Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36C65C6/0338D9B4CF5B11EBB2E7A516F8AEA228/232E5B1623C111EDB63CF4C8F1222468.roa
File: 232E5B1623C111EDB63CF4C8F1222468.roa (raw, json)
Hash identifier: 0o2DcmpoHMCfNZtf1lb07iznJrEi/XbnXGntHAj6Rms=
Subject key identifier: 44:E7:13:3F:AA:85:EA:D6:86:ED:CD:5A:F0:E2:AE:EC:D3:72:58:AE
Certificate issuer: /CN=F36C65C6AF/serialNumber=C08F3EDC59158942C2DF39F1425E6EB82168BE3E
Certificate serial: 01DC
Authority key identifier: C0:8F:3E:DC:59:15:89:42:C2:DF:39:F1:42:5E:6E:B8:21:68:BE:3E
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/wI8-3FkViULC3znxQl5uuCFovj4.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36C65C6/0338D9B4CF5B11EBB2E7A516F8AEA228/232E5B1623C111EDB63CF4C8F1222468.roa
Signing time: Wed 24 Aug 2022 15:26:34 +0000
ROA not before: Wed 24 Aug 2022 15:26:31 +0000
ROA not after: Tue 31 Aug 2032 15:26:31 +0000
asID: 327901
IP address blocks: 102.216.196.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36C65C6/0338D9B4CF5B11EBB2E7A516F8AEA228/wI8-3FkViULC3znxQl5uuCFovj4.crl
rsync://rpki.afrinic.net/repository/member_repository/F36C65C6/0338D9B4CF5B11EBB2E7A516F8AEA228/wI8-3FkViULC3znxQl5uuCFovj4.mft
rsync://rpki.afrinic.net/repository/afrinic/wI8-3FkViULC3znxQl5uuCFovj4.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 27 Apr 2024 00:04:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 476 (0x1dc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36C65C6AF/serialNumber=C08F3EDC59158942C2DF39F1425E6EB82168BE3E
Validity
Not Before: Aug 24 15:26:31 2022 GMT
Not After : Aug 31 15:26:31 2032 GMT
Subject: CN=6306432a-418f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:a2:9e:07:d5:36:48:09:e0:6d:68:a3:22:eb:
7a:8b:84:16:d2:d5:10:86:1e:fc:f4:62:e6:40:eb:
c6:51:9e:43:cf:31:e7:78:d1:6c:bf:07:dc:06:11:
9b:20:ee:68:b9:bf:32:21:51:b0:90:c3:1d:be:74:
c3:11:42:87:00:cf:e8:47:5c:49:e3:05:0f:cb:e4:
48:94:69:0c:a7:aa:2e:4c:9e:c7:0b:55:6c:eb:bf:
df:6e:85:d6:72:a5:56:5c:df:b7:f4:9c:20:f4:29:
b2:3a:15:4a:21:d1:7a:17:21:21:6e:24:f0:20:dc:
03:4d:2c:95:c0:fe:31:40:bb:fa:ab:69:ff:05:e2:
38:09:64:54:ed:6b:29:15:fd:f5:76:a4:15:c9:ed:
4c:97:d7:fc:a0:0a:99:3f:3f:d1:4c:93:b7:44:75:
b8:b3:b6:96:c0:53:02:e5:86:18:05:02:5c:24:58:
44:07:6f:10:41:ce:43:6b:bb:95:ac:66:e3:00:e7:
1b:b0:3d:90:ce:bd:95:98:aa:b5:ad:85:04:92:4a:
cd:48:1d:86:10:25:21:4b:6a:a4:3c:49:b9:41:fb:
dc:81:32:8b:0d:fb:cf:eb:7a:8f:6d:96:a1:b0:66:
e5:5a:c3:89:50:62:ee:0d:3c:f6:26:ea:bb:16:16:
32:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:E7:13:3F:AA:85:EA:D6:86:ED:CD:5A:F0:E2:AE:EC:D3:72:58:AE
X509v3 Authority Key Identifier:
keyid:C0:8F:3E:DC:59:15:89:42:C2:DF:39:F1:42:5E:6E:B8:21:68:BE:3E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36C65C6/0338D9B4CF5B11EBB2E7A516F8AEA228/wI8-3FkViULC3znxQl5uuCFovj4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/wI8-3FkViULC3znxQl5uuCFovj4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36C65C6/0338D9B4CF5B11EBB2E7A516F8AEA228/232E5B1623C111EDB63CF4C8F1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.216.196.0/22
Signature Algorithm: sha256WithRSAEncryption
86:f1:cc:a8:b2:a6:f6:08:35:ab:52:95:1f:fb:ef:b0:00:7d:
d1:ba:d5:38:a9:d0:15:64:8f:e3:1e:f0:00:b4:37:14:b4:6a:
07:97:cc:14:d4:18:5d:a4:ed:82:32:aa:41:c9:78:0f:f7:98:
77:6e:5b:47:ee:82:36:bd:29:f6:1a:6c:a4:3b:1e:e4:77:83:
c6:fc:5f:5a:71:9c:66:2c:80:ee:18:aa:25:76:df:e6:ef:40:
ec:20:9c:57:d5:40:e3:1b:57:92:76:c1:b6:0d:53:9f:78:7b:
1d:3b:9f:99:67:e0:f3:1d:d1:d6:d9:df:4b:c0:74:13:ed:67:
c0:6f:85:3c:78:43:5d:ae:e5:b4:ce:0c:fb:dd:f1:88:6f:cf:
99:36:01:73:50:5e:07:2b:2d:54:06:8d:51:19:6e:eb:82:f3:
1f:77:fb:25:3f:d0:8d:8e:b2:b8:92:b1:f7:db:83:9a:cb:76:
35:8e:c8:77:51:74:2e:21:73:06:9f:e7:d2:eb:a9:88:02:78:
51:44:a9:71:47:db:49:75:85:10:8f:8b:b6:c2:b5:1d:48:8b:
c2:b3:43:43:a4:c3:52:f3:c4:15:17:16:ab:56:13:a6:09:7f:
3d:d4:ad:f5:4a:c0:f0:87:73:e0:68:f4:d0:f1:39:8a:4e:3d:
10:a7:57:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 25 02:05:22 2024 by rpki-client on console-fra.rpki-client.org