Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36A2303/65715F78594311EAB30F4261F8AEA228/8A31DAE8B69711EA8CBAE61EF8AEA228.roa
File: 8A31DAE8B69711EA8CBAE61EF8AEA228.roa (raw, json)
Hash identifier: YU+Via1Ja0ARgovK6C4u9sVVn0Ra7GJCUZol0QFjLLQ=
Subject key identifier: 15:B2:76:EB:86:3C:0F:2D:C8:55:F4:49:76:52:94:7E:D2:D9:33:DB
Certificate issuer: /CN=F36A2303AF/serialNumber=5EB88DF4BF9089D7049A1FBE8005E621EAAE862B
Certificate serial: 97
Authority key identifier: 5E:B8:8D:F4:BF:90:89:D7:04:9A:1F:BE:80:05:E6:21:EA:AE:86:2B
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/XriN9L-QidcEmh--gAXmIequhis.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36A2303/65715F78594311EAB30F4261F8AEA228/8A31DAE8B69711EA8CBAE61EF8AEA228.roa
Signing time: Thu 25 Jun 2020 03:54:17 +0000
ROA not before: Thu 25 Jun 2020 03:54:12 +0000
ROA not after: Sat 01 Jun 2030 03:54:12 +0000
asID: 328631
IP address blocks: 102.22.251.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36A2303/65715F78594311EAB30F4261F8AEA228/XriN9L-QidcEmh--gAXmIequhis.crl
rsync://rpki.afrinic.net/repository/member_repository/F36A2303/65715F78594311EAB30F4261F8AEA228/XriN9L-QidcEmh--gAXmIequhis.mft
rsync://rpki.afrinic.net/repository/afrinic/XriN9L-QidcEmh--gAXmIequhis.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 151 (0x97)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36A2303AF/serialNumber=5EB88DF4BF9089D7049A1FBE8005E621EAAE862B
Validity
Not Before: Jun 25 03:54:12 2020 GMT
Not After : Jun 1 03:54:12 2030 GMT
Subject: CN=5ef41fe8-f880
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:cc:0a:24:76:25:8d:5b:94:26:b2:63:39:90:
9f:9b:fa:50:cc:b5:94:33:ac:7c:aa:f8:f9:d1:44:
d9:60:31:c6:e9:54:b0:cb:fd:ec:99:1d:b3:52:7a:
c4:78:c2:0c:d7:34:f1:9b:87:47:6a:e9:61:b4:59:
58:cc:b1:4d:12:e3:c9:fd:a1:ae:69:71:c7:f2:53:
fb:09:56:4e:8c:c2:ba:49:24:9c:c7:08:e7:35:d5:
c8:d0:1c:75:05:06:77:ab:77:a0:fe:9e:a1:48:f4:
bb:e4:20:53:1b:15:07:6d:ea:0c:79:d5:37:78:04:
f1:73:8f:4b:ad:0f:a2:9e:d1:8c:20:b6:d8:c4:db:
6b:70:09:81:dd:b0:1c:c0:96:5e:c4:b1:a5:02:1a:
7c:97:5f:7a:38:99:e7:db:a4:8e:a7:c8:cc:a6:ae:
7d:3a:b7:89:08:9b:1a:26:39:69:64:9c:5f:a5:09:
c9:9a:f3:17:5b:20:0a:7c:9b:36:66:d7:ec:7c:8e:
93:08:2e:0d:b3:74:70:f7:e0:21:84:f0:81:e0:2e:
62:a7:0d:9b:f5:8e:c3:97:55:b7:69:2c:27:69:be:
0e:e5:c3:90:48:e5:46:76:fd:db:3d:4a:b5:f5:89:
7a:99:43:14:3c:87:ea:43:7c:08:36:c7:24:e9:c7:
df:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:B2:76:EB:86:3C:0F:2D:C8:55:F4:49:76:52:94:7E:D2:D9:33:DB
X509v3 Authority Key Identifier:
keyid:5E:B8:8D:F4:BF:90:89:D7:04:9A:1F:BE:80:05:E6:21:EA:AE:86:2B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36A2303/65715F78594311EAB30F4261F8AEA228/XriN9L-QidcEmh--gAXmIequhis.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/XriN9L-QidcEmh--gAXmIequhis.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36A2303/65715F78594311EAB30F4261F8AEA228/8A31DAE8B69711EA8CBAE61EF8AEA228.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.22.251.0/24
Signature Algorithm: sha256WithRSAEncryption
91:d4:09:4e:cb:31:cd:8d:b7:3a:8c:00:b3:5c:24:3a:72:ed:
2b:a3:1d:bd:6e:39:33:d3:cc:8b:6f:23:2d:41:90:b2:f7:63:
98:09:4e:72:f9:d6:b6:b9:f0:0d:f6:d8:4b:e0:36:2d:c5:a4:
8b:40:b6:68:74:64:0e:d7:81:2b:94:47:a4:69:b3:ec:53:11:
1b:5b:f9:5b:6a:b8:36:f6:34:7d:9a:82:cc:e0:b5:a2:c9:e8:
44:75:3f:73:43:a1:09:64:f9:4e:06:e5:7a:f9:b7:38:92:a9:
74:74:4d:32:f1:6a:55:67:fc:cb:17:b2:d6:ca:db:53:e3:aa:
10:de:6a:5c:f9:75:7c:12:87:ed:e2:58:ce:07:d6:ea:80:23:
97:12:8b:e6:29:c6:30:b3:ee:20:73:59:d3:b2:12:2a:dd:8d:
be:14:4e:bc:37:24:ea:62:74:36:47:7b:23:e9:6a:40:14:64:
d0:0d:a4:61:41:1b:2a:68:12:86:55:30:17:34:0d:53:60:92:
89:0a:25:5f:6e:06:a6:31:16:5c:9e:cb:5c:3a:16:0e:91:68:
a4:28:54:79:cf:d3:7c:9f:db:fa:de:34:98:70:37:07:f2:dc:
bd:7f:b1:fb:fc:c0:6b:d4:0b:1c:b9:d3:8f:0c:7c:d3:ca:a2:
9c:39:04:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:05:19 2024 by rpki-client on console-ams.rpki-client.org