Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36A4459/CDD74D762D1B11EDBE00888BF1222468/C08D1C382D1E11ED81F11D93F1222468.roa
File: C08D1C382D1E11ED81F11D93F1222468.roa (raw, json)
Hash identifier: lVr4qDLggHX3PLabm1ZYWRZMbT4vO1C7CbkdD5snQVw=
Subject key identifier: 04:EB:B8:99:6E:44:54:BD:1F:99:47:5E:2E:9B:47:9F:DE:35:83:7A
Certificate issuer: /CN=F36A4459AF/serialNumber=84BC22A14BB5F889BC10A22CF17C9C19B519B288
Certificate serial: 06
Authority key identifier: 84:BC:22:A1:4B:B5:F8:89:BC:10:A2:2C:F1:7C:9C:19:B5:19:B2:88
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/hLwioUu1-Im8EKIs8XycGbUZsog.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36A4459/CDD74D762D1B11EDBE00888BF1222468/C08D1C382D1E11ED81F11D93F1222468.roa
Signing time: Mon 05 Sep 2022 13:29:22 +0000
ROA not before: Mon 05 Sep 2022 13:29:18 +0000
ROA not after: Sun 05 Sep 2032 13:29:18 +0000
asID: 37638
IP address blocks: 102.222.230.0/23 maxlen: 23
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36A4459/CDD74D762D1B11EDBE00888BF1222468/hLwioUu1-Im8EKIs8XycGbUZsog.crl
rsync://rpki.afrinic.net/repository/member_repository/F36A4459/CDD74D762D1B11EDBE00888BF1222468/hLwioUu1-Im8EKIs8XycGbUZsog.mft
rsync://rpki.afrinic.net/repository/afrinic/hLwioUu1-Im8EKIs8XycGbUZsog.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6 (0x6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36A4459AF/serialNumber=84BC22A14BB5F889BC10A22CF17C9C19B519B288
Validity
Not Before: Sep 5 13:29:18 2022 GMT
Not After : Sep 5 13:29:18 2032 GMT
Subject: CN=6315f9b2-82cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:12:6c:0d:90:a3:9e:c2:f9:1b:23:72:12:3a:
fd:20:66:6a:53:65:27:5e:95:aa:82:4f:7e:21:bd:
22:c0:23:0b:67:ec:6a:0a:a8:a2:c6:73:ad:16:59:
ef:fe:ae:92:94:a3:41:ee:eb:b3:05:93:d1:64:61:
02:71:3c:40:a4:5f:7d:ef:58:cf:b8:2a:c0:89:a4:
78:aa:69:f3:99:f4:2b:e8:57:10:d2:3f:6a:f9:1e:
e4:28:74:26:5e:2b:10:94:da:df:ac:32:45:66:6e:
7a:ae:cc:73:9e:51:c9:f7:b7:bd:a0:a8:7c:a6:d8:
70:78:4f:f7:65:82:36:48:b3:1a:be:94:0d:bd:e1:
51:e9:14:c1:d4:fd:33:ac:e9:0e:13:1d:a5:0a:24:
e9:0a:1a:d4:2c:9c:ad:b6:53:9f:e1:5e:8e:92:8c:
6a:44:07:c2:e7:56:3e:04:ab:d2:08:9e:48:cb:58:
7d:9a:3e:1a:ab:71:56:ba:18:6b:48:b0:3e:35:5c:
0c:50:57:b1:35:1f:9b:cc:e9:fb:b7:6b:72:a6:b9:
b0:32:79:56:57:45:0b:f7:68:29:43:5a:66:83:dd:
fd:70:97:cb:9e:f1:ff:bb:c5:8e:08:8f:db:cd:a6:
cc:c1:bf:8f:d8:d2:9d:aa:c7:0a:8f:ec:de:9b:98:
42:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:EB:B8:99:6E:44:54:BD:1F:99:47:5E:2E:9B:47:9F:DE:35:83:7A
X509v3 Authority Key Identifier:
keyid:84:BC:22:A1:4B:B5:F8:89:BC:10:A2:2C:F1:7C:9C:19:B5:19:B2:88
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36A4459/CDD74D762D1B11EDBE00888BF1222468/hLwioUu1-Im8EKIs8XycGbUZsog.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/hLwioUu1-Im8EKIs8XycGbUZsog.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36A4459/CDD74D762D1B11EDBE00888BF1222468/C08D1C382D1E11ED81F11D93F1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.222.230.0/23
Signature Algorithm: sha256WithRSAEncryption
94:8c:d7:4b:9a:76:a2:8e:35:f7:d9:9f:56:17:4a:69:36:f7:
f2:e0:4b:30:bb:93:38:47:7c:83:b8:a5:fe:da:92:2e:09:f7:
6e:14:3d:b2:31:06:44:a0:dc:86:60:58:97:94:98:78:f1:79:
d2:fe:97:6f:88:3a:74:f5:f2:eb:b3:d8:8f:34:c1:33:53:7e:
b2:14:55:a1:bb:b2:1a:32:f4:bb:bc:b9:6c:79:9a:ff:9b:3e:
1c:bc:2b:6d:86:e7:d7:0a:c1:3b:fc:db:6c:5f:36:be:cf:87:
03:b3:76:b7:15:4d:50:dc:4d:24:31:d8:65:0c:52:62:00:ed:
4f:ca:87:f5:a5:eb:25:20:3c:15:81:29:a5:de:4d:b0:2b:d1:
dd:10:47:9a:a9:e1:fc:aa:56:b1:62:f2:17:53:37:b6:f7:6c:
a9:f5:fa:0d:56:f4:53:d6:29:0d:63:3b:ce:3b:41:1b:72:5f:
22:98:e0:b9:f8:5c:dc:50:51:5f:f8:79:61:5d:78:37:30:81:
da:c7:fe:75:78:e2:64:8f:07:dd:98:65:a6:ad:48:ab:86:f3:
56:de:35:25:07:7c:a1:bf:8f:e6:5d:28:a2:67:ce:38:2d:70:
f7:be:85:f2:8b:53:bc:c6:20:46:50:fe:cc:6c:5f:8a:7c:8b:
96:19:3f:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 03:52:58 2024 by rpki-client on console-fra.rpki-client.org