Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36B4580/E19B7B22E21711EEA18E8ABF775412E6/33CDD534E21811EEADAEADC1775412E6.roa
File: 33CDD534E21811EEADAEADC1775412E6.roa (raw, json)
Hash identifier: zBCcaHSSJiFVaqIDbPbS61APz7NmOnVb/26SMlWLcvQ=
Subject key identifier: 5C:FB:C8:F8:2F:3C:10:41:5D:91:37:BA:F7:84:72:62:7B:FB:02:A6
Certificate issuer: /CN=F36B4580AF/serialNumber=2CED250892D97A90AA13323ACA4E45D251769258
Certificate serial: 02
Authority key identifier: 2C:ED:25:08:92:D9:7A:90:AA:13:32:3A:CA:4E:45:D2:51:76:92:58
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/LO0lCJLZepCqEzI6yk5F0lF2klg.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36B4580/E19B7B22E21711EEA18E8ABF775412E6/33CDD534E21811EEADAEADC1775412E6.roa
Signing time: Thu 14 Mar 2024 15:33:27 +0000
ROA not before: Thu 14 Mar 2024 15:33:24 +0000
ROA not after: Sun 31 Dec 2034 15:33:24 +0000
asID: 329409
IP address blocks: 102.209.155.0/24 maxlen: 24
2c0f:6f40::/32 maxlen: 56
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36B4580/E19B7B22E21711EEA18E8ABF775412E6/LO0lCJLZepCqEzI6yk5F0lF2klg.crl
rsync://rpki.afrinic.net/repository/member_repository/F36B4580/E19B7B22E21711EEA18E8ABF775412E6/LO0lCJLZepCqEzI6yk5F0lF2klg.mft
rsync://rpki.afrinic.net/repository/afrinic/LO0lCJLZepCqEzI6yk5F0lF2klg.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2 (0x2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36B4580AF/serialNumber=2CED250892D97A90AA13323ACA4E45D251769258
Validity
Not Before: Mar 14 15:33:24 2024 GMT
Not After : Dec 31 15:33:24 2034 GMT
Subject: CN=65f318c7-c11e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:6a:9e:d4:fd:57:f8:f6:8b:57:40:ad:6d:95:
5a:d9:52:12:9a:aa:57:2a:32:45:41:97:b4:56:d7:
e6:12:a1:90:d8:d3:3d:f1:f0:51:20:ec:63:dd:cf:
a4:3b:11:26:b9:b4:c8:0f:0b:f9:df:cf:0e:b2:0b:
43:df:be:fe:f2:81:63:4e:2d:b1:04:d8:33:07:01:
c0:95:23:82:70:25:e0:60:33:ba:76:f2:42:ca:61:
68:e2:3e:49:30:77:3e:92:e6:12:d4:0b:fb:1d:7d:
d8:42:5a:22:9c:f9:14:3a:fd:48:3e:13:c2:86:0f:
bf:3b:b3:3f:21:6a:1b:e8:1b:61:94:a9:a9:21:0f:
5d:21:17:d3:00:ca:07:0c:21:34:c9:6f:1f:3d:dc:
9a:b3:d1:ff:5a:30:31:9c:e0:63:03:d0:8a:71:66:
b6:94:27:29:c6:85:05:43:e7:a8:49:c9:4a:20:7a:
da:f1:81:fe:e8:dc:1e:c1:dc:dc:87:f9:13:d3:9f:
ca:28:72:8a:a1:d2:4e:8b:09:53:0a:c6:d3:1b:05:
cf:ba:6b:24:0f:8d:a4:2e:2c:b7:cb:6f:fd:1e:32:
a3:c8:70:4c:05:e0:5f:62:7b:d3:6e:d8:29:85:11:
62:f0:cc:32:29:97:10:aa:18:61:63:06:19:86:2b:
70:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:FB:C8:F8:2F:3C:10:41:5D:91:37:BA:F7:84:72:62:7B:FB:02:A6
X509v3 Authority Key Identifier:
keyid:2C:ED:25:08:92:D9:7A:90:AA:13:32:3A:CA:4E:45:D2:51:76:92:58
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36B4580/E19B7B22E21711EEA18E8ABF775412E6/LO0lCJLZepCqEzI6yk5F0lF2klg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/LO0lCJLZepCqEzI6yk5F0lF2klg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36B4580/E19B7B22E21711EEA18E8ABF775412E6/33CDD534E21811EEADAEADC1775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.209.155.0/24
IPv6:
2c0f:6f40::/32
Signature Algorithm: sha256WithRSAEncryption
92:0b:cf:bd:e8:65:0b:83:c8:94:3e:19:64:92:79:c0:1b:db:
db:5d:e1:0f:b2:0a:9e:1d:a3:1c:96:af:7d:21:c9:2e:b6:60:
1d:59:90:2e:c3:02:c2:c4:47:7f:ff:8e:18:1b:c8:9f:5c:91:
06:99:38:42:3f:f9:e0:15:a3:61:46:9c:41:bd:d2:6b:4c:86:
4a:28:87:ad:c3:db:91:e1:18:39:45:1f:ab:db:6b:dd:cb:5d:
ca:c9:a5:33:bc:11:0c:56:dd:29:8d:24:fb:6a:b1:06:78:86:
03:05:6a:d6:5a:d6:08:37:c8:e6:13:82:98:e0:cd:10:f3:00:
2e:1f:63:2e:cb:e3:7a:78:50:a3:7a:a6:a4:95:a5:15:97:bf:
e6:3b:72:c0:7a:b5:06:e7:26:56:6f:74:e0:38:63:f3:05:de:
02:c6:a3:f9:e2:21:cf:b6:33:e5:ae:75:39:e3:77:7a:c1:3d:
c4:72:86:da:dd:ea:f9:d3:10:b4:22:a9:8a:82:09:80:4d:9c:
e3:e5:fb:2f:6e:82:d6:dc:15:b8:61:99:16:99:ca:a0:15:e7:
b7:cf:d2:ee:18:ee:c7:c5:6f:14:d1:7b:bc:d8:42:01:20:85:
27:16:ef:5a:27:15:5a:20:ca:98:66:12:0e:4d:75:23:c4:e2:
e0:22:20:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 03:52:58 2024 by rpki-client on console-fra.rpki-client.org