Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36E3941/5818052445D111EE8A5CA6574AD9E6FC/0C2FE94C570611EEAC1023344AD9E6FC.roa
File: 0C2FE94C570611EEAC1023344AD9E6FC.roa (raw, json)
Hash identifier: 7/VCkuO1MJrUrePvzuQCDljF/ayH1j149oaeTB6AkuI=
Subject key identifier: E6:A6:17:E3:59:EB:DD:48:AE:A9:C5:90:8A:E4:60:16:44:43:AD:28
Certificate issuer: /CN=F36E3941AF/serialNumber=456931501964CDB884B1475B56D68F3069C22AF2
Certificate serial: 18
Authority key identifier: 45:69:31:50:19:64:CD:B8:84:B1:47:5B:56:D6:8F:30:69:C2:2A:F2
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/RWkxUBlkzbiEsUdbVtaPMGnCKvI.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36E3941/5818052445D111EE8A5CA6574AD9E6FC/0C2FE94C570611EEAC1023344AD9E6FC.roa
Signing time: Tue 19 Sep 2023 16:03:18 +0000
ROA not before: Tue 19 Sep 2023 16:03:15 +0000
ROA not after: Mon 19 Sep 2033 16:03:15 +0000
asID: 328780
IP address blocks: 102.221.84.0/24 maxlen: 31
102.221.85.0/24 maxlen: 31
102.221.86.0/24 maxlen: 31
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36E3941/5818052445D111EE8A5CA6574AD9E6FC/RWkxUBlkzbiEsUdbVtaPMGnCKvI.crl
rsync://rpki.afrinic.net/repository/member_repository/F36E3941/5818052445D111EE8A5CA6574AD9E6FC/RWkxUBlkzbiEsUdbVtaPMGnCKvI.mft
rsync://rpki.afrinic.net/repository/afrinic/RWkxUBlkzbiEsUdbVtaPMGnCKvI.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 24 (0x18)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36E3941AF/serialNumber=456931501964CDB884B1475B56D68F3069C22AF2
Validity
Not Before: Sep 19 16:03:15 2023 GMT
Not After : Sep 19 16:03:15 2033 GMT
Subject: CN=6509c646-8ed0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:b0:c5:58:4b:22:c5:8d:b2:37:76:0b:76:bf:
68:d5:d9:40:c2:79:8c:44:e5:22:b1:33:58:ac:45:
0b:c8:be:80:79:eb:19:d6:20:6c:2d:7c:13:c6:4a:
47:c5:3b:8c:9c:02:b8:2c:85:82:da:35:cf:bd:f2:
8e:54:f9:3d:33:2b:10:98:54:5b:90:12:68:3f:52:
ed:3b:e0:62:8d:75:cf:ed:80:b1:11:59:16:ae:e1:
e0:c6:5a:6a:0b:d0:95:46:36:89:67:d4:55:cb:3c:
99:1b:b3:50:c5:3c:ed:bd:b8:88:5a:d1:5b:d6:2b:
0b:9c:88:df:e1:77:aa:dd:d9:4c:02:58:3e:6a:53:
2d:0e:3f:15:72:8c:fa:56:a4:bc:55:cc:24:30:9c:
fc:af:75:0b:54:b3:9f:81:09:60:fe:86:ea:0f:b6:
19:5c:ee:98:3e:df:97:fd:05:01:7e:a9:a3:45:7e:
5e:3b:c2:a5:fd:f2:1f:66:84:cc:59:4b:65:ee:5f:
b6:10:b2:1f:9d:79:31:5a:22:74:3d:7c:e1:b5:b5:
d7:9d:cc:b9:fe:6b:2a:1d:9d:33:73:ab:e4:6c:dd:
5c:d0:0a:29:b5:d3:07:b1:41:a2:bc:0e:0e:68:55:
6c:00:be:29:67:16:11:21:87:c8:7d:8d:4f:a2:d4:
9a:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:A6:17:E3:59:EB:DD:48:AE:A9:C5:90:8A:E4:60:16:44:43:AD:28
X509v3 Authority Key Identifier:
keyid:45:69:31:50:19:64:CD:B8:84:B1:47:5B:56:D6:8F:30:69:C2:2A:F2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36E3941/5818052445D111EE8A5CA6574AD9E6FC/RWkxUBlkzbiEsUdbVtaPMGnCKvI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/RWkxUBlkzbiEsUdbVtaPMGnCKvI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36E3941/5818052445D111EE8A5CA6574AD9E6FC/0C2FE94C570611EEAC1023344AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.221.84.0-102.221.86.255
Signature Algorithm: sha256WithRSAEncryption
6b:0c:7c:e5:26:6e:86:41:53:29:57:a3:fc:08:2d:0f:ec:0a:
ba:5b:11:fb:27:87:e5:5a:a6:12:81:62:1f:35:2f:e5:87:7a:
f8:4d:44:c0:d2:5c:38:2a:e4:17:91:e5:f9:74:ee:f6:7c:61:
52:5f:c2:3f:94:99:d7:7b:5b:52:c7:e5:18:10:b8:2b:a1:ff:
27:38:1f:82:5f:e8:7c:4f:cb:84:bc:67:09:56:7e:c4:e0:5b:
32:90:aa:da:46:ee:18:97:91:7d:c2:e2:de:aa:a4:1d:20:57:
d4:e4:93:72:3d:2e:76:e2:76:51:13:95:7c:74:e5:a0:b3:4a:
44:54:93:ec:30:49:e9:d9:70:a3:78:9f:03:11:8c:cb:21:61:
3f:e6:c2:4c:e4:21:1c:d1:bd:7c:41:56:2b:6b:15:92:49:5d:
be:28:97:f3:6c:05:be:b0:2a:7f:72:b3:f7:08:8a:e7:d3:f9:
00:0c:c6:84:33:0d:e8:de:85:71:b0:fe:dc:23:fb:3c:47:0b:
13:25:d0:87:6e:d0:bf:ba:50:cd:cd:e2:6d:6f:ab:d6:08:62:
18:bc:c2:c8:dd:f2:20:cc:0e:64:22:f2:1e:0a:9f:13:11:5b:
1e:72:d9:26:fa:8e:91:8d:72:9a:30:d5:37:14:26:13:22:dd:
11:f3:56:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 03:53:00 2024 by rpki-client on console-fra.rpki-client.org