Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36D104B/6977A4BA9BD511ED9F8809CCF1222468/788B31649BD611ED8E8A06CFF1222468.roa
File: 788B31649BD611ED8E8A06CFF1222468.roa (raw, json)
Hash identifier: /DoapaGd3eagMu4E2GG71poz4ouCwc0M0wO9yu8zX6c=
Subject key identifier: 42:33:40:EF:74:46:F6:70:13:98:50:6F:0E:5B:D0:F6:F5:89:5B:23
Certificate issuer: /CN=F36D104BAF/serialNumber=F0DFFBFBE22B4E43986AF86080E8DBD26E67357B
Certificate serial: 02
Authority key identifier: F0:DF:FB:FB:E2:2B:4E:43:98:6A:F8:60:80:E8:DB:D2:6E:67:35:7B
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/8N_7--IrTkOYavhggOjb0m5nNXs.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36D104B/6977A4BA9BD511ED9F8809CCF1222468/788B31649BD611ED8E8A06CFF1222468.roa
Signing time: Tue 24 Jan 2023 11:01:37 +0000
ROA not before: Tue 24 Jan 2023 11:01:31 +0000
ROA not after: Tue 03 Jan 2040 11:01:31 +0000
asID: 29286
IP address blocks: 102.222.47.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36D104B/6977A4BA9BD511ED9F8809CCF1222468/8N_7--IrTkOYavhggOjb0m5nNXs.crl
rsync://rpki.afrinic.net/repository/member_repository/F36D104B/6977A4BA9BD511ED9F8809CCF1222468/8N_7--IrTkOYavhggOjb0m5nNXs.mft
rsync://rpki.afrinic.net/repository/afrinic/8N_7--IrTkOYavhggOjb0m5nNXs.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 06 May 2024 00:04:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2 (0x2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36D104BAF/serialNumber=F0DFFBFBE22B4E43986AF86080E8DBD26E67357B
Validity
Not Before: Jan 24 11:01:31 2023 GMT
Not After : Jan 3 11:01:31 2040 GMT
Subject: CN=63cfba91-3ab3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:68:73:84:df:f6:c2:27:dd:8b:98:e0:40:28:
0d:b8:1e:10:49:ba:76:ad:15:b7:b1:80:de:a4:81:
15:df:55:f2:ac:d2:7b:31:57:b3:92:41:8a:d2:64:
9b:98:3f:38:4e:cd:85:6b:7d:5e:1f:1a:56:f0:bc:
f8:14:1d:02:dc:4a:9d:1f:87:3c:4d:2b:c4:e6:54:
9e:d0:86:6f:44:aa:58:e7:1f:75:b7:53:a8:fe:6c:
17:54:68:11:26:1b:90:f0:3c:0d:1e:13:2b:fa:27:
45:5a:65:0c:77:8e:d9:82:c5:2b:9d:c9:78:29:5a:
29:5a:41:99:77:aa:a4:dc:b5:08:0a:08:5c:17:2c:
e7:d9:65:57:70:ec:8a:f6:90:f6:d7:dc:7c:d6:c0:
d2:5a:eb:33:8a:db:f2:ea:11:30:10:d8:b8:4a:4e:
dc:66:4b:97:bb:5f:08:91:ab:3a:1c:80:6d:29:5c:
5a:65:ea:15:5a:af:48:af:46:61:9e:8a:03:d4:00:
22:e9:2f:74:5d:02:82:13:5f:74:17:6e:fe:fb:84:
60:45:df:c6:00:26:2c:c7:2b:e8:92:93:4f:be:6e:
31:f6:94:db:b3:52:ed:bb:93:d8:22:41:49:48:61:
5b:bd:48:01:51:da:b1:9b:a8:60:4c:37:99:9e:b8:
44:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:33:40:EF:74:46:F6:70:13:98:50:6F:0E:5B:D0:F6:F5:89:5B:23
X509v3 Authority Key Identifier:
keyid:F0:DF:FB:FB:E2:2B:4E:43:98:6A:F8:60:80:E8:DB:D2:6E:67:35:7B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36D104B/6977A4BA9BD511ED9F8809CCF1222468/8N_7--IrTkOYavhggOjb0m5nNXs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/8N_7--IrTkOYavhggOjb0m5nNXs.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36D104B/6977A4BA9BD511ED9F8809CCF1222468/788B31649BD611ED8E8A06CFF1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.222.47.0/24
Signature Algorithm: sha256WithRSAEncryption
6b:14:b4:1a:21:2b:c0:d1:c5:2b:2a:99:36:13:0e:fd:6d:ad:
50:95:e2:1d:73:8b:54:b7:83:54:ea:67:50:d3:88:ce:44:0d:
e1:6c:4d:61:bd:3c:d7:78:be:84:b3:99:a9:bc:61:50:f0:dc:
c6:90:84:dc:85:60:5c:02:4c:76:7e:52:56:83:e1:2e:5f:ee:
00:f6:63:96:7c:41:17:21:89:af:f5:f6:90:dd:7b:01:5b:9d:
10:25:6e:30:9e:ef:65:b7:d4:eb:34:c9:81:62:de:2d:8b:36:
00:d4:05:eb:18:44:77:84:f5:8f:0d:80:a8:04:38:91:63:09:
33:8a:e0:09:15:4d:35:07:4d:42:c0:08:73:a2:89:f0:50:58:
50:23:47:fa:26:40:64:f4:81:aa:7f:b2:e7:be:40:02:3f:87:
3c:b0:f4:f8:37:22:5b:c5:c8:c5:da:e2:a0:bd:f2:43:af:e1:
5d:f3:d3:86:a7:28:22:e9:13:f2:57:fc:cb:b0:b0:f6:31:ca:
8e:14:14:58:9b:a7:eb:d3:3d:f0:81:4b:54:7e:69:3e:2f:1e:
07:91:1c:94:0a:4a:ac:81:72:b8:05:2f:25:f1:c5:8b:37:b0:
ef:f5:63:ac:e8:a7:58:89:8a:5d:39:d2:8d:9a:47:47:3b:8c:
25:cd:16:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 4 03:06:03 2024 by rpki-client on console-ams.rpki-client.org