Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36D32D1/AD00932C407D11ECA8E59D0FD8A014CE/C22CE7B8848211EFB04104A3762E951A.roa
File: C22CE7B8848211EFB04104A3762E951A.roa (raw, json)
Hash identifier: UvSKfzbPPPDmh9qt5fUcWRDz2kLL0/oUIRFROj/013Y=
Subject key identifier: C2:0F:41:30:9C:52:01:B4:2C:67:AB:27:FA:03:E9:88:9C:52:99:65
Certificate issuer: /CN=F36D32D1AF/serialNumber=BF5D3F4DC9AF17F8BA73F55A1D72F3959C0518E2
Certificate serial: 0450
Authority key identifier: BF:5D:3F:4D:C9:AF:17:F8:BA:73:F5:5A:1D:72:F3:95:9C:05:18:E2
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/v10_TcmvF_i6c_VaHXLzlZwFGOI.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36D32D1/AD00932C407D11ECA8E59D0FD8A014CE/C22CE7B8848211EFB04104A3762E951A.roa
Signing time: Mon 07 Oct 2024 08:04:21 +0000
ROA not before: Mon 07 Oct 2024 08:04:17 +0000
ROA not after: Tue 31 Oct 2034 08:04:17 +0000
asID: 328537
IP address blocks: 102.36.175.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36D32D1/AD00932C407D11ECA8E59D0FD8A014CE/v10_TcmvF_i6c_VaHXLzlZwFGOI.crl
rsync://rpki.afrinic.net/repository/member_repository/F36D32D1/AD00932C407D11ECA8E59D0FD8A014CE/v10_TcmvF_i6c_VaHXLzlZwFGOI.mft
rsync://rpki.afrinic.net/repository/afrinic/v10_TcmvF_i6c_VaHXLzlZwFGOI.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1104 (0x450)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36D32D1AF/serialNumber=BF5D3F4DC9AF17F8BA73F55A1D72F3959C0518E2
Validity
Not Before: Oct 7 08:04:17 2024 GMT
Not After : Oct 31 08:04:17 2034 GMT
Subject: CN=67039605-1cca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:7a:a9:c8:f0:95:cc:19:37:43:00:8c:b0:92:
4c:69:35:a2:aa:02:63:ae:c5:e8:13:2c:9d:58:b1:
c6:61:68:24:cf:49:66:4d:f5:29:0b:15:9c:b9:4f:
66:ac:a9:4d:25:0f:1a:76:1b:d2:96:eb:f9:2b:18:
13:d1:2d:f4:f5:a5:0a:8a:53:c0:28:1d:52:41:1f:
36:d1:a1:29:60:6b:bb:5b:a7:40:bf:f7:b1:75:d1:
c2:26:d0:4a:26:05:85:e1:28:d9:e3:31:ed:2b:c5:
8f:ab:21:c0:66:7a:ab:5c:f9:da:40:6d:33:20:74:
e5:77:1d:83:2a:97:2b:c5:17:5e:81:5e:cb:f8:81:
d4:04:05:29:98:6f:2e:89:91:4c:40:68:8b:0b:53:
8a:e7:f9:ae:1d:bf:21:89:7d:7c:8d:b4:0f:c8:cd:
bf:44:1a:31:90:93:66:b1:59:59:1e:3b:11:0b:6a:
c9:93:ac:fc:e4:0c:5f:db:9d:eb:8a:49:0d:82:23:
6d:1c:b0:9e:e6:19:fa:da:69:d4:9f:ae:e9:1c:80:
2b:3d:38:59:ed:a7:70:7b:9a:47:38:0f:c4:d7:73:
ef:93:f0:b8:54:2f:72:93:06:d1:14:da:56:3f:27:
2d:90:0a:bb:fc:40:70:0a:fa:b9:a8:fe:cd:31:98:
e4:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:0F:41:30:9C:52:01:B4:2C:67:AB:27:FA:03:E9:88:9C:52:99:65
X509v3 Authority Key Identifier:
keyid:BF:5D:3F:4D:C9:AF:17:F8:BA:73:F5:5A:1D:72:F3:95:9C:05:18:E2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36D32D1/AD00932C407D11ECA8E59D0FD8A014CE/v10_TcmvF_i6c_VaHXLzlZwFGOI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/v10_TcmvF_i6c_VaHXLzlZwFGOI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36D32D1/AD00932C407D11ECA8E59D0FD8A014CE/C22CE7B8848211EFB04104A3762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.36.175.0/24
Signature Algorithm: sha256WithRSAEncryption
69:ce:69:8a:fa:aa:6f:f3:84:00:9a:78:0f:7c:65:eb:c4:f2:
d6:91:e3:77:3b:64:dc:82:36:e6:c5:c5:7a:ec:e8:8b:0e:71:
8d:b2:04:0c:5b:27:c7:34:9d:d8:f2:b7:e3:be:4e:59:7d:aa:
28:78:21:30:ba:71:6a:68:b8:8a:76:dd:4e:bf:e1:d0:cc:4b:
04:ef:2f:ca:20:53:b7:ee:9b:b3:aa:b7:e4:33:95:42:30:73:
65:72:05:87:f8:96:73:89:eb:bd:1a:08:71:e8:4a:3a:28:11:
c6:f4:84:09:d7:b0:ae:35:ee:33:23:f6:e8:3f:25:cb:f1:b5:
7f:b4:ed:cf:6f:58:84:05:08:58:e0:7b:94:3d:20:98:5a:e8:
23:59:b1:c9:58:4d:de:43:54:90:01:ac:df:ef:82:b3:e0:3d:
49:01:63:84:c6:0a:87:78:97:3d:f4:43:80:1c:af:a8:ec:95:
3a:55:79:cc:5c:45:cb:4d:b2:e8:cb:76:04:b3:38:fd:f9:74:
e4:af:19:12:31:e5:71:bd:bf:e1:a4:40:e9:a5:9a:27:24:0a:
44:e8:49:43:b1:da:53:a0:9e:e0:5e:43:fc:70:38:ab:ac:d9:
e1:3b:27:82:a4:f9:13:89:cd:05:01:70:52:25:ce:bf:2e:90:
a9:03:d3:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 03:52:59 2024 by rpki-client on console-fra.rpki-client.org