Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36BCC19/F6336432550111ECB65B497AD8A014CE/DEDA0EAAD01A11EC9C39EE99F1222468.roa
File: DEDA0EAAD01A11EC9C39EE99F1222468.roa (raw, json)
Hash identifier: BEiNuG74+0Vca7a/9TVrf7iMLwYPsza2dmq/jF7HFU8=
Subject key identifier: B0:08:F9:0A:94:72:42:EB:51:E9:A5:C0:41:8C:E0:56:F8:D2:3D:80
Certificate issuer: /CN=F36BCC19AF/serialNumber=87C277EA5445529DD06B2FE5EE9F33CDC7CE84E0
Certificate serial: B3
Authority key identifier: 87:C2:77:EA:54:45:52:9D:D0:6B:2F:E5:EE:9F:33:CD:C7:CE:84:E0
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/h8J36lRFUp3Qay_l7p8zzcfOhOA.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36BCC19/F6336432550111ECB65B497AD8A014CE/DEDA0EAAD01A11EC9C39EE99F1222468.roa
Signing time: Tue 10 May 2022 04:37:17 +0000
ROA not before: Tue 10 May 2022 04:37:14 +0000
ROA not after: Wed 10 Jun 2048 04:37:14 +0000
asID: 328250
IP address blocks: 102.223.188.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36BCC19/F6336432550111ECB65B497AD8A014CE/h8J36lRFUp3Qay_l7p8zzcfOhOA.crl
rsync://rpki.afrinic.net/repository/member_repository/F36BCC19/F6336432550111ECB65B497AD8A014CE/h8J36lRFUp3Qay_l7p8zzcfOhOA.mft
rsync://rpki.afrinic.net/repository/afrinic/h8J36lRFUp3Qay_l7p8zzcfOhOA.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 27 Apr 2024 00:04:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 179 (0xb3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36BCC19AF/serialNumber=87C277EA5445529DD06B2FE5EE9F33CDC7CE84E0
Validity
Not Before: May 10 04:37:14 2022 GMT
Not After : Jun 10 04:37:14 2048 GMT
Subject: CN=6279ebfd-74c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:b4:87:3d:b3:12:b5:af:71:e5:ee:04:31:ab:
c0:eb:19:05:4c:ce:70:6e:9c:07:26:fb:a3:f0:ee:
62:68:01:02:ec:6e:51:4e:86:b4:c5:bb:3a:5a:0f:
87:dc:8e:df:88:18:07:e8:f9:fc:f2:f9:05:1a:8f:
a5:3b:09:98:40:4b:4d:ca:f4:31:90:f0:19:62:37:
00:73:22:7f:8e:7b:ba:21:af:10:37:ed:30:06:1e:
ff:1d:91:ec:64:0e:0d:80:8f:d0:2d:4c:fd:a1:a6:
7c:ae:1a:b7:ef:40:8d:f7:b9:70:a9:34:d5:f9:5a:
16:7a:e3:d3:94:8c:1d:29:db:71:21:24:cd:4c:49:
0c:0d:f7:e9:9e:7b:67:8f:94:4d:87:e2:01:bf:15:
93:0e:66:83:5b:c9:fd:2d:0e:23:be:08:f7:a2:bc:
52:60:ab:e9:65:82:39:67:7f:e6:7a:8b:5c:30:2e:
70:db:78:1f:50:15:2d:e7:cf:23:c8:26:ae:a9:b1:
48:1e:f0:c9:7a:f9:62:91:16:ef:ab:51:b2:68:fe:
c1:95:b2:35:ac:53:b9:12:2a:d8:eb:70:fa:9d:2f:
97:c1:85:be:23:56:aa:4a:dd:c7:6c:80:4d:99:de:
30:b1:78:49:09:72:19:d9:a0:01:51:08:9b:e1:d8:
13:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:08:F9:0A:94:72:42:EB:51:E9:A5:C0:41:8C:E0:56:F8:D2:3D:80
X509v3 Authority Key Identifier:
keyid:87:C2:77:EA:54:45:52:9D:D0:6B:2F:E5:EE:9F:33:CD:C7:CE:84:E0
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36BCC19/F6336432550111ECB65B497AD8A014CE/h8J36lRFUp3Qay_l7p8zzcfOhOA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/h8J36lRFUp3Qay_l7p8zzcfOhOA.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36BCC19/F6336432550111ECB65B497AD8A014CE/DEDA0EAAD01A11EC9C39EE99F1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.223.188.0/22
Signature Algorithm: sha256WithRSAEncryption
bf:d7:12:3c:26:a1:7a:ef:3e:8c:40:79:a1:60:7b:62:87:7d:
3f:81:b3:b6:5c:4f:bf:70:9f:8e:2d:18:3c:09:88:c3:6c:76:
1d:d1:cb:9f:dd:bd:58:f7:37:5c:3b:67:48:cc:9e:19:32:fa:
9d:89:32:0c:e4:5a:c0:bc:66:3e:e9:40:14:ce:b1:9c:a5:b8:
80:d9:a0:ef:37:05:d7:29:e9:9d:6d:5d:13:58:b9:cf:78:36:
60:e6:84:86:96:51:1d:27:08:e3:07:ef:0c:78:d6:6c:f5:bf:
9e:ee:cc:e5:19:2e:53:6f:ca:cf:43:ed:77:df:1a:42:4d:7e:
5e:0a:f2:c7:fd:8b:f7:62:8a:6a:69:55:bc:24:42:a1:9c:1d:
fc:52:0b:f2:11:ba:0d:2e:bd:e1:7f:f1:15:a9:10:86:44:2e:
26:6b:38:ad:ef:15:e8:ab:9d:81:c2:d6:39:00:3f:b1:bb:f9:
7f:12:46:32:98:15:8a:a1:6a:d8:6d:96:6f:b6:5d:c3:f8:9c:
ad:45:70:b8:f2:60:63:62:a0:c5:93:c2:f2:ba:c7:d4:a3:7f:
61:ad:9d:9b:53:48:6e:11:96:17:63:42:b0:e6:f0:47:98:65:
fd:46:90:89:1f:70:b6:67:80:7d:c2:5d:ea:c7:07:c2:6c:24:
04:90:b2:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 25 02:05:22 2024 by rpki-client on console-fra.rpki-client.org