F:BF:34:CD:CA:90:F1:A6:7C:CB:E7:B0:25
Certificate issuer: /CN=F36A2303AF/serialNumber=5EB88DF4BF9089D7049A1FBE8005E621EAAE862B
Certificate serial: 0666
Authority key identifier: 5E:B8:8D:F4:BF:90:89:D7:04:9A:1F:BE:80:05:E6:21:EA:AE:86:2B
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/XriN9L-QidcEmh--gAXmIequhis.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36A2303/65715F78594311EAB30F4261F8AEA228/577AF7EE169A11EFAF5B8016017001B1.roa
Signing time: Mon 20 May 2024 11:16:02 +0000
ROA not before: Mon 20 May 2024 11:15:59 +0000
ROA not after: Sat 20 May 2034 11:15:59 +0000
asID: 328631
IP address blocks: 102.209.8.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36A2303/65715F78594311EAB30F4261F8AEA228/XriN9L-QidcEmh--gAXmIequhis.crl
rsync://rpki.afrinic.net/repository/member_repository/F36A2303/65715F78594311EAB30F4261F8AEA228/XriN9L-QidcEmh--gAXmIequhis.mft
rsync://rpki.afrinic.net/repository/afrinic/XriN9L-QidcEmh--gAXmIequhis.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1638 (0x666)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36A2303AF/serialNumber=5EB88DF4BF9089D7049A1FBE8005E621EAAE862B
Validity
Not Before: May 20 11:15:59 2024 GMT
Not After : May 20 11:15:59 2034 GMT
Subject: CN=664b30f2-4200
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:61:6a:9b:21:6a:24:14:6a:2c:7d:35:78:85:
e2:fd:9e:3c:75:7e:f9:63:05:92:58:41:1d:6e:c0:
f3:1b:c5:6e:7f:87:c0:a5:52:dd:ff:48:ec:25:74:
6a:83:f5:54:e5:22:fa:5a:35:85:bd:80:05:d6:a4:
1b:55:ef:d7:58:4a:1e:d7:d5:9a:a5:a5:c5:a2:0f:
ee:cc:06:b0:39:3a:2b:b4:11:80:e4:d8:1b:6c:94:
e9:72:36:96:4d:f1:5d:01:b9:1d:77:f3:bb:bf:be:
9e:25:ed:cc:e8:d0:e0:2b:f3:db:1b:5b:95:8b:19:
b1:67:f1:57:bf:94:a9:e2:1b:56:d8:98:45:0d:b8:
a5:5c:b7:21:91:a6:0e:30:16:92:04:99:aa:b4:28:
29:b6:76:da:9e:a7:7b:55:f3:e2:cd:dc:83:15:33:
5e:ac:11:88:31:c2:64:23:3a:f1:41:02:3f:e2:85:
a7:f7:68:6f:02:02:b6:38:77:67:4d:84:52:8b:6a:
01:9e:7e:5b:23:13:28:37:48:40:ff:bb:61:12:e5:
db:df:64:81:1a:e0:1c:52:e0:b2:b4:bf:24:99:e4:
01:cb:5a:a1:78:18:c7:1a:44:71:7f:f6:dd:37:fb:
8c:3e:69:c2:aa:51:c6:57:6a:71:6e:69:b9:7a:97:
67:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:B1:92:D0:7C:46:F3:8F:BF:34:CD:CA:90:F1:A6:7C:CB:E7:B0:25
X509v3 Authority Key Identifier:
keyid:5E:B8:8D:F4:BF:90:89:D7:04:9A:1F:BE:80:05:E6:21:EA:AE:86:2B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36A2303/65715F78594311EAB30F4261F8AEA228/XriN9L-QidcEmh--gAXmIequhis.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/XriN9L-QidcEmh--gAXmIequhis.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36A2303/65715F78594311EAB30F4261F8AEA228/577AF7EE169A11EFAF5B8016017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.209.8.0/22
Signature Algorithm: sha256WithRSAEncryption
60:e6:4a:ce:82:28:28:3b:5d:07:cc:0e:39:2f:ec:41:06:a3:
66:6e:c2:b9:34:02:c9:3b:b2:fd:06:1b:84:2a:10:ce:d4:21:
82:9a:b0:53:ae:e7:7f:3d:c8:43:fe:10:d5:c3:b3:25:03:79:
cd:45:ab:f9:89:0a:c9:41:6d:8c:23:9c:4a:d8:a0:f5:a3:8b:
ec:3d:05:60:c1:c1:15:e0:7f:db:2f:ca:18:9a:04:21:e2:d1:
0d:95:46:72:c7:8b:f0:c2:f4:30:72:56:91:87:24:ee:38:6f:
41:b9:5e:5c:62:0c:10:06:34:f3:61:65:d4:6f:1c:11:fc:cb:
8b:10:33:ce:10:ed:e5:6e:b8:8d:8d:39:c0:00:44:83:32:18:
d9:85:34:86:bd:3c:29:ca:57:97:52:0e:ae:70:5f:7b:5f:93:
a7:d6:bb:1a:24:8b:47:7f:06:34:f3:e9:29:40:14:9c:2f:c3:
76:c8:97:a2:1d:b2:66:6a:66:06:7e:04:e1:68:f5:00:da:2f:
04:4d:98:e7:e1:60:1e:b0:2a:af:8f:58:3e:c6:43:78:44:b0:
fb:9f:61:25:8b:e7:ca:91:ed:34:3a:e9:c5:c2:f9:0f:80:bd:
e1:4a:3f:21:ca:d3:90:b1:2e:9d:ee:18:3c:d1:bc:a8:db:59:
e7:36:c3:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:10:14 2024 by rpki-client on console-fra.rpki-client.org