Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36DA3E9/3CBCB97259C011EC9B4364725A40D577/0532E480DC7311EE9B26756F775412E6.roa
File: 0532E480DC7311EE9B26756F775412E6.roa (raw, json)
Hash identifier: FWpbgzq5PRvS4iSaEz/I2bzcNh5s/Hvz/Y6dVmAtogo=
Subject key identifier: 9E:88:0D:1C:0A:E0:8F:E1:CF:56:8C:C0:66:A7:F9:77:4D:DB:03:3A
Certificate issuer: /CN=F36DA3E9AF/serialNumber=3D2C034F851F3715B2BA4C9C95E5285DAF2EE923
Certificate serial: 0369
Authority key identifier: 3D:2C:03:4F:85:1F:37:15:B2:BA:4C:9C:95:E5:28:5D:AF:2E:E9:23
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/PSwDT4UfNxWyukycleUoXa8u6SM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36DA3E9/3CBCB97259C011EC9B4364725A40D577/0532E480DC7311EE9B26756F775412E6.roa
Signing time: Thu 07 Mar 2024 11:08:26 +0000
ROA not before: Thu 07 Mar 2024 11:08:22 +0000
ROA not after: Tue 07 Mar 2034 11:08:22 +0000
asID: 15399
IP address blocks: 102.209.132.0/22 maxlen: 22
102.210.84.0/22 maxlen: 22
102.210.180.0/22 maxlen: 22
102.211.32.0/22 maxlen: 22
102.211.88.0/22 maxlen: 22
102.211.248.0/22 maxlen: 23
102.212.112.0/22 maxlen: 22
102.212.116.0/22 maxlen: 22
102.213.36.0/22 maxlen: 22
102.214.48.0/22 maxlen: 22
102.215.148.0/22 maxlen: 22
102.215.160.0/22 maxlen: 22
102.216.60.0/22 maxlen: 22
102.216.244.0/22 maxlen: 22
102.217.80.0/22 maxlen: 22
102.218.28.0/22 maxlen: 22
102.219.120.0/22 maxlen: 22
102.219.216.0/22 maxlen: 22
102.221.20.0/22 maxlen: 22
102.222.84.0/22 maxlen: 22
2c0f:e958::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36DA3E9/3CBCB97259C011EC9B4364725A40D577/PSwDT4UfNxWyukycleUoXa8u6SM.crl
rsync://rpki.afrinic.net/repository/member_repository/F36DA3E9/3CBCB97259C011EC9B4364725A40D577/PSwDT4UfNxWyukycleUoXa8u6SM.mft
rsync://rpki.afrinic.net/repository/afrinic/PSwDT4UfNxWyukycleUoXa8u6SM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 873 (0x369)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36DA3E9AF/serialNumber=3D2C034F851F3715B2BA4C9C95E5285DAF2EE923
Validity
Not Before: Mar 7 11:08:22 2024 GMT
Not After : Mar 7 11:08:22 2034 GMT
Subject: CN=65e9a02a-6269
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:a8:ea:19:c3:0f:f1:22:4e:20:f1:b7:0f:65:
97:96:ac:dd:0d:8d:ce:ff:74:a1:e7:ed:be:55:f2:
0a:e4:58:0b:14:b1:e9:df:3f:86:b2:8e:85:d2:45:
eb:d1:25:2a:9f:83:d4:c4:c9:32:d4:ee:a3:b8:dd:
06:6d:71:fa:f4:2d:fe:74:70:4e:85:34:55:73:9a:
0b:a3:ee:64:63:7a:d7:57:c4:6b:f4:7a:02:29:52:
cc:6e:39:7a:71:c1:6f:3e:00:34:5b:69:b4:ca:4b:
70:0b:f7:d6:2b:61:af:da:5a:13:fe:2b:5d:ff:48:
7f:f4:54:be:6c:0c:79:77:77:44:90:4a:23:29:9f:
73:8d:20:18:5e:e7:f8:5f:21:c7:28:5f:12:29:44:
af:3f:96:ad:10:7f:73:8c:bc:f2:a5:66:2d:39:aa:
84:56:dd:d0:c5:a3:16:b5:9d:a6:09:d5:cc:da:bc:
51:7c:5b:c9:0b:be:8a:e9:58:77:de:b5:e9:6b:1a:
33:3c:69:78:a8:e5:63:4b:1c:72:48:26:84:a9:51:
d6:c6:ce:65:a1:02:f0:f7:15:a5:e2:76:fd:b9:25:
cd:6a:45:ad:5a:da:20:3c:47:1c:94:a0:c9:91:41:
05:07:d9:25:ff:71:44:41:68:eb:a0:d5:d8:de:bd:
a5:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:88:0D:1C:0A:E0:8F:E1:CF:56:8C:C0:66:A7:F9:77:4D:DB:03:3A
X509v3 Authority Key Identifier:
keyid:3D:2C:03:4F:85:1F:37:15:B2:BA:4C:9C:95:E5:28:5D:AF:2E:E9:23
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36DA3E9/3CBCB97259C011EC9B4364725A40D577/PSwDT4UfNxWyukycleUoXa8u6SM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/PSwDT4UfNxWyukycleUoXa8u6SM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36DA3E9/3CBCB97259C011EC9B4364725A40D577/0532E480DC7311EE9B26756F775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.209.132.0/22
102.210.84.0/22
102.210.180.0/22
102.211.32.0/22
102.211.88.0/22
102.211.248.0/22
102.212.112.0/21
102.213.36.0/22
102.214.48.0/22
102.215.148.0/22
102.215.160.0/22
102.216.60.0/22
102.216.244.0/22
102.217.80.0/22
102.218.28.0/22
102.219.120.0/22
102.219.216.0/22
102.221.20.0/22
102.222.84.0/22
IPv6:
2c0f:e958::/32
Signature Algorithm: sha256WithRSAEncryption
aa:89:8c:cc:f8:b4:5b:25:34:40:9e:7b:83:7a:50:e6:f0:4e:
82:5f:69:b3:6f:b0:75:c0:af:a6:ce:6b:b3:b1:e7:09:88:2c:
9b:3d:98:a2:a4:20:c8:e6:ac:a1:ae:1c:d6:d7:4d:5c:04:fe:
83:98:54:2e:20:4a:79:32:43:64:4c:c2:0b:96:80:22:04:18:
30:1f:9a:19:f2:e1:73:15:20:a9:05:a6:32:c4:2d:fd:6a:97:
ef:e9:f9:a8:5a:11:ca:d9:bf:c7:af:46:7e:27:0d:51:c9:11:
4b:df:6f:2c:3d:3e:cf:14:47:14:07:84:6c:eb:1b:ce:de:40:
c1:e3:e4:42:38:f5:e3:d8:a4:c7:67:20:b8:a6:ea:a3:5e:c1:
fe:9c:62:ec:01:0f:72:1f:22:43:e3:34:e0:d3:f3:91:60:d3:
a4:e9:4a:0f:87:20:a0:4d:80:1a:64:42:ab:d5:f9:46:ab:aa:
8f:e1:67:da:4e:38:36:72:19:3f:6e:0c:28:64:77:e7:45:7b:
0c:63:0f:e1:23:62:00:87:63:f6:ad:65:6c:91:a5:80:ab:0d:
87:98:8b:af:f7:52:36:6a:a0:4e:45:76:07:dd:a6:92:cb:ba:
af:41:a2:5a:50:19:55:0d:9b:f3:6a:cd:ac:2f:2d:7f:11:6d:
87:98:48:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:05:28 2024 by rpki-client on console-ams.rpki-client.org