Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36B95DE/0142933CCA5E11EAAA82C884F8AEA228/3B0F41F6119A11EE83C1C7674AD9E6FC.roa
File: 3B0F41F6119A11EE83C1C7674AD9E6FC.roa (raw, json)
Hash identifier: Akb8hG2TQ9VVrsrKElxgh/Wgpez3UXugTuk8ANcj3VE=
Subject key identifier: 5F:0A:CB:F7:F0:16:0E:43:BC:65:63:63:63:50:8B:77:FB:E6:2E:DE
Certificate issuer: /CN=F36B95DEAF/serialNumber=42D85C6FE43CDDD9C342A99123939EF6D10B9661
Certificate serial: 044B
Authority key identifier: 42:D8:5C:6F:E4:3C:DD:D9:C3:42:A9:91:23:93:9E:F6:D1:0B:96:61
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/Qthcb-Q83dnDQqmRI5Oe9tELlmE.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36B95DE/0142933CCA5E11EAAA82C884F8AEA228/3B0F41F6119A11EE83C1C7674AD9E6FC.roa
Signing time: Fri 23 Jun 2023 07:47:41 +0000
ROA not before: Fri 23 Jun 2023 07:47:37 +0000
ROA not after: Sat 20 Jul 2030 07:47:37 +0000
asID: 327849
IP address blocks: 102.212.124.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36B95DE/0142933CCA5E11EAAA82C884F8AEA228/Qthcb-Q83dnDQqmRI5Oe9tELlmE.crl
rsync://rpki.afrinic.net/repository/member_repository/F36B95DE/0142933CCA5E11EAAA82C884F8AEA228/Qthcb-Q83dnDQqmRI5Oe9tELlmE.mft
rsync://rpki.afrinic.net/repository/afrinic/Qthcb-Q83dnDQqmRI5Oe9tELlmE.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1099 (0x44b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36B95DEAF/serialNumber=42D85C6FE43CDDD9C342A99123939EF6D10B9661
Validity
Not Before: Jun 23 07:47:37 2023 GMT
Not After : Jul 20 07:47:37 2030 GMT
Subject: CN=64954e1d-319e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:92:c9:70:64:75:3e:93:0e:8c:c7:1e:a4:c4:
38:ad:dd:01:93:70:69:a3:73:d3:9c:a9:06:99:41:
51:ce:f1:57:13:c4:ee:d5:13:d7:43:9f:ff:cd:e2:
1b:40:8a:fb:01:be:81:5e:39:55:31:14:22:dc:17:
46:25:7f:49:6d:38:89:0c:2f:4d:97:1c:c5:de:45:
6e:14:b6:ec:ac:a3:70:c0:2b:df:b0:1e:35:70:96:
72:74:ea:26:29:e8:b2:6e:7c:c8:39:20:ad:d2:36:
92:5a:56:e0:2f:4e:68:70:d8:a7:f1:f6:c2:a5:4c:
8c:97:ec:da:02:66:d5:9d:f5:23:bb:95:82:0b:40:
4c:c1:ae:7c:b9:51:4c:bd:da:b6:e2:18:e2:7b:97:
54:0d:5f:1e:f4:72:31:2f:8f:35:5c:50:4b:08:8e:
4c:c4:24:fe:59:03:40:b7:25:d9:80:7e:c7:2b:8b:
20:90:38:20:ce:87:9b:46:cc:71:86:49:ef:57:c6:
49:29:f7:49:d5:fa:5b:87:05:9e:ba:dd:f5:e3:3f:
af:2f:d0:1f:bc:88:01:c8:37:aa:a7:f8:dd:bf:fe:
aa:42:ee:00:63:a7:f6:7a:a2:85:9c:3b:35:0b:31:
42:5d:23:8f:fe:17:4e:21:9b:d3:2d:1d:74:f4:97:
4d:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:0A:CB:F7:F0:16:0E:43:BC:65:63:63:63:50:8B:77:FB:E6:2E:DE
X509v3 Authority Key Identifier:
keyid:42:D8:5C:6F:E4:3C:DD:D9:C3:42:A9:91:23:93:9E:F6:D1:0B:96:61
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36B95DE/0142933CCA5E11EAAA82C884F8AEA228/Qthcb-Q83dnDQqmRI5Oe9tELlmE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/Qthcb-Q83dnDQqmRI5Oe9tELlmE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36B95DE/0142933CCA5E11EAAA82C884F8AEA228/3B0F41F6119A11EE83C1C7674AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.212.124.0/22
Signature Algorithm: sha256WithRSAEncryption
22:46:87:8e:d4:22:67:bb:bb:d2:f4:d3:00:21:98:a5:3e:33:
6d:09:a1:1a:c9:52:6f:f6:93:bf:3c:f5:ad:45:e0:88:34:5c:
e4:c6:e8:4f:df:0e:7a:ab:1c:a0:e4:d3:75:4f:e1:3f:8b:e3:
5d:32:61:8f:98:ef:1c:ab:1c:33:1d:e1:8b:8a:f9:b5:a9:c9:
f2:e8:70:1f:29:95:f6:cb:a6:8a:80:73:93:03:e2:11:b9:4e:
a3:92:ea:22:c0:e4:4d:51:39:02:eb:37:d8:be:a4:92:a9:5a:
08:a4:48:5d:25:0e:b2:46:6c:1f:1c:40:aa:5b:c6:58:f5:4f:
46:30:8a:6c:81:4d:0b:8a:b9:26:2d:ac:fd:94:ee:38:a4:e9:
7f:f0:76:a7:2e:61:03:ab:c7:81:1f:af:91:a8:ed:bc:bf:a8:
be:c5:6d:0d:99:b1:2a:27:3c:df:5d:a3:29:97:02:31:e6:3e:
35:b0:81:f8:ca:f2:bd:b5:91:d9:c2:df:51:e2:d4:3d:24:8b:
06:0f:b7:97:cb:99:bb:3a:b0:b2:f0:79:d3:f7:51:bd:a7:c9:
c4:d7:4a:36:52:66:00:ff:06:5d:67:ce:6e:9c:66:81:72:f6:
6e:d1:5a:31:9a:96:00:df:32:37:98:55:de:b6:ff:8e:c7:49:
f5:d6:f6:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:10:14 2024 by rpki-client on console-fra.rpki-client.org