Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36DB492/10DA99764A0311ED8F59D89EF1222468/9369A48A374D11EEBBBCC3734AD9E6FC.roa
File: 9369A48A374D11EEBBBCC3734AD9E6FC.roa (raw, json)
Hash identifier: LriikUtiyzWDzN+qJjLYRklCy7tVdfyDgc1icmMt3FY=
Subject key identifier: DF:D2:8A:E5:56:04:DC:9C:15:D4:73:DA:2E:0C:4D:81:4D:07:B3:D0
Certificate issuer: /CN=F36DB492AF/serialNumber=F43E0668EF72BD87FA5368BE2B6815C0BCB40149
Certificate serial: 014C
Authority key identifier: F4:3E:06:68:EF:72:BD:87:FA:53:68:BE:2B:68:15:C0:BC:B4:01:49
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/9D4GaO9yvYf6U2i-K2gVwLy0AUk.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36DB492/10DA99764A0311ED8F59D89EF1222468/9369A48A374D11EEBBBCC3734AD9E6FC.roa
Signing time: Thu 10 Aug 2023 07:14:42 +0000
ROA not before: Thu 10 Aug 2023 07:14:38 +0000
ROA not after: Sat 08 Aug 2026 07:14:38 +0000
asID: 23764
IP address blocks: 102.217.164.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36DB492/10DA99764A0311ED8F59D89EF1222468/9D4GaO9yvYf6U2i-K2gVwLy0AUk.crl
rsync://rpki.afrinic.net/repository/member_repository/F36DB492/10DA99764A0311ED8F59D89EF1222468/9D4GaO9yvYf6U2i-K2gVwLy0AUk.mft
rsync://rpki.afrinic.net/repository/afrinic/9D4GaO9yvYf6U2i-K2gVwLy0AUk.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 332 (0x14c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36DB492AF/serialNumber=F43E0668EF72BD87FA5368BE2B6815C0BCB40149
Validity
Not Before: Aug 10 07:14:38 2023 GMT
Not After : Aug 8 07:14:38 2026 GMT
Subject: CN=64d48e62-f46f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:20:e6:d5:6d:91:33:1f:a8:f4:12:f7:be:fe:
92:cf:38:26:56:7c:61:b2:7c:0e:4f:a7:c0:53:ea:
09:64:6e:27:65:d6:f9:0b:c4:02:2d:f3:ea:b9:19:
6e:79:5e:af:0d:ae:c5:14:02:c4:38:a1:9e:f5:57:
16:32:0d:6d:0b:88:7c:79:e6:78:38:53:fd:e8:66:
dc:5f:0e:27:e6:29:21:93:1c:3a:ed:b2:6d:3c:44:
8d:ed:42:fe:6d:0a:fd:83:ac:53:b9:b2:79:a5:a5:
57:6d:e3:3e:ed:33:4b:5d:97:76:9d:8b:5e:99:e0:
1a:9d:8a:08:ef:a6:38:e4:55:87:27:47:fc:ec:07:
d5:8b:21:21:42:4f:7e:f1:53:bb:22:d2:d1:71:44:
0c:99:ba:93:9f:be:e6:b5:76:49:38:0d:68:e7:8f:
a8:92:2b:f1:71:d0:ee:8d:36:66:02:97:6a:38:c2:
49:81:eb:6f:1f:4a:cb:37:3d:34:10:c9:ca:fe:2f:
a8:77:79:e6:e0:1c:1b:ce:51:a2:16:8c:44:09:0b:
b8:f4:08:98:99:20:5f:6b:e8:d6:5e:47:34:1a:21:
d0:45:ca:b0:30:8c:9d:4e:be:01:34:e8:24:b4:c8:
e9:59:ee:f4:cc:52:3e:c1:00:4f:e1:a1:b1:2b:16:
bd:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:D2:8A:E5:56:04:DC:9C:15:D4:73:DA:2E:0C:4D:81:4D:07:B3:D0
X509v3 Authority Key Identifier:
keyid:F4:3E:06:68:EF:72:BD:87:FA:53:68:BE:2B:68:15:C0:BC:B4:01:49
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36DB492/10DA99764A0311ED8F59D89EF1222468/9D4GaO9yvYf6U2i-K2gVwLy0AUk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/9D4GaO9yvYf6U2i-K2gVwLy0AUk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36DB492/10DA99764A0311ED8F59D89EF1222468/9369A48A374D11EEBBBCC3734AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.217.164.0/24
Signature Algorithm: sha256WithRSAEncryption
40:c3:07:20:27:32:73:ef:9a:6a:f8:1f:00:ab:10:34:fd:5b:
15:ec:52:98:fd:6e:57:3a:fb:d8:0f:e9:5a:2a:76:c9:e6:bf:
e5:58:76:d3:0f:93:b7:20:20:9c:d8:f3:c2:0e:5f:5d:d2:60:
bf:7f:c5:c5:94:91:d7:0e:87:09:f2:80:f1:a6:bf:a5:4a:05:
3a:d8:70:2c:96:2a:99:e0:a3:90:3a:ac:16:6e:18:28:f5:ca:
6c:10:04:76:a7:6f:d3:35:bb:33:7a:77:a6:30:14:f0:2b:85:
ae:32:2c:58:b2:ce:86:9b:a0:33:a2:e7:e0:6f:60:fa:b7:68:
99:a1:9d:95:80:af:a0:4e:a9:a9:77:25:4b:db:9a:19:b9:ed:
3c:46:ff:d7:24:80:43:e1:d1:ff:1b:a3:bc:0a:c6:ba:32:ea:
19:67:d2:7d:ff:50:f4:e9:30:53:56:3e:ec:4b:cc:3a:23:0d:
fc:51:07:40:24:ca:2a:a7:37:95:28:f4:01:d3:a0:21:df:3c:
15:7f:16:3d:d7:7c:e6:5a:f8:5e:31:bb:df:f4:2b:62:2c:2e:
be:36:ce:a1:17:8e:be:1c:62:aa:dd:63:c5:f8:99:97:c6:c7:
8f:02:35:79:be:15:dd:73:35:89:35:18:c8:5e:3d:2a:d7:5f:
1e:b3:c4:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 03:52:59 2024 by rpki-client on console-fra.rpki-client.org