Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36C2BF2/DABAB87E19EC11EFBCBF5E2C017001B1/7E241A021C4811EF8F9DAE2C7DDC24C2.roa
File: 7E241A021C4811EF8F9DAE2C7DDC24C2.roa (raw, json)
Hash identifier: hxre5xYuTBxkwQmVRlBLeiMXMr0AnCvaVpMmejl5uhQ=
Subject key identifier: B4:9C:0E:BF:8D:F5:9C:27:FC:2A:03:8B:15:12:15:C7:62:71:4E:C7
Certificate issuer: /CN=F36C2BF2AF/serialNumber=FB85E08E5DBB05C95B7BD0DA7E5FE6FCE39826FF
Certificate serial: 07
Authority key identifier: FB:85:E0:8E:5D:BB:05:C9:5B:7B:D0:DA:7E:5F:E6:FC:E3:98:26:FF
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/-4Xgjl27Bclbe9Dafl_m_OOYJv8.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36C2BF2/DABAB87E19EC11EFBCBF5E2C017001B1/7E241A021C4811EF8F9DAE2C7DDC24C2.roa
Signing time: Mon 27 May 2024 16:45:15 +0000
ROA not before: Tue 28 May 2024 16:45:12 +0000
ROA not after: Thu 28 May 2026 16:45:12 +0000
asID: 37517
IP address blocks: 102.209.160.0/22 maxlen: 23
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36C2BF2/DABAB87E19EC11EFBCBF5E2C017001B1/-4Xgjl27Bclbe9Dafl_m_OOYJv8.crl
rsync://rpki.afrinic.net/repository/member_repository/F36C2BF2/DABAB87E19EC11EFBCBF5E2C017001B1/-4Xgjl27Bclbe9Dafl_m_OOYJv8.mft
rsync://rpki.afrinic.net/repository/afrinic/-4Xgjl27Bclbe9Dafl_m_OOYJv8.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7 (0x7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36C2BF2AF/serialNumber=FB85E08E5DBB05C95B7BD0DA7E5FE6FCE39826FF
Validity
Not Before: May 28 16:45:12 2024 GMT
Not After : May 28 16:45:12 2026 GMT
Subject: CN=6654b89b-476c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:23:b1:44:be:f2:5f:5d:39:06:b7:94:ce:6c:
ae:09:b1:a9:e5:81:73:ca:35:b4:1a:de:75:98:a9:
36:d3:c8:d9:94:c1:51:13:76:f6:63:9c:76:84:4e:
9a:82:8d:68:2d:ed:13:7c:da:84:9b:3c:79:77:38:
07:0d:8e:79:ce:56:95:44:5e:1f:c3:5f:33:26:00:
63:ea:b0:e9:7c:02:54:90:cc:f9:2c:e2:9b:df:48:
e9:a5:14:69:ce:3d:5e:98:d4:1e:8f:fd:05:bd:98:
19:fd:70:d5:c2:8d:82:71:5f:bd:8c:45:58:ba:68:
ad:9a:0d:ca:b7:a1:88:30:12:29:b7:14:4d:0a:4e:
9a:4c:49:1b:d5:f6:a2:b8:76:1f:9b:55:6d:61:87:
ac:ed:b8:f1:a4:6b:2e:82:bc:e5:da:d0:e7:57:3d:
2b:4a:8b:68:8f:d9:85:3a:dc:3c:f4:8b:be:ad:33:
48:e9:88:43:0a:c2:60:16:6e:7b:c5:3e:5d:3e:bc:
5c:c5:9a:f4:2d:d7:36:96:25:77:f2:d9:32:e5:c5:
b0:4d:46:93:06:87:f5:7a:db:0a:52:11:97:16:ea:
a4:af:7e:d3:e0:18:d0:a3:b7:f5:ba:45:b1:73:20:
0c:32:eb:aa:81:2e:0e:5e:74:d1:13:2d:c6:bc:34:
1c:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:9C:0E:BF:8D:F5:9C:27:FC:2A:03:8B:15:12:15:C7:62:71:4E:C7
X509v3 Authority Key Identifier:
keyid:FB:85:E0:8E:5D:BB:05:C9:5B:7B:D0:DA:7E:5F:E6:FC:E3:98:26:FF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36C2BF2/DABAB87E19EC11EFBCBF5E2C017001B1/-4Xgjl27Bclbe9Dafl_m_OOYJv8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/-4Xgjl27Bclbe9Dafl_m_OOYJv8.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36C2BF2/DABAB87E19EC11EFBCBF5E2C017001B1/7E241A021C4811EF8F9DAE2C7DDC24C2.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.209.160.0/22
Signature Algorithm: sha256WithRSAEncryption
09:4f:fb:f7:c9:38:bf:e9:36:87:07:54:4a:96:a0:d9:9b:f8:
28:93:d5:8f:ed:7a:69:5c:04:36:8b:08:a0:c5:c7:31:18:e4:
98:fb:e5:0e:35:a7:53:68:7b:3b:7e:d7:70:6c:ab:30:72:e1:
bb:1a:5d:38:25:fd:75:f4:2c:d2:a6:73:db:c5:a8:c5:b8:6e:
be:b1:47:59:12:4e:b1:01:91:7a:0d:f4:3b:ad:20:a6:e3:bc:
26:a9:c1:c5:b8:b0:56:f5:77:4b:d8:99:91:0d:32:0a:9d:4b:
47:86:5f:ac:67:85:a3:cf:03:bf:7a:c0:3c:62:9f:e1:35:84:
2b:6e:50:d0:bd:87:9b:1a:4e:83:17:cb:4c:93:d1:ad:95:da:
ac:1f:b7:e3:e0:74:51:8d:ef:5a:6b:15:30:5f:7e:a7:3e:e4:
5f:04:b7:5d:b7:43:02:70:ef:51:d5:7b:71:a5:40:77:61:d4:
b9:8a:e3:81:91:cb:47:3b:c7:48:f3:17:0b:72:cd:e6:eb:07:
35:96:7b:a0:aa:40:d2:a6:00:83:26:f2:99:19:ad:20:81:0e:
c3:14:0e:4c:a1:7e:10:c0:e0:e4:4c:2d:9f:25:6b:2e:12:dc:
e3:b5:41:69:28:58:5a:4e:f9:77:69:27:d0:9e:7a:44:cf:3e:
8c:64:ed:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 03:52:58 2024 by rpki-client on console-fra.rpki-client.org