Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36CEBD2/49CBE9BC8A9211EE9ECE03134AD9E6FC/03A4AAAE8A9311EE88C966154AD9E6FC.roa
File: 03A4AAAE8A9311EE88C966154AD9E6FC.roa (raw, json)
Hash identifier: UhEZBD7+ZxP9l8n+vkehEuSNBmWkzQmQERKAHbI7sAk=
Subject key identifier: 76:E5:DE:48:BA:6D:09:CC:24:5F:33:4A:65:42:8D:7B:51:89:D9:A4
Certificate issuer: /CN=F36CEBD2AF/serialNumber=184413EAD0ECC5BE11C711B3E6DFE4B4DCC8D84F
Certificate serial: 02
Authority key identifier: 18:44:13:EA:D0:EC:C5:BE:11:C7:11:B3:E6:DF:E4:B4:DC:C8:D8:4F
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/GEQT6tDsxb4RxxGz5t_ktNzI2E8.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36CEBD2/49CBE9BC8A9211EE9ECE03134AD9E6FC/03A4AAAE8A9311EE88C966154AD9E6FC.roa
Signing time: Fri 24 Nov 2023 06:30:52 +0000
ROA not before: Fri 24 Nov 2023 06:30:49 +0000
ROA not after: Thu 24 Nov 2033 06:30:49 +0000
asID: 329263
IP address blocks: 102.213.180.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36CEBD2/49CBE9BC8A9211EE9ECE03134AD9E6FC/GEQT6tDsxb4RxxGz5t_ktNzI2E8.crl
rsync://rpki.afrinic.net/repository/member_repository/F36CEBD2/49CBE9BC8A9211EE9ECE03134AD9E6FC/GEQT6tDsxb4RxxGz5t_ktNzI2E8.mft
rsync://rpki.afrinic.net/repository/afrinic/GEQT6tDsxb4RxxGz5t_ktNzI2E8.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 26 Nov 2024 00:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2 (0x2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36CEBD2AF/serialNumber=184413EAD0ECC5BE11C711B3E6DFE4B4DCC8D84F
Validity
Not Before: Nov 24 06:30:49 2023 GMT
Not After : Nov 24 06:30:49 2033 GMT
Subject: CN=6560431c-26ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:a9:bd:36:aa:eb:ef:29:c4:3c:9f:e3:dd:18:
1f:e2:35:d6:1c:5b:2e:56:db:96:23:01:cb:59:cd:
3f:bc:00:9e:e2:cd:35:e4:11:47:fb:cf:cc:28:40:
38:d5:ea:ca:f6:ff:f0:9f:05:f1:c5:c8:db:4c:a1:
d1:ae:ed:85:22:ff:a5:1b:2c:59:d0:85:8f:9e:76:
cb:b9:3b:cb:97:1c:8d:f5:4e:d1:51:69:cc:14:1a:
5c:b1:c8:d3:dd:74:ad:ed:94:c7:2f:8d:24:25:c1:
91:1d:dc:e9:55:6b:ca:6f:30:9c:95:98:03:08:75:
2b:24:9c:ef:b0:2e:5f:01:b2:ba:f0:b0:f6:bb:80:
47:d6:f4:fc:db:4a:20:1d:10:fa:dc:72:fb:02:dc:
1f:f7:d8:fe:60:79:ea:0b:35:18:23:2b:d1:7b:66:
5b:1e:5f:6a:c1:64:f6:b8:7f:c2:f0:1d:8f:75:3f:
b3:77:3e:e7:19:66:db:19:2d:f7:1c:26:65:b7:81:
77:a3:f0:c4:0f:ce:75:8d:b2:cb:d9:e6:bf:07:86:
61:d8:41:1f:36:54:c8:61:29:a7:c4:eb:ee:9a:16:
d9:1b:14:9e:f3:dd:db:de:2f:3e:91:31:c1:b6:be:
d2:bb:b6:19:24:05:31:e9:e8:94:3f:06:7d:9f:d3:
50:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:E5:DE:48:BA:6D:09:CC:24:5F:33:4A:65:42:8D:7B:51:89:D9:A4
X509v3 Authority Key Identifier:
keyid:18:44:13:EA:D0:EC:C5:BE:11:C7:11:B3:E6:DF:E4:B4:DC:C8:D8:4F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36CEBD2/49CBE9BC8A9211EE9ECE03134AD9E6FC/GEQT6tDsxb4RxxGz5t_ktNzI2E8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/GEQT6tDsxb4RxxGz5t_ktNzI2E8.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36CEBD2/49CBE9BC8A9211EE9ECE03134AD9E6FC/03A4AAAE8A9311EE88C966154AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.213.180.0/22
Signature Algorithm: sha256WithRSAEncryption
22:a5:62:79:9b:c6:6d:15:a3:c4:79:36:4e:d4:96:a3:de:a4:
7e:69:d4:46:7f:fc:9b:65:1f:9f:a2:ab:47:b2:e8:1b:e5:05:
b4:70:c2:f6:81:0b:99:14:67:dd:03:79:e3:06:97:24:42:e2:
80:1e:c3:cf:e2:e1:54:20:b0:09:5b:22:c5:05:7d:56:c3:60:
d1:92:66:91:8f:d8:31:1e:5f:34:d6:c8:25:37:fb:8a:7b:8f:
08:15:56:6d:78:0e:ad:44:a4:26:b8:31:80:e7:97:f5:f6:45:
84:2a:03:7e:1c:13:55:94:bf:6b:4e:24:db:a1:12:d7:da:d9:
12:85:57:92:ca:14:f7:b9:71:b2:3f:6f:b1:41:6b:bc:51:bd:
f3:6b:df:b5:96:29:c6:d5:0e:cd:61:15:58:d0:f9:63:3b:e5:
e4:0d:52:0d:ec:93:fb:12:54:45:12:53:0b:a0:21:28:e7:0b:
a9:f6:b6:68:42:fa:a6:d5:d6:a9:c8:06:be:05:74:a8:b9:94:
4c:a4:40:03:0c:76:5e:75:ec:78:5b:2f:0f:06:30:26:e1:ea:
85:8d:ad:bb:f8:db:df:f3:4e:c2:74:11:7f:2a:61:8e:c5:cc:
43:73:5f:42:7c:ee:79:7e:14:0e:51:94:2d:4e:61:a1:0d:6d:
bc:61:4c:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Nov 24 04:29:39 2024 by rpki-client on console-fra.rpki-client.org