Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36D7FB7/8AC1C572F62C11EDA10D3B3A4AD9E6FC/3BDE86EE4B0D11EE8D6AAC8A4AD9E6FC.roa
File: 3BDE86EE4B0D11EE8D6AAC8A4AD9E6FC.roa (raw, json)
Hash identifier: YgQH4Tyn11YWyadrNAmzwWqQsX+CmhhZoDQij9nE5Vg=
Subject key identifier: B8:AE:D3:91:66:C5:D7:09:4C:F2:8F:3D:0D:03:6C:C6:A8:C6:29:E1
Certificate issuer: /CN=F36D7FB7AF/serialNumber=A58A6D29114C881E005877279D95ABAA39EE141C
Certificate serial: 8A
Authority key identifier: A5:8A:6D:29:11:4C:88:1E:00:58:77:27:9D:95:AB:AA:39:EE:14:1C
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/pYptKRFMiB4AWHcnnZWrqjnuFBw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36D7FB7/8AC1C572F62C11EDA10D3B3A4AD9E6FC/3BDE86EE4B0D11EE8D6AAC8A4AD9E6FC.roa
Signing time: Mon 04 Sep 2023 10:24:31 +0000
ROA not before: Mon 04 Sep 2023 10:24:27 +0000
ROA not after: Wed 15 Sep 2027 10:24:27 +0000
asID: 328344
IP address blocks: 102.217.16.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36D7FB7/8AC1C572F62C11EDA10D3B3A4AD9E6FC/pYptKRFMiB4AWHcnnZWrqjnuFBw.crl
rsync://rpki.afrinic.net/repository/member_repository/F36D7FB7/8AC1C572F62C11EDA10D3B3A4AD9E6FC/pYptKRFMiB4AWHcnnZWrqjnuFBw.mft
rsync://rpki.afrinic.net/repository/afrinic/pYptKRFMiB4AWHcnnZWrqjnuFBw.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 03 Jun 2024 00:05:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 138 (0x8a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36D7FB7AF/serialNumber=A58A6D29114C881E005877279D95ABAA39EE141C
Validity
Not Before: Sep 4 10:24:27 2023 GMT
Not After : Sep 15 10:24:27 2027 GMT
Subject: CN=64f5b05e-c137
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:38:a6:bc:1b:17:f2:a6:6b:13:51:49:9b:86:
22:90:5c:33:33:52:f4:c2:d9:01:96:63:36:e7:45:
0e:56:76:fe:b9:d7:4e:b6:a0:99:f0:c3:55:d5:53:
18:8a:da:21:9a:71:13:2d:a7:f4:e0:c2:74:0e:c8:
cc:8f:b6:9a:bb:ed:00:62:2c:d1:d8:ad:69:a3:fc:
44:bb:1d:64:a7:7f:ad:73:4b:f7:f1:45:39:d3:2e:
9c:5d:81:9c:53:9f:fc:f5:79:fa:e2:bb:51:27:e6:
dd:fb:71:97:87:c3:e5:45:8a:ab:45:4c:e6:9d:8d:
3a:bc:f0:07:60:7e:41:a3:43:54:d4:87:61:84:ce:
43:26:e8:1e:04:31:1a:f3:6b:fc:34:69:ff:9a:e5:
51:b0:9f:bb:b9:c0:51:e7:0c:bd:cc:60:4e:8f:db:
29:32:45:8b:06:8b:bc:cd:10:31:89:c1:84:7a:43:
77:cc:ac:f2:27:0d:5e:49:63:26:a5:b9:cf:61:45:
a9:8c:c0:1f:20:2c:d5:6a:99:c2:d3:91:c3:fc:bd:
12:4b:cf:b1:27:fd:3c:d1:21:c0:67:88:63:ed:05:
73:52:07:6b:22:80:89:81:bc:b9:e9:a6:18:12:82:
f9:1a:59:1e:6b:12:16:be:ac:a8:70:44:07:25:0d:
8c:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:AE:D3:91:66:C5:D7:09:4C:F2:8F:3D:0D:03:6C:C6:A8:C6:29:E1
X509v3 Authority Key Identifier:
keyid:A5:8A:6D:29:11:4C:88:1E:00:58:77:27:9D:95:AB:AA:39:EE:14:1C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36D7FB7/8AC1C572F62C11EDA10D3B3A4AD9E6FC/pYptKRFMiB4AWHcnnZWrqjnuFBw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/pYptKRFMiB4AWHcnnZWrqjnuFBw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36D7FB7/8AC1C572F62C11EDA10D3B3A4AD9E6FC/3BDE86EE4B0D11EE8D6AAC8A4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.217.16.0/24
Signature Algorithm: sha256WithRSAEncryption
77:f1:c1:50:ff:51:4f:82:34:ba:bd:d7:d8:a5:bf:04:75:f8:
8b:4d:96:8a:74:da:ac:29:35:c4:24:db:79:0d:ca:f8:3d:40:
19:a4:5e:8c:b7:46:a2:35:39:76:5f:42:6f:94:5e:7a:b1:fa:
a1:30:be:0b:ee:31:11:3b:fb:eb:d6:15:58:c2:93:3d:9d:6b:
40:e1:ba:a9:b8:47:ad:cb:a9:1c:7c:46:1f:af:0d:a3:b9:0d:
d0:c0:80:d8:f5:1a:3e:80:5b:77:d5:8a:9b:0a:ad:3f:cb:5c:
c4:2d:d7:c3:79:f4:8e:f3:b4:69:ec:a3:c4:f5:38:ad:dd:1a:
5e:34:c7:22:65:2c:08:6e:a8:26:75:c9:0a:d4:fb:04:7a:f7:
13:fb:55:31:ff:bc:0e:5e:8d:db:7c:c3:e8:35:a9:5a:40:fd:
79:6e:90:1c:6e:e2:96:90:2a:1e:ea:11:9e:5d:43:7a:86:55:
91:51:fb:33:63:4a:5a:17:f5:5c:fc:87:9b:6e:a6:d2:01:e8:
62:13:d5:c9:69:c3:01:c6:0e:39:b7:81:69:ed:95:e7:6e:4f:
19:dc:b8:20:fa:6f:e1:f3:8e:5c:c4:9a:1f:fe:2a:9f:a1:7f:
8e:4d:81:f5:1f:38:74:54:2b:00:57:1e:1f:50:98:a2:01:9f:
bd:5c:50:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 1 02:55:13 2024 by rpki-client on console-fra.rpki-client.org