Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36A2CD2/553F50F064E511E8968FEF2EF8AEA228/D8C2BDE0D02211EA8498CC41F8AEA228.roa
File: D8C2BDE0D02211EA8498CC41F8AEA228.roa (raw, json)
Hash identifier: I2gZAkM/7aE0lRi9sq+Qnq3RN4IGql/esMqczFTNr+A=
Subject key identifier: 04:6C:58:50:95:62:F7:C2:38:64:B5:A3:33:5E:4A:34:C9:FB:AB:7B
Certificate issuer: /CN=F36A2CD2AF/serialNumber=335A53C1132E540C3AB5DF42F14887B3324DEB44
Certificate serial: 032F
Authority key identifier: 33:5A:53:C1:13:2E:54:0C:3A:B5:DF:42:F1:48:87:B3:32:4D:EB:44
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/M1pTwRMuVAw6td9C8UiHszJN60Q.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36A2CD2/553F50F064E511E8968FEF2EF8AEA228/D8C2BDE0D02211EA8498CC41F8AEA228.roa
Signing time: Mon 27 Jul 2020 16:04:28 +0000
ROA not before: Mon 27 Jul 2020 16:04:22 +0000
ROA not after: Sat 27 Jul 2030 16:04:22 +0000
asID: 327817
IP address blocks: 102.222.28.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36A2CD2/553F50F064E511E8968FEF2EF8AEA228/M1pTwRMuVAw6td9C8UiHszJN60Q.crl
rsync://rpki.afrinic.net/repository/member_repository/F36A2CD2/553F50F064E511E8968FEF2EF8AEA228/M1pTwRMuVAw6td9C8UiHszJN60Q.mft
rsync://rpki.afrinic.net/repository/afrinic/M1pTwRMuVAw6td9C8UiHszJN60Q.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 27 Nov 2024 00:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 815 (0x32f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36A2CD2AF/serialNumber=335A53C1132E540C3AB5DF42F14887B3324DEB44
Validity
Not Before: Jul 27 16:04:22 2020 GMT
Not After : Jul 27 16:04:22 2030 GMT
Subject: CN=5f1efb0b-9008
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:a7:06:e6:82:b8:f3:e1:d8:d7:0c:7f:53:b6:
e0:a4:ab:ba:a2:b5:f8:a5:b8:45:d2:34:26:ab:23:
50:2f:10:91:6c:6b:5b:0a:8f:83:8a:3b:99:64:2e:
e4:ef:de:c0:2f:34:fe:37:2b:1d:61:03:b5:e8:c9:
1f:44:1d:a9:f3:25:c4:69:93:28:b1:d3:e7:35:b2:
69:5f:56:68:1a:c7:b6:41:b8:35:78:1b:7d:90:9b:
df:ee:3b:ac:84:b0:1c:17:d1:9e:b2:c6:db:31:b4:
e4:10:4c:df:a6:ff:c8:44:95:8e:ac:71:16:70:5c:
15:48:e2:ef:87:9e:a4:c1:c5:2a:25:b4:11:16:c8:
3f:34:3b:3a:33:f8:10:d1:9a:49:3f:6e:95:df:16:
41:0b:ce:f8:29:c3:18:c1:95:2c:2d:dd:b9:2c:18:
90:2a:b1:e0:42:ee:47:4d:fe:d6:13:1f:32:f4:68:
31:06:b7:b7:d2:c1:8c:8c:19:a6:b5:de:5f:87:18:
40:ae:f4:31:dd:e0:b8:30:f8:10:f9:66:26:93:df:
73:4f:5f:2b:bf:7d:96:d6:22:9e:23:9e:39:91:cf:
0e:de:26:47:30:23:8f:a4:44:f5:51:eb:f8:22:43:
72:ce:3a:55:ff:73:d6:45:b2:b8:19:ec:1f:10:a2:
0c:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:6C:58:50:95:62:F7:C2:38:64:B5:A3:33:5E:4A:34:C9:FB:AB:7B
X509v3 Authority Key Identifier:
keyid:33:5A:53:C1:13:2E:54:0C:3A:B5:DF:42:F1:48:87:B3:32:4D:EB:44
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36A2CD2/553F50F064E511E8968FEF2EF8AEA228/M1pTwRMuVAw6td9C8UiHszJN60Q.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/M1pTwRMuVAw6td9C8UiHszJN60Q.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36A2CD2/553F50F064E511E8968FEF2EF8AEA228/D8C2BDE0D02211EA8498CC41F8AEA228.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.222.28.0/22
Signature Algorithm: sha256WithRSAEncryption
9b:99:89:61:d4:40:9d:d0:07:68:fd:ea:57:b7:c4:d3:b5:aa:
a1:95:db:4f:91:15:b9:c3:3e:37:20:5f:86:ff:57:ad:32:c9:
ef:6c:1e:d3:e8:39:4a:da:f9:96:a2:8c:26:83:fc:ae:88:45:
51:4c:8c:94:50:37:3b:87:f0:08:89:5d:83:61:b2:7b:1a:54:
d6:8a:31:65:53:df:88:5e:a9:c8:90:36:f9:a0:17:0a:5e:27:
1f:e8:2f:36:35:ac:5a:dc:ab:13:2c:73:7f:fd:4e:f3:77:28:
9b:ec:d7:47:b9:0c:ff:38:13:a1:8a:1a:7f:66:1a:72:b3:3f:
49:a0:08:f2:43:4e:72:96:61:58:77:1b:1f:60:37:d8:46:76:
4f:5d:0b:1f:bf:12:fc:55:31:b8:c6:08:e4:46:d6:d7:82:47:
45:44:4b:07:74:80:14:00:c4:e0:e4:4a:64:ad:bc:79:c9:8f:
cb:2e:64:ee:3a:0d:a2:6b:96:00:e8:47:52:51:d7:72:4b:23:
48:db:0f:fd:77:0a:3e:e5:8d:c5:d2:10:7c:dc:56:b3:19:d4:
cb:2f:cc:07:46:54:61:65:49:12:75:70:b9:36:20:7d:3c:08:
1a:0f:bb:cb:88:c7:a6:0d:c5:4f:72:0a:f6:1c:58:4c:9b:48:
23:b5:b2:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 03:00:10 2024 by rpki-client on console-fra.rpki-client.org