Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36C06CB/D8FF6538D4F311ECB3714BD3F1222468/BAD292FE050511EE9502F55D4AD9E6FC.roa
File: BAD292FE050511EE9502F55D4AD9E6FC.roa (raw, json)
Hash identifier: sSGwGLApov2m0f4AHKaPHnZ0lUyscweITsyLbCMc9QU=
Subject key identifier: FB:5F:37:C1:9E:32:20:02:AF:33:96:EF:08:93:36:83:BD:AD:34:08
Certificate issuer: /CN=F36C06CBAF/serialNumber=DBE44931C14936F20DCE584B2AB91B65F42DB696
Certificate serial: 019B
Authority key identifier: DB:E4:49:31:C1:49:36:F2:0D:CE:58:4B:2A:B9:1B:65:F4:2D:B6:96
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/2-RJMcFJNvINzlhLKrkbZfQttpY.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36C06CB/D8FF6538D4F311ECB3714BD3F1222468/BAD292FE050511EE9502F55D4AD9E6FC.roa
Signing time: Wed 07 Jun 2023 07:34:26 +0000
ROA not before: Mon 01 Jan 2024 07:34:23 +0000
ROA not after: Wed 31 Dec 2025 07:34:23 +0000
asID: 329012
IP address blocks: 102.218.18.0/23 maxlen: 23
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36C06CB/D8FF6538D4F311ECB3714BD3F1222468/2-RJMcFJNvINzlhLKrkbZfQttpY.crl
rsync://rpki.afrinic.net/repository/member_repository/F36C06CB/D8FF6538D4F311ECB3714BD3F1222468/2-RJMcFJNvINzlhLKrkbZfQttpY.mft
rsync://rpki.afrinic.net/repository/afrinic/2-RJMcFJNvINzlhLKrkbZfQttpY.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 411 (0x19b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36C06CBAF/serialNumber=DBE44931C14936F20DCE584B2AB91B65F42DB696
Validity
Not Before: Jan 1 07:34:23 2024 GMT
Not After : Dec 31 07:34:23 2025 GMT
Subject: CN=64803302-712f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:fe:55:02:e5:4e:a7:d7:66:f9:ca:c4:06:f2:
b6:b2:4f:9c:aa:b5:ae:98:6f:37:d3:5c:55:52:f0:
9d:57:3c:ab:a1:5e:3f:33:17:a1:26:4d:bd:c7:0f:
f7:7a:ab:ab:80:9a:9d:a5:65:a3:59:56:9f:f5:95:
f6:18:c8:dc:79:11:44:3a:29:47:2e:4a:4f:d1:c2:
ee:63:91:d0:b5:94:a4:49:41:6d:97:d5:a5:bf:29:
42:98:f4:d9:b4:4c:4f:1d:71:04:0e:95:16:99:40:
a7:15:0c:fd:e6:95:8e:5d:ef:e2:d1:d6:84:eb:87:
73:64:b9:a6:41:ab:73:00:11:1e:f6:17:a8:1d:77:
9c:8d:12:95:12:db:f7:ea:49:bd:88:4e:94:44:d2:
42:a0:e8:c3:19:71:9f:de:76:c2:e2:6a:60:72:61:
1b:f9:a2:ee:17:51:84:c6:c3:81:c9:9f:5e:b9:35:
75:2f:95:2b:65:39:a1:d7:8d:90:a4:d1:73:62:77:
ac:18:ff:6c:97:aa:12:86:9d:9e:0a:99:2a:12:fc:
fa:6a:13:32:46:ff:2b:4b:a4:31:a1:c7:65:18:5e:
74:2f:5b:20:61:28:71:9e:e8:25:c2:1e:5e:7a:9e:
0e:16:2a:62:2e:be:6e:66:67:30:ba:3b:48:18:aa:
de:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:5F:37:C1:9E:32:20:02:AF:33:96:EF:08:93:36:83:BD:AD:34:08
X509v3 Authority Key Identifier:
keyid:DB:E4:49:31:C1:49:36:F2:0D:CE:58:4B:2A:B9:1B:65:F4:2D:B6:96
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36C06CB/D8FF6538D4F311ECB3714BD3F1222468/2-RJMcFJNvINzlhLKrkbZfQttpY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/2-RJMcFJNvINzlhLKrkbZfQttpY.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36C06CB/D8FF6538D4F311ECB3714BD3F1222468/BAD292FE050511EE9502F55D4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.218.18.0/23
Signature Algorithm: sha256WithRSAEncryption
2a:bc:0c:17:9b:a2:80:51:1f:be:a1:30:05:62:e5:f1:bf:22:
ad:e3:0f:2c:67:6b:5c:10:46:cf:d9:7e:c8:47:20:ca:ba:db:
12:c9:f0:4b:84:96:e1:d3:ad:66:97:4b:0f:19:45:21:ae:0d:
69:f4:2b:9c:d2:04:cd:a8:f9:02:62:7b:c4:a4:25:88:7b:5e:
75:b7:61:1d:66:13:90:32:d9:e9:8d:5f:77:eb:47:a8:e4:0e:
37:6b:43:13:67:e4:28:cb:b5:07:49:65:ea:aa:d2:d4:9f:54:
74:04:58:bd:1a:41:b4:22:fa:69:49:68:b5:ea:b4:a2:7c:79:
1e:de:ea:bf:8a:66:c4:d3:91:d7:ab:57:21:23:18:31:d5:9b:
5b:91:e7:68:bd:03:d2:d5:14:ad:0a:0e:0b:64:7d:88:ab:79:
c8:1e:41:7f:3d:a2:51:47:ae:7a:40:f8:3f:2d:9c:09:f9:90:
0b:48:12:08:9c:9f:3b:50:fc:50:d9:04:4a:63:df:a6:f4:29:
2c:8a:e9:7e:c1:58:6f:7c:ee:13:b6:52:e3:6c:32:eb:5e:70:
af:4b:33:26:47:6d:58:bc:6a:80:4a:e0:a4:2b:64:37:04:98:
eb:8b:90:53:86:5f:6b:e2:95:36:26:02:bf:6f:48:4e:01:5a:
d3:fa:b6:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 03:52:58 2024 by rpki-client on console-fra.rpki-client.org