Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36E373D/4D22ACD68B7311E9A49A4368F8AEA228/8CFF0D3452E011EEB9E2557C4AD9E6FC.roa
File: 8CFF0D3452E011EEB9E2557C4AD9E6FC.roa (raw, json)
Hash identifier: AjdT4e8a6WXfxGEzOMU2Ejz3vHkEPA/+xC+T83HmsUY=
Subject key identifier: 0A:6E:6A:4A:05:E9:D3:5B:C8:44:EF:44:FE:30:C5:89:4A:27:8A:33
Certificate issuer: /CN=F36E373DAF/serialNumber=FD8E045884B1669EBD430AE566721D97404A6CE8
Certificate serial: 067A
Authority key identifier: FD:8E:04:58:84:B1:66:9E:BD:43:0A:E5:66:72:1D:97:40:4A:6C:E8
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/_Y4EWISxZp69QwrlZnIdl0BKbOg.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36E373D/4D22ACD68B7311E9A49A4368F8AEA228/8CFF0D3452E011EEB9E2557C4AD9E6FC.roa
Signing time: Thu 14 Sep 2023 09:24:49 +0000
ROA not before: Thu 14 Sep 2023 09:24:45 +0000
ROA not after: Wed 14 Sep 2033 09:24:45 +0000
asID: 327733
IP address blocks: 102.216.162.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36E373D/4D22ACD68B7311E9A49A4368F8AEA228/_Y4EWISxZp69QwrlZnIdl0BKbOg.crl
rsync://rpki.afrinic.net/repository/member_repository/F36E373D/4D22ACD68B7311E9A49A4368F8AEA228/_Y4EWISxZp69QwrlZnIdl0BKbOg.mft
rsync://rpki.afrinic.net/repository/afrinic/_Y4EWISxZp69QwrlZnIdl0BKbOg.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1658 (0x67a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36E373DAF/serialNumber=FD8E045884B1669EBD430AE566721D97404A6CE8
Validity
Not Before: Sep 14 09:24:45 2023 GMT
Not After : Sep 14 09:24:45 2033 GMT
Subject: CN=6502d161-74c2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:f3:67:bb:23:c9:77:57:9a:07:a0:b0:a0:cd:
f6:b5:52:46:2e:bb:c3:c7:72:38:89:de:71:b6:35:
ef:07:a6:b0:b3:82:be:a6:48:a8:45:57:92:d4:fc:
f1:0d:52:47:47:74:28:a8:3a:37:72:79:e0:fb:da:
8f:39:c1:29:5f:09:31:22:6f:7f:db:ff:aa:32:36:
16:85:a5:8b:87:31:b0:af:d5:39:04:6b:5d:84:b3:
52:5d:b1:6a:89:ca:d2:81:f5:68:a7:7e:28:10:6f:
a9:ca:d4:89:61:32:78:0b:40:e5:bf:54:30:49:b0:
c7:fc:1f:b6:f2:75:15:e7:64:08:de:fd:a8:6a:d4:
2d:90:d8:31:bf:5d:94:37:c2:dc:9d:39:3b:e6:55:
ba:2e:fa:c4:08:ec:df:47:fa:9b:57:59:88:25:f0:
4d:3c:ff:c0:3a:a4:ee:88:a2:78:b1:28:dc:0d:c9:
f8:19:d6:b1:27:05:0b:85:6c:06:ad:f3:09:41:9a:
9d:ec:f0:f8:92:6c:39:72:d9:ca:4c:6a:b6:88:46:
96:a3:26:33:c3:60:71:b2:13:bf:e8:7a:44:bc:68:
b5:bd:b2:94:fb:f9:2c:72:54:04:8e:be:93:fe:9d:
96:67:e5:2f:86:3e:cc:37:10:b5:68:14:2d:eb:8a:
12:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:6E:6A:4A:05:E9:D3:5B:C8:44:EF:44:FE:30:C5:89:4A:27:8A:33
X509v3 Authority Key Identifier:
keyid:FD:8E:04:58:84:B1:66:9E:BD:43:0A:E5:66:72:1D:97:40:4A:6C:E8
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36E373D/4D22ACD68B7311E9A49A4368F8AEA228/_Y4EWISxZp69QwrlZnIdl0BKbOg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/_Y4EWISxZp69QwrlZnIdl0BKbOg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36E373D/4D22ACD68B7311E9A49A4368F8AEA228/8CFF0D3452E011EEB9E2557C4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.216.162.0/24
Signature Algorithm: sha256WithRSAEncryption
08:eb:62:0b:70:70:87:b7:3d:25:e0:e7:f3:56:c8:e0:13:02:
b0:ab:8c:74:ee:e2:64:f9:73:47:6e:c4:0f:47:2d:82:26:86:
92:bf:22:a6:2a:d6:d6:e5:19:3b:7f:2d:87:5f:51:83:de:32:
37:07:63:37:d4:a6:d6:66:d7:68:5e:b2:5f:f5:6c:54:d9:f6:
a1:cc:4f:88:24:5f:da:80:87:cf:75:b2:b9:70:cb:05:09:24:
ce:9f:9b:4f:ea:b1:c0:91:57:03:ec:3b:83:05:14:7e:f8:c8:
52:24:6d:96:c9:9c:1d:62:d7:8f:14:60:d0:55:3d:e6:00:63:
29:19:4f:59:45:48:b2:87:f6:08:95:0d:8d:ca:41:46:e1:a4:
2c:d1:fe:87:ab:98:46:75:a7:52:98:ac:98:11:a5:2c:e0:60:
bc:c1:7d:90:25:12:14:b7:11:6e:7c:1f:11:6b:1f:64:ed:69:
45:93:8b:be:06:17:17:60:7e:9c:65:99:10:03:2f:ec:12:28:
f2:c1:16:4b:53:ee:8e:6f:07:ed:ba:a5:5f:b9:5b:3f:58:af:
25:35:fb:8b:e8:7e:3d:1f:dd:ba:69:78:7f:50:d8:38:38:f9:
39:51:d8:21:05:fe:2a:29:f5:c9:21:ba:e1:eb:7b:0b:ec:44:
8b:1f:ff:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:05:30 2024 by rpki-client on console-ams.rpki-client.org