Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36DA693/0D2968C67D5F11E99565B87EF8AEA228/DF5A0F00C6EC11ED923603D0F1222468.roa
File: DF5A0F00C6EC11ED923603D0F1222468.roa (raw, json)
Hash identifier: Z88ICIcSUmQtvPQ2Yz90UPDdaYkgQDQfxkB1loI2X7w=
Subject key identifier: 0D:D8:C3:88:E5:A9:76:F9:EE:B7:BE:4A:01:53:16:59:C8:CC:BF:04
Certificate issuer: /CN=F36DA693AF/serialNumber=089012F969A6200C9399B093447AA4EA2CFCA81E
Certificate serial: 059D
Authority key identifier: 08:90:12:F9:69:A6:20:0C:93:99:B0:93:44:7A:A4:EA:2C:FC:A8:1E
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CJAS-WmmIAyTmbCTRHqk6iz8qB4.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36DA693/0D2968C67D5F11E99565B87EF8AEA228/DF5A0F00C6EC11ED923603D0F1222468.roa
Signing time: Mon 20 Mar 2023 07:00:18 +0000
ROA not before: Mon 20 Mar 2023 07:00:13 +0000
ROA not after: Wed 20 Mar 2030 07:00:13 +0000
asID: 329181
IP address blocks: 102.22.196.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36DA693/0D2968C67D5F11E99565B87EF8AEA228/CJAS-WmmIAyTmbCTRHqk6iz8qB4.crl
rsync://rpki.afrinic.net/repository/member_repository/F36DA693/0D2968C67D5F11E99565B87EF8AEA228/CJAS-WmmIAyTmbCTRHqk6iz8qB4.mft
rsync://rpki.afrinic.net/repository/afrinic/CJAS-WmmIAyTmbCTRHqk6iz8qB4.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1437 (0x59d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36DA693AF/serialNumber=089012F969A6200C9399B093447AA4EA2CFCA81E
Validity
Not Before: Mar 20 07:00:13 2023 GMT
Not After : Mar 20 07:00:13 2030 GMT
Subject: CN=64180482-4b46
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:26:8d:69:b7:a3:b3:e9:8b:9d:ea:59:09:8a:
b3:38:63:44:85:51:9c:bd:7c:1d:09:18:62:38:0f:
87:e8:52:6b:d5:84:03:e1:c0:6b:53:38:2d:9f:dd:
7d:fe:85:5e:0b:f4:0a:ed:d3:31:15:23:a6:85:2d:
00:37:3b:1b:e0:c8:a9:f5:f2:13:f4:f8:0d:7e:7f:
f8:a9:a3:9d:ed:52:4f:c4:47:6f:09:8f:7e:4c:fc:
89:5f:c2:fc:19:fd:4e:41:e7:d7:9c:49:59:18:99:
70:20:2e:73:1b:9e:0b:f3:eb:a7:78:ae:34:2c:5f:
ca:54:0f:91:09:53:17:18:38:c0:22:bb:09:40:cd:
36:eb:2e:25:fb:7c:66:b7:c6:3c:70:1d:a5:7d:f9:
18:ef:93:cd:9e:e5:10:96:eb:90:c0:f8:70:7a:09:
0e:9b:a1:b7:3b:20:b9:06:3e:aa:82:7f:50:c0:3e:
dd:16:4b:5a:b7:33:26:00:7e:38:d0:18:79:f6:f8:
66:7c:49:f9:b7:f1:c8:60:55:b4:82:55:1f:1f:5a:
a5:02:23:1e:b5:05:a6:ba:57:41:d2:89:02:6b:74:
6a:7c:cd:02:79:e9:aa:2f:d4:2a:e8:02:b9:64:d0:
cb:28:8f:31:8d:5d:88:91:31:a4:e9:e8:fd:bc:5a:
54:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:D8:C3:88:E5:A9:76:F9:EE:B7:BE:4A:01:53:16:59:C8:CC:BF:04
X509v3 Authority Key Identifier:
keyid:08:90:12:F9:69:A6:20:0C:93:99:B0:93:44:7A:A4:EA:2C:FC:A8:1E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36DA693/0D2968C67D5F11E99565B87EF8AEA228/CJAS-WmmIAyTmbCTRHqk6iz8qB4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CJAS-WmmIAyTmbCTRHqk6iz8qB4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36DA693/0D2968C67D5F11E99565B87EF8AEA228/DF5A0F00C6EC11ED923603D0F1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.22.196.0/24
Signature Algorithm: sha256WithRSAEncryption
2a:d9:41:60:f8:80:c4:41:8e:51:bd:65:45:9d:c2:cc:4a:18:
9e:7d:28:2c:43:ed:c3:24:8f:02:24:3a:c4:30:b8:94:cd:46:
91:e8:6a:f7:3b:ff:96:9d:a1:d2:6d:09:f1:b0:2c:c8:ee:ab:
7f:c2:e6:b9:1b:e6:3d:32:e2:1e:1e:f0:60:9a:55:e5:9d:98:
ae:f7:bc:ae:b3:c1:a6:46:5f:2b:a0:5f:33:28:15:dc:21:de:
e6:5d:20:9c:be:86:18:31:20:f4:a9:4f:7d:c7:36:9f:57:45:
54:04:be:b5:1f:89:a1:7f:a7:e8:c2:fa:dc:5b:de:f1:8c:70:
46:42:c2:c0:51:8f:63:53:2c:31:81:79:e1:73:2a:2b:5d:80:
1c:95:40:c5:43:a6:6b:60:54:54:60:c6:66:76:a7:53:cb:c5:
40:f1:5e:b0:b5:53:9c:cc:34:82:05:96:7b:92:d1:45:a6:3a:
5d:8f:87:be:e5:bb:f6:5f:31:34:99:99:ae:9e:0d:ed:f1:a7:
19:3d:fe:cb:48:0f:e2:87:3d:54:7d:e5:75:6b:70:fb:f8:1e:
4e:5b:75:24:e0:33:8b:87:99:a7:76:0e:37:11:8a:1e:fa:bd:
48:cd:09:cd:ad:ba:d7:bf:b9:45:ce:03:a0:17:8d:3f:81:5f:
0f:f8:cf:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:10:18 2024 by rpki-client on console-fra.rpki-client.org