Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36D9B5B/9E1BD378135A11E5B68D4286F8AEA228/5BA2465E037F11EDB5F8F0C0F1222468.roa
File: 5BA2465E037F11EDB5F8F0C0F1222468.roa (raw, json)
Hash identifier: TV0mQqI15fCBzn5VfeVjormHM3HjavPeVewlRIBDw4I=
Subject key identifier: 8D:EC:0E:AC:07:71:F7:BC:26:D2:AE:74:A7:81:2F:8B:93:16:02:03
Certificate issuer: /CN=F36D9B5BAF/serialNumber=23F814BB47D5C3AEDD5103F36F5DB8A29BE3D71D
Certificate serial: 0A71
Authority key identifier: 23:F8:14:BB:47:D5:C3:AE:DD:51:03:F3:6F:5D:B8:A2:9B:E3:D7:1D
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/I_gUu0fVw67dUQPzb124opvj1x0.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36D9B5B/9E1BD378135A11E5B68D4286F8AEA228/5BA2465E037F11EDB5F8F0C0F1222468.roa
Signing time: Thu 14 Jul 2022 14:15:05 +0000
ROA not before: Thu 14 Jul 2022 14:15:02 +0000
ROA not after: Sat 31 Jul 2032 14:15:02 +0000
asID: 37394
IP address blocks: 102.164.121.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36D9B5B/9E1BD378135A11E5B68D4286F8AEA228/I_gUu0fVw67dUQPzb124opvj1x0.crl
rsync://rpki.afrinic.net/repository/member_repository/F36D9B5B/9E1BD378135A11E5B68D4286F8AEA228/I_gUu0fVw67dUQPzb124opvj1x0.mft
rsync://rpki.afrinic.net/repository/afrinic/I_gUu0fVw67dUQPzb124opvj1x0.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2673 (0xa71)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36D9B5BAF/serialNumber=23F814BB47D5C3AEDD5103F36F5DB8A29BE3D71D
Validity
Not Before: Jul 14 14:15:02 2022 GMT
Not After : Jul 31 14:15:02 2032 GMT
Subject: CN=62d024e9-cfb7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:f1:c2:09:fb:7b:aa:d1:6f:09:9e:2a:1f:6d:
66:a4:74:33:93:fb:07:8a:51:76:53:dd:08:a6:85:
a3:5a:b2:45:2a:e8:3c:24:aa:c2:49:42:55:69:07:
99:63:59:d8:2d:71:b5:3f:5b:84:e3:c7:4b:3c:09:
77:d3:a8:ab:be:42:aa:f8:52:d8:52:2f:0c:50:79:
a9:d5:19:35:fc:db:72:db:cf:bb:e8:39:28:39:3b:
a0:a2:91:e5:57:6e:a5:7b:c5:41:23:46:5c:c4:bd:
12:5b:05:4b:fc:6e:f6:10:90:6c:01:aa:aa:84:69:
21:b9:04:e5:7b:ad:be:db:bc:a7:2a:f8:c2:1e:64:
43:f2:af:cf:95:77:29:6b:9e:fe:56:4e:58:cb:84:
4d:fc:4e:4e:a6:16:3b:3b:69:21:ca:a6:4e:8c:d6:
6f:f4:4f:bd:61:ca:4e:de:27:4d:98:f3:e2:af:63:
9d:23:28:3c:4f:f0:24:8f:2c:0d:8e:ca:ad:1d:25:
6e:af:c0:c3:c2:14:6b:94:8a:04:45:68:78:93:2b:
6f:62:60:a8:e8:c1:38:26:c7:d6:ae:5e:73:c0:54:
8d:f5:2a:00:7e:1f:97:e2:b5:24:17:70:45:d2:ff:
30:85:ef:08:36:8d:96:3e:48:59:d9:c0:69:1e:1e:
1c:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:EC:0E:AC:07:71:F7:BC:26:D2:AE:74:A7:81:2F:8B:93:16:02:03
X509v3 Authority Key Identifier:
keyid:23:F8:14:BB:47:D5:C3:AE:DD:51:03:F3:6F:5D:B8:A2:9B:E3:D7:1D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36D9B5B/9E1BD378135A11E5B68D4286F8AEA228/I_gUu0fVw67dUQPzb124opvj1x0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/I_gUu0fVw67dUQPzb124opvj1x0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36D9B5B/9E1BD378135A11E5B68D4286F8AEA228/5BA2465E037F11EDB5F8F0C0F1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.164.121.0/24
Signature Algorithm: sha256WithRSAEncryption
2e:b8:28:2a:1c:62:72:65:5f:11:67:ee:2b:44:9d:d7:93:38:
a9:9c:ce:4d:d0:55:2d:53:5f:e0:f0:55:0e:7c:e5:81:39:0a:
b9:ef:90:ef:f9:5e:78:bf:21:ce:53:fc:a3:65:46:07:d2:b8:
03:24:af:f6:3a:4c:04:b3:13:f2:86:ec:ca:b3:15:aa:11:ea:
3f:a8:26:cc:4b:28:c2:cb:00:40:c0:da:68:3e:3b:59:62:2f:
f9:90:28:47:b0:11:bc:11:56:5e:bd:c7:2d:54:82:81:12:34:
17:84:e0:0e:22:58:2b:6d:72:09:11:f2:59:18:81:67:89:57:
dd:61:35:a4:a9:a7:7f:60:78:02:78:fd:6e:1f:f5:a2:75:84:
8c:07:cc:20:00:58:8b:bb:e9:a8:5f:84:c0:8b:5b:e2:2c:e5:
3d:bf:26:36:7f:11:d2:91:4e:b1:45:08:9e:da:2e:3e:e8:99:
e0:e2:9f:ec:f7:6f:e0:d0:51:bc:29:50:7e:f1:2b:a4:a9:99:
51:6c:95:47:88:fa:2a:11:70:66:f6:6a:3b:3c:c7:5c:08:30:
55:e2:c5:21:01:f5:c5:7e:3e:5f:70:36:8c:fe:11:03:3b:48:
0c:03:71:e2:60:3d:26:65:e6:1f:fb:5b:99:ec:2d:db:6f:db:
77:ac:8d:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 01:34:53 2024 by rpki-client on console-ams.rpki-client.org