Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36E373D/4D22ACD68B7311E9A49A4368F8AEA228/771B25DAC1DC11EBAFF27A22F8AEA228.roa
File: 771B25DAC1DC11EBAFF27A22F8AEA228.roa (raw, json)
Hash identifier: hB7LK5vkWRJBikNKLrZykTmcN1gbhqGJuoapPw28t74=
Subject key identifier: D8:2D:4F:D5:84:17:ED:A1:46:B6:CC:FB:DA:33:E7:0E:D1:19:7E:F4
Certificate issuer: /CN=F36E373DAF/serialNumber=FD8E045884B1669EBD430AE566721D97404A6CE8
Certificate serial: 0306
Authority key identifier: FD:8E:04:58:84:B1:66:9E:BD:43:0A:E5:66:72:1D:97:40:4A:6C:E8
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/_Y4EWISxZp69QwrlZnIdl0BKbOg.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36E373D/4D22ACD68B7311E9A49A4368F8AEA228/771B25DAC1DC11EBAFF27A22F8AEA228.roa
Signing time: Mon 31 May 2021 06:50:20 +0000
ROA not before: Mon 31 May 2021 06:50:14 +0000
ROA not after: Sat 31 May 2031 06:50:14 +0000
asID: 327733
IP address blocks: 102.23.95.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36E373D/4D22ACD68B7311E9A49A4368F8AEA228/_Y4EWISxZp69QwrlZnIdl0BKbOg.crl
rsync://rpki.afrinic.net/repository/member_repository/F36E373D/4D22ACD68B7311E9A49A4368F8AEA228/_Y4EWISxZp69QwrlZnIdl0BKbOg.mft
rsync://rpki.afrinic.net/repository/afrinic/_Y4EWISxZp69QwrlZnIdl0BKbOg.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 774 (0x306)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36E373DAF/serialNumber=FD8E045884B1669EBD430AE566721D97404A6CE8
Validity
Not Before: May 31 06:50:14 2021 GMT
Not After : May 31 06:50:14 2031 GMT
Subject: CN=60b4872c-6bf7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:17:49:da:9e:d3:5f:b1:94:6e:db:03:2b:71:
39:37:2b:69:b0:8b:97:7a:24:e8:92:01:44:1c:c6:
e3:63:ad:41:d6:39:fd:34:de:48:00:d2:86:34:67:
cb:ec:03:a5:5f:43:ef:9b:9f:54:38:c8:88:97:02:
70:4b:91:d9:85:cb:cd:c4:49:13:59:b1:78:41:22:
5d:dd:2f:a2:9b:c5:d8:91:86:21:77:94:e5:e1:f8:
a6:5e:b2:64:c6:99:89:2e:53:e0:13:bc:c5:0b:3a:
31:e1:63:5f:36:79:15:7a:63:04:4e:db:0b:24:cc:
18:fc:b3:9e:4f:d4:75:d0:b0:f1:32:1a:7c:a6:9d:
48:65:15:09:0b:fe:29:72:db:b3:63:cf:c7:6c:8c:
ba:0d:65:b3:2a:73:8c:23:54:31:c1:fb:c8:be:d4:
cb:91:67:3f:6a:f8:e2:1c:69:17:1b:57:28:65:37:
b5:88:0b:43:dd:36:f3:8c:a5:1c:a1:da:a0:b9:72:
a2:4f:cb:84:18:b1:d1:52:74:a2:b3:c8:f7:ee:73:
fd:c3:94:37:44:78:e2:49:1a:a6:c3:f5:4a:23:22:
07:0d:c8:ae:af:d3:8b:e9:a6:ce:e1:49:ff:8d:02:
d9:a4:de:d0:8b:ba:da:7b:e9:e2:87:ff:74:25:55:
b7:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:2D:4F:D5:84:17:ED:A1:46:B6:CC:FB:DA:33:E7:0E:D1:19:7E:F4
X509v3 Authority Key Identifier:
keyid:FD:8E:04:58:84:B1:66:9E:BD:43:0A:E5:66:72:1D:97:40:4A:6C:E8
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36E373D/4D22ACD68B7311E9A49A4368F8AEA228/_Y4EWISxZp69QwrlZnIdl0BKbOg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/_Y4EWISxZp69QwrlZnIdl0BKbOg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36E373D/4D22ACD68B7311E9A49A4368F8AEA228/771B25DAC1DC11EBAFF27A22F8AEA228.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.23.95.0/24
Signature Algorithm: sha256WithRSAEncryption
5a:54:55:34:0f:32:f0:92:79:fe:a7:f9:96:ea:3e:07:26:e8:
25:d8:fd:78:36:5c:c3:7a:ac:91:b6:fc:0c:24:33:73:66:e7:
b4:0e:74:ad:27:2a:6d:e5:e4:f6:23:56:69:0f:e9:81:ae:3f:
68:55:d8:0f:8d:9c:e5:3a:76:76:44:fd:89:7d:1f:c9:3a:69:
d4:74:8b:0f:03:18:20:80:25:b5:83:d2:60:de:e7:17:e6:36:
ec:0e:06:7e:3a:ba:da:02:a9:38:3d:26:5f:54:aa:56:42:6f:
15:73:bc:26:66:1e:e9:a1:02:c5:12:cb:fb:dc:d1:95:72:0b:
25:4e:31:d3:c9:a0:ce:6f:50:94:30:0f:9b:94:c0:e3:76:fb:
8a:e2:db:2d:a2:4e:26:cd:a1:02:9f:78:e8:37:1d:6d:92:00:
09:08:04:11:86:9e:f9:97:11:cf:24:b2:cf:3c:1a:81:13:e5:
81:00:7d:a4:14:bd:1b:01:dc:82:11:ba:60:4c:d1:34:ca:e6:
8c:e6:65:da:05:f5:6e:78:61:27:d5:56:f3:08:30:82:b4:2e:
eb:d2:0e:b5:96:03:52:99:85:16:c3:17:de:a2:1c:29:6d:7d:
a5:12:30:7f:d2:1b:03:e5:56:7f:e9:91:5e:78:4e:29:88:27:
5f:dc:36:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:10:19 2024 by rpki-client on console-fra.rpki-client.org