Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36A6DD7/5CB7C22E587F11E5BF942749F8AEA228/F45B73E2155111EC8F343A28D8A014CE.roa
File: F45B73E2155111EC8F343A28D8A014CE.roa (raw, json)
Hash identifier: rQq4+V7iobUemOlZbPElo30InlfOvngPqnzC4dd6Uic=
Subject key identifier: 0C:EC:3A:D6:27:B0:5C:A9:A8:49:34:66:FF:A5:3F:F4:C8:32:7E:3D
Certificate issuer: /CN=F36A6DD7AF/serialNumber=3E226B20C2E1769880FC68E1DD335AD17A0ACEA3
Certificate serial: 08CC
Authority key identifier: 3E:22:6B:20:C2:E1:76:98:80:FC:68:E1:DD:33:5A:D1:7A:0A:CE:A3
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/PiJrIMLhdpiA_Gjh3TNa0XoKzqM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36A6DD7/5CB7C22E587F11E5BF942749F8AEA228/F45B73E2155111EC8F343A28D8A014CE.roa
Signing time: Tue 14 Sep 2021 11:50:28 +0000
ROA not before: Tue 14 Sep 2021 11:50:24 +0000
ROA not after: Thu 16 Dec 2049 11:50:24 +0000
asID: 327767
IP address blocks: 102.218.132.0/22 maxlen: 23
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36A6DD7/5CB7C22E587F11E5BF942749F8AEA228/PiJrIMLhdpiA_Gjh3TNa0XoKzqM.crl
rsync://rpki.afrinic.net/repository/member_repository/F36A6DD7/5CB7C22E587F11E5BF942749F8AEA228/PiJrIMLhdpiA_Gjh3TNa0XoKzqM.mft
rsync://rpki.afrinic.net/repository/afrinic/PiJrIMLhdpiA_Gjh3TNa0XoKzqM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2252 (0x8cc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36A6DD7AF/serialNumber=3E226B20C2E1769880FC68E1DD335AD17A0ACEA3
Validity
Not Before: Sep 14 11:50:24 2021 GMT
Not After : Dec 16 11:50:24 2049 GMT
Subject: CN=61408c84-762d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:e8:11:88:42:de:78:4c:e5:05:27:31:6e:f4:
c6:bf:25:be:a0:3a:a0:f8:ab:64:96:88:eb:b4:16:
85:b2:1b:e3:99:d4:cd:d0:0e:20:19:ef:7c:94:bc:
2b:02:66:76:27:e4:4c:32:2e:cd:29:01:88:38:0e:
8b:a9:c0:de:78:80:71:d4:6b:b6:d9:55:ca:55:d1:
0a:ab:80:76:8f:eb:c2:ef:43:17:e8:c2:5f:8a:79:
e2:d0:58:4f:30:e0:b2:c3:62:2b:14:ce:57:33:d7:
ca:37:af:10:21:fa:5e:e5:15:28:b1:e5:75:00:42:
3c:c0:7b:34:79:00:79:06:87:4d:35:ca:de:c1:20:
08:cb:73:a1:c5:33:0b:46:7c:f6:3a:09:29:8e:a2:
30:dc:57:36:8e:96:3f:42:33:e6:f8:82:c4:46:2f:
27:aa:e1:f6:3e:c1:d1:ec:48:60:24:7d:59:6f:22:
20:8f:e0:f5:64:59:b4:19:fb:c1:90:97:ed:bc:8e:
ff:35:59:cb:5f:56:8e:19:fe:9c:35:a1:ed:b1:82:
04:14:64:16:10:f1:00:7a:8a:7c:a9:e7:5b:cb:f9:
23:db:8e:9a:c7:3a:58:3b:61:58:e9:89:2f:03:7e:
d9:ff:97:bf:a5:d6:fb:81:19:15:d1:09:ca:c8:7e:
6e:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:EC:3A:D6:27:B0:5C:A9:A8:49:34:66:FF:A5:3F:F4:C8:32:7E:3D
X509v3 Authority Key Identifier:
keyid:3E:22:6B:20:C2:E1:76:98:80:FC:68:E1:DD:33:5A:D1:7A:0A:CE:A3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36A6DD7/5CB7C22E587F11E5BF942749F8AEA228/PiJrIMLhdpiA_Gjh3TNa0XoKzqM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/PiJrIMLhdpiA_Gjh3TNa0XoKzqM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36A6DD7/5CB7C22E587F11E5BF942749F8AEA228/F45B73E2155111EC8F343A28D8A014CE.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.218.132.0/22
Signature Algorithm: sha256WithRSAEncryption
6e:28:6e:54:57:da:e2:8b:e4:ae:ae:68:17:d6:be:4e:bd:b3:
0e:d9:79:f9:3c:08:93:67:51:71:ef:0c:aa:31:ca:ec:ae:00:
1e:0c:e0:69:51:56:1e:1b:6a:08:fc:13:15:97:f7:40:b5:4d:
97:64:c0:46:ef:94:fb:d4:4f:2a:ee:fa:c8:81:f9:8a:99:de:
c4:54:fb:3a:f1:b3:20:14:63:ee:55:1e:72:0b:08:26:87:78:
2b:de:26:a3:b7:2c:ce:83:14:f2:a8:7f:d1:71:1b:bf:60:2a:
d6:da:3e:80:20:26:a8:ca:86:56:66:30:65:27:bb:4b:fd:9d:
6d:17:e2:8b:55:f0:37:39:6c:cd:bf:55:fa:75:10:9a:a8:07:
1a:0d:50:f2:c7:3c:69:58:b4:74:6a:3f:2d:58:fe:74:b9:e0:
a6:26:49:ae:b4:66:26:4a:f6:57:fe:87:f4:2d:a0:cc:34:da:
d5:35:01:fc:45:e4:48:a0:07:c1:4c:db:4f:6a:de:28:d4:27:
42:df:5f:46:bb:2e:22:1b:4c:0f:46:99:fa:91:da:63:33:90:
72:98:0b:b8:5e:f8:77:41:c6:ff:97:b2:21:8b:02:56:ff:de:
bf:54:f5:ee:df:b4:d3:0f:5f:36:3f:58:a8:b2:76:b6:e7:9f:
63:eb:d9:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:10:14 2024 by rpki-client on console-fra.rpki-client.org