Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36B09DC/37BEF19EBE7611EDB6B06898F1222468/E8BD056CBE7611EDA48E6C9AF1222468.roa
File: E8BD056CBE7611EDA48E6C9AF1222468.roa (raw, json)
Hash identifier: 3G5RKkTxRd00ttqtYAIBvcE2h9XaoJ7ML38raK/0k9M=
Subject key identifier: 96:2F:CE:BF:49:64:F0:18:2E:FA:DC:32:7E:DE:30:46:C7:C1:C2:73
Certificate issuer: /CN=F36B09DCAF/serialNumber=5336D9131D828C81671C26C7838690BB9FCCC98F
Certificate serial: 02
Authority key identifier: 53:36:D9:13:1D:82:8C:81:67:1C:26:C7:83:86:90:BB:9F:CC:C9:8F
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/UzbZEx2CjIFnHCbHg4aQu5_MyY8.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36B09DC/37BEF19EBE7611EDB6B06898F1222468/E8BD056CBE7611EDA48E6C9AF1222468.roa
Signing time: Thu 09 Mar 2023 12:35:44 +0000
ROA not before: Thu 09 Mar 2023 12:35:39 +0000
ROA not after: Wed 03 Mar 2032 12:35:39 +0000
asID: 329210
IP address blocks: 102.213.240.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36B09DC/37BEF19EBE7611EDB6B06898F1222468/UzbZEx2CjIFnHCbHg4aQu5_MyY8.crl
rsync://rpki.afrinic.net/repository/member_repository/F36B09DC/37BEF19EBE7611EDB6B06898F1222468/UzbZEx2CjIFnHCbHg4aQu5_MyY8.mft
rsync://rpki.afrinic.net/repository/afrinic/UzbZEx2CjIFnHCbHg4aQu5_MyY8.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2 (0x2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36B09DCAF/serialNumber=5336D9131D828C81671C26C7838690BB9FCCC98F
Validity
Not Before: Mar 9 12:35:39 2023 GMT
Not After : Mar 3 12:35:39 2032 GMT
Subject: CN=6409d2a0-92c5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:b8:09:d0:22:79:6d:91:e4:36:b5:9c:c5:73:
fc:cf:ed:90:44:21:f2:c0:75:9c:9a:86:b7:1b:9e:
33:bc:db:ba:ed:cc:1a:59:b6:1e:c3:9e:29:03:d9:
85:5d:a3:c7:85:45:b6:a2:a0:c9:4f:5e:7b:d5:40:
40:eb:82:40:2f:df:59:0f:07:1e:57:ed:ba:c7:3b:
7a:6e:c0:e6:69:a5:f1:12:94:e6:f8:d6:ae:77:7f:
be:5e:3f:15:c3:35:da:e5:c6:b5:e9:c2:69:b0:b0:
ea:5c:59:58:02:36:db:ed:06:d2:25:93:cd:5c:1e:
ed:2a:9f:1e:de:3b:77:0e:9b:e4:e7:e9:5d:ec:df:
54:e4:fb:7c:21:cd:b5:ad:af:5e:44:87:29:33:12:
89:ef:55:8f:a4:4a:af:a2:e3:82:5f:0e:57:f3:05:
96:36:b2:45:07:bf:2a:4f:60:74:0e:76:7e:b7:35:
fd:b0:44:5b:46:9a:16:6b:a7:63:3c:39:82:c1:8a:
f9:c7:63:f7:7f:10:7c:ca:98:85:6f:d9:2a:cb:c0:
78:82:0a:65:9a:b0:e8:8d:9b:98:bd:4f:72:8c:9e:
e3:fa:de:e2:84:dc:a7:6b:2e:b5:55:09:9a:f2:c9:
65:df:c3:d6:1b:72:ab:e1:95:a9:6a:7a:9a:d8:56:
2e:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:2F:CE:BF:49:64:F0:18:2E:FA:DC:32:7E:DE:30:46:C7:C1:C2:73
X509v3 Authority Key Identifier:
keyid:53:36:D9:13:1D:82:8C:81:67:1C:26:C7:83:86:90:BB:9F:CC:C9:8F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36B09DC/37BEF19EBE7611EDB6B06898F1222468/UzbZEx2CjIFnHCbHg4aQu5_MyY8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/UzbZEx2CjIFnHCbHg4aQu5_MyY8.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36B09DC/37BEF19EBE7611EDB6B06898F1222468/E8BD056CBE7611EDA48E6C9AF1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.213.240.0/24
Signature Algorithm: sha256WithRSAEncryption
ad:e8:fc:8a:c8:c3:45:53:7e:4e:fa:86:96:fa:72:f6:ad:67:
d6:b4:99:09:97:1f:c3:13:84:8d:ba:76:11:13:8a:96:2d:8a:
bf:0d:d1:e7:be:d4:f0:4e:f9:71:18:36:32:32:6c:8b:1a:9d:
f4:c9:3e:3e:88:d9:e2:ad:ad:45:98:89:ea:a4:3a:ea:07:8f:
e2:0c:4f:60:de:f2:27:dc:cc:48:8c:92:2b:18:a4:81:7b:a1:
20:df:8c:4b:cb:b7:70:b3:90:29:98:f1:2c:b6:09:fa:d9:f5:
b8:e8:3d:3b:ec:79:b0:94:ee:da:61:84:44:49:31:dc:47:91:
04:0e:88:38:15:ab:f8:4c:6b:f5:eb:ff:7c:86:e3:57:2b:b9:
85:18:9e:be:51:56:54:7f:f6:42:41:10:f8:40:a2:76:87:2d:
74:df:0b:da:1c:18:d5:04:65:d0:a8:94:5f:aa:03:74:f9:81:
2e:37:2e:f8:af:cc:7a:2d:9b:78:82:86:47:75:6e:72:c4:84:
49:1a:c8:a1:bb:6e:b3:68:3e:cc:1c:96:cf:15:dd:b3:b1:3d:
5a:81:92:bc:06:73:b8:31:ed:b8:70:fd:81:8f:25:03:aa:40:
02:67:5d:16:5e:84:0c:67:d1:61:f6:11:18:7d:e4:20:16:e9:
10:b7:b4:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 03:52:58 2024 by rpki-client on console-fra.rpki-client.org