Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36BC80A/472EF5B2E75C11EC9D7F90D8F1222468/565A309AAA4411EE82EC719A775412E6.roa
File: 565A309AAA4411EE82EC719A775412E6.roa (raw, json)
Hash identifier: w+NXlL7WYD4hkFC1Zg/6oqPBSnT10uVKTO9QtVy5wAw=
Subject key identifier: 55:A5:D3:22:99:B9:6F:DF:8B:76:75:5A:77:DB:04:41:DD:57:D3:DF
Certificate issuer: /CN=F36BC80AAF/serialNumber=8C8F8CE2AD55B9366BEC6EDF492CD9C1498E0664
Certificate serial: 026B
Authority key identifier: 8C:8F:8C:E2:AD:55:B9:36:6B:EC:6E:DF:49:2C:D9:C1:49:8E:06:64
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/jI-M4q1VuTZr7G7fSSzZwUmOBmQ.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36BC80A/472EF5B2E75C11EC9D7F90D8F1222468/565A309AAA4411EE82EC719A775412E6.roa
Signing time: Wed 03 Jan 2024 14:28:18 +0000
ROA not before: Wed 03 Jan 2024 14:28:14 +0000
ROA not after: Tue 31 Jan 2034 14:28:14 +0000
asID: 59895
IP address blocks: 102.223.186.0/24 maxlen: 24
102.223.187.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36BC80A/472EF5B2E75C11EC9D7F90D8F1222468/jI-M4q1VuTZr7G7fSSzZwUmOBmQ.crl
rsync://rpki.afrinic.net/repository/member_repository/F36BC80A/472EF5B2E75C11EC9D7F90D8F1222468/jI-M4q1VuTZr7G7fSSzZwUmOBmQ.mft
rsync://rpki.afrinic.net/repository/afrinic/jI-M4q1VuTZr7G7fSSzZwUmOBmQ.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 27 Nov 2024 00:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 619 (0x26b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36BC80AAF/serialNumber=8C8F8CE2AD55B9366BEC6EDF492CD9C1498E0664
Validity
Not Before: Jan 3 14:28:14 2024 GMT
Not After : Jan 31 14:28:14 2034 GMT
Subject: CN=65956f02-b46f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f9:72:c6:15:5b:92:59:d7:35:4b:27:3d:f3:92:
b7:9e:58:70:c6:78:22:ba:70:89:10:9b:cf:ac:d1:
ef:45:1e:66:da:8f:66:44:53:e3:58:ee:ef:0d:98:
ed:87:06:9f:21:b1:bc:94:63:45:f9:73:d7:04:7c:
c3:87:77:cb:f6:06:d6:5a:c9:81:fb:51:fa:18:16:
fe:48:05:cd:6f:76:46:fb:0d:d6:0f:2b:bb:b0:7e:
fb:20:3b:3b:82:8b:3c:54:92:2c:58:d9:ca:c2:cd:
ac:b3:14:c9:80:56:32:80:89:82:9f:54:39:05:a5:
e5:bc:16:f6:b7:aa:6f:59:aa:9d:52:83:74:e0:10:
0a:00:27:66:07:b9:9a:ad:b9:e3:7e:9d:38:5b:05:
01:55:53:18:cc:4f:98:48:0c:a5:3a:69:32:d9:1e:
1e:ee:87:e2:6a:06:92:cc:17:21:e1:90:19:d8:41:
47:e1:6d:b5:12:6f:2f:ec:e7:b1:3d:ab:49:3f:09:
ec:4c:a8:4b:4f:69:b9:fc:ea:4a:cc:53:36:20:54:
a7:c4:29:0b:7b:84:f8:3f:d1:76:ee:4e:73:52:13:
db:9c:86:00:21:6e:be:b1:14:e7:ea:4d:04:47:a6:
c5:a3:01:34:50:e6:19:a5:33:e4:45:98:d9:14:14:
07:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:A5:D3:22:99:B9:6F:DF:8B:76:75:5A:77:DB:04:41:DD:57:D3:DF
X509v3 Authority Key Identifier:
keyid:8C:8F:8C:E2:AD:55:B9:36:6B:EC:6E:DF:49:2C:D9:C1:49:8E:06:64
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36BC80A/472EF5B2E75C11EC9D7F90D8F1222468/jI-M4q1VuTZr7G7fSSzZwUmOBmQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/jI-M4q1VuTZr7G7fSSzZwUmOBmQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36BC80A/472EF5B2E75C11EC9D7F90D8F1222468/565A309AAA4411EE82EC719A775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.223.186.0/23
Signature Algorithm: sha256WithRSAEncryption
90:bc:0f:36:ff:89:6d:ff:bf:cd:2a:af:76:f3:89:e1:3a:2f:
ea:ba:37:94:34:9e:ee:e8:69:80:63:3b:84:de:03:b0:4c:a9:
f4:1e:3f:d3:f3:45:64:e9:34:c4:dd:9e:97:30:81:aa:80:28:
83:8c:dd:bb:82:00:f2:ad:8c:7e:a2:3d:49:09:b2:5b:6f:22:
02:4b:14:a1:ad:1c:86:63:4c:dd:68:7d:67:61:92:84:b6:fd:
6e:77:76:d4:07:66:5e:31:98:35:c2:28:b4:ef:88:37:86:40:
99:66:b0:9b:0f:ad:4f:2d:bd:bc:17:39:be:39:ab:49:10:ef:
e3:7d:da:bf:4a:f8:53:20:11:ea:3f:5a:3d:52:9a:be:ec:9f:
fc:c8:fa:b5:7c:1b:4a:bf:17:a3:4c:4e:98:63:92:70:1c:2c:
71:1b:d4:09:27:6e:44:9f:23:84:fc:8a:fa:38:7c:6b:2d:65:
20:90:da:bf:97:77:7c:c3:87:5c:95:ea:c6:ca:1d:1a:f8:af:
ec:20:db:79:9d:c5:b2:50:ef:9a:fa:96:5e:52:82:28:9e:10:
0c:96:7e:d8:81:9d:2d:56:a9:9b:01:d2:13:a5:ad:1a:14:0b:
67:34:5b:c5:a3:3f:f2:87:c1:3e:88:5b:75:c2:50:3e:25:c4:
2e:ca:a0:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 03:00:12 2024 by rpki-client on console-fra.rpki-client.org