Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36AF2CB/E4ACE12C0A8E11EE909468874AD9E6FC/D9CA76820A9F11EEB9123F3A4AD9E6FC.roa
File: D9CA76820A9F11EEB9123F3A4AD9E6FC.roa (raw, json)
Hash identifier: 6IGhXgfYF7R6/zTanzYP8lz10xNCaA4jE6HWerRQf8k=
Subject key identifier: 1D:54:2D:C1:3E:CC:00:04:31:01:45:20:64:CB:61:3A:80:B0:AF:D6
Certificate issuer: /CN=F36AF2CBAF/serialNumber=C38CDE3697B9E924341A10650FB593A3E88B4FED
Certificate serial: 04
Authority key identifier: C3:8C:DE:36:97:B9:E9:24:34:1A:10:65:0F:B5:93:A3:E8:8B:4F:ED
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/w4zeNpe56SQ0GhBlD7WTo-iLT-0.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36AF2CB/E4ACE12C0A8E11EE909468874AD9E6FC/D9CA76820A9F11EEB9123F3A4AD9E6FC.roa
Signing time: Wed 14 Jun 2023 10:40:17 +0000
ROA not before: Wed 14 Jun 2023 10:40:13 +0000
ROA not after: Tue 14 Jun 2033 10:40:13 +0000
asID: 328829
IP address blocks: 102.220.179.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36AF2CB/E4ACE12C0A8E11EE909468874AD9E6FC/w4zeNpe56SQ0GhBlD7WTo-iLT-0.crl
rsync://rpki.afrinic.net/repository/member_repository/F36AF2CB/E4ACE12C0A8E11EE909468874AD9E6FC/w4zeNpe56SQ0GhBlD7WTo-iLT-0.mft
rsync://rpki.afrinic.net/repository/afrinic/w4zeNpe56SQ0GhBlD7WTo-iLT-0.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4 (0x4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36AF2CBAF/serialNumber=C38CDE3697B9E924341A10650FB593A3E88B4FED
Validity
Not Before: Jun 14 10:40:13 2023 GMT
Not After : Jun 14 10:40:13 2033 GMT
Subject: CN=64899910-74f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:75:69:0a:19:74:08:97:c2:ab:03:1a:83:78:
2c:43:88:ee:f6:22:1a:bf:41:53:43:46:e8:ab:54:
bc:78:b9:10:8f:17:2f:1a:1d:d0:56:20:ba:d0:25:
2e:f3:5d:bf:11:1e:73:49:42:77:d3:ca:ff:05:97:
7a:f7:fb:84:2b:a3:d7:9e:ad:ed:4d:d2:a3:83:13:
17:60:87:a0:a4:4c:15:a7:a4:d9:a8:d8:ba:85:a7:
5c:53:23:b5:da:86:20:8a:0f:13:c7:cf:ab:0e:5c:
6c:b4:4c:18:4b:b7:dc:82:b4:36:e6:b4:92:b0:a5:
7f:5b:50:1b:41:35:ce:cf:cb:12:8a:ea:da:4b:e0:
ca:7b:95:45:a7:7d:51:7f:3f:91:df:22:ea:01:77:
7f:47:54:e8:5f:59:3b:69:8f:72:f0:af:31:b5:e2:
cd:04:a1:10:f7:20:e4:66:67:3d:4b:82:51:d7:30:
00:61:04:b9:c1:68:c4:62:bc:06:c1:c7:70:6a:02:
c1:d8:bf:0d:1d:3b:66:1f:dd:3a:99:d6:30:0e:ba:
3e:5c:18:a9:c5:8a:84:59:93:42:ba:0a:f2:8b:85:
ce:e6:3a:a6:89:a8:a3:3d:3b:a1:27:79:c4:55:2a:
66:7f:f8:14:e4:30:fb:c8:e2:39:a9:67:1f:d3:5a:
40:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:54:2D:C1:3E:CC:00:04:31:01:45:20:64:CB:61:3A:80:B0:AF:D6
X509v3 Authority Key Identifier:
keyid:C3:8C:DE:36:97:B9:E9:24:34:1A:10:65:0F:B5:93:A3:E8:8B:4F:ED
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36AF2CB/E4ACE12C0A8E11EE909468874AD9E6FC/w4zeNpe56SQ0GhBlD7WTo-iLT-0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/w4zeNpe56SQ0GhBlD7WTo-iLT-0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36AF2CB/E4ACE12C0A8E11EE909468874AD9E6FC/D9CA76820A9F11EEB9123F3A4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.220.179.0/24
Signature Algorithm: sha256WithRSAEncryption
ce:1f:44:62:83:1a:52:af:e2:c4:83:11:5c:39:15:f2:bf:32:
4a:70:be:33:2d:2d:4c:4a:20:76:99:18:d9:0a:49:8a:de:7b:
15:2e:71:fc:4e:d0:d3:cc:d6:85:9d:07:b4:88:ea:91:79:75:
47:21:ba:9c:dc:ae:98:45:18:68:5c:73:e7:ce:c3:e5:48:02:
b7:d0:73:d2:2e:10:e9:90:2b:7e:a9:bc:84:cd:36:17:97:49:
95:81:49:d3:13:9d:0f:f1:b6:88:2f:14:26:82:39:cd:5d:ae:
19:97:90:39:d8:19:df:38:a6:54:cb:93:7f:e3:31:94:ce:27:
51:27:02:47:55:79:4d:ab:4e:ba:fe:64:ab:76:f2:c0:34:4f:
31:71:77:6c:db:db:8c:d4:5d:47:61:e4:0f:2a:83:5a:e8:b2:
c6:ca:26:fc:69:0b:e7:59:ec:85:3e:cb:c0:b4:a2:8d:9d:55:
d6:6b:8e:cc:fe:de:34:19:c8:67:1a:07:24:53:a3:08:1e:38:
d3:dd:33:98:b0:88:63:7f:51:98:b8:c5:83:4e:7c:87:a6:4f:
78:94:b5:46:2f:55:39:07:78:9d:91:5f:5a:da:6e:2f:a6:38:
6f:79:83:24:6d:03:f5:7f:34:15:76:e9:b3:71:90:a7:4f:b8:
67:4d:fe:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:05:20 2024 by rpki-client on console-ams.rpki-client.org