Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36E61B7/AA88E506734611E98799801FF8AEA228/02D94732CD3911EDB44730E4F1222468.roa
File: 02D94732CD3911EDB44730E4F1222468.roa (raw, json)
Hash identifier: hdUJSRvpanPiNqPIFPGVK06JZp+d865/mAWTIg6oHiI=
Subject key identifier: DC:91:4B:B5:42:76:67:BC:4A:2B:EE:45:1B:31:AD:EB:48:14:47:DB
Certificate issuer: /CN=F36E61B7AF/serialNumber=4376A562D4DD84D4D68922632EB0BB342A6ADA6A
Certificate serial: 05AE
Authority key identifier: 43:76:A5:62:D4:DD:84:D4:D6:89:22:63:2E:B0:BB:34:2A:6A:DA:6A
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/Q3alYtTdhNTWiSJjLrC7NCpq2mo.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36E61B7/AA88E506734611E98799801FF8AEA228/02D94732CD3911EDB44730E4F1222468.roa
Signing time: Tue 28 Mar 2023 07:20:26 +0000
ROA not before: Tue 28 Mar 2023 07:20:22 +0000
ROA not after: Mon 28 Mar 2033 07:20:22 +0000
asID: 328461
IP address blocks: 102.68.2.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36E61B7/AA88E506734611E98799801FF8AEA228/Q3alYtTdhNTWiSJjLrC7NCpq2mo.crl
rsync://rpki.afrinic.net/repository/member_repository/F36E61B7/AA88E506734611E98799801FF8AEA228/Q3alYtTdhNTWiSJjLrC7NCpq2mo.mft
rsync://rpki.afrinic.net/repository/afrinic/Q3alYtTdhNTWiSJjLrC7NCpq2mo.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 22 May 2024 00:05:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1454 (0x5ae)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36E61B7AF/serialNumber=4376A562D4DD84D4D68922632EB0BB342A6ADA6A
Validity
Not Before: Mar 28 07:20:22 2023 GMT
Not After : Mar 28 07:20:22 2033 GMT
Subject: CN=6422953a-82c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:80:2c:13:c7:f1:7d:c8:e7:ce:33:3e:28:22:
83:9c:99:78:34:29:70:73:8e:2e:9b:40:1e:5c:85:
1f:bb:7a:34:02:e0:87:e3:f1:ad:a0:44:30:52:93:
9b:ad:eb:4c:ed:33:a5:a7:d6:20:97:8d:0f:cc:35:
9e:ab:42:28:14:89:ac:3b:65:d0:a1:a5:d9:02:f1:
ad:26:19:a7:68:78:2b:33:3c:49:1d:2f:7f:85:ef:
92:1b:03:1b:d5:69:22:2f:81:d8:27:b8:3f:3e:fc:
27:53:f6:0f:dd:46:b0:45:25:b5:a2:8a:1f:db:9e:
e1:54:a2:1e:d7:ae:22:ae:a2:80:e5:d6:38:98:1e:
70:98:ba:44:7f:2e:9f:5f:0d:63:7a:08:64:02:ab:
d3:dc:e3:15:a2:cb:38:1a:b4:3a:1c:22:77:5b:13:
51:fe:a6:a7:d9:d8:0f:2f:c9:51:3f:4a:d5:30:93:
82:1b:0d:44:00:d0:00:32:a2:76:d0:ca:42:3b:e0:
3e:a5:bd:d4:72:21:00:f3:53:1e:e2:32:39:1b:db:
91:a3:be:b4:bf:d4:83:5a:ef:6f:60:99:ff:73:42:
90:c3:8b:51:75:f7:5c:53:15:4f:23:9e:bd:49:1d:
0a:3e:8c:af:b5:23:19:ba:03:a5:55:45:62:2f:83:
7f:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:91:4B:B5:42:76:67:BC:4A:2B:EE:45:1B:31:AD:EB:48:14:47:DB
X509v3 Authority Key Identifier:
keyid:43:76:A5:62:D4:DD:84:D4:D6:89:22:63:2E:B0:BB:34:2A:6A:DA:6A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36E61B7/AA88E506734611E98799801FF8AEA228/Q3alYtTdhNTWiSJjLrC7NCpq2mo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/Q3alYtTdhNTWiSJjLrC7NCpq2mo.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36E61B7/AA88E506734611E98799801FF8AEA228/02D94732CD3911EDB44730E4F1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.68.2.0/23
Signature Algorithm: sha256WithRSAEncryption
55:c1:fa:10:22:49:21:90:2d:95:9b:bd:9e:e8:34:9e:af:8c:
24:eb:6a:f5:47:d1:55:a2:fa:5d:84:b8:c0:a1:91:3e:79:88:
18:0b:11:58:c3:5c:e5:5f:a6:29:18:1f:7e:04:e4:73:85:5d:
bf:99:72:16:17:f4:aa:f2:84:8e:05:65:a6:b7:d8:d8:45:84:
ba:91:4b:9d:a3:aa:7f:e7:da:3a:53:5b:e6:f2:7b:0e:e0:ec:
0b:81:b6:7d:4e:35:39:b2:39:62:d2:c3:fb:77:aa:07:ea:0a:
bb:c6:9f:b1:9f:d7:57:cc:9d:1e:d4:72:7f:81:85:b7:e2:b4:
ad:f9:09:a4:49:d0:10:aa:d4:ef:82:20:b3:9c:68:d8:15:cb:
e9:a5:53:d3:7a:f1:26:e7:93:e1:93:41:96:9d:96:1c:d2:b5:
fc:57:d6:13:9d:77:14:ab:6b:d1:85:b2:e9:4a:26:78:d4:a5:
7a:e0:54:bc:25:1c:d1:11:4e:7b:47:10:66:1a:03:c6:8c:5f:
57:28:66:7f:cf:ae:72:bf:88:67:45:b3:2a:c1:08:d4:7d:0e:
92:f5:15:1b:ae:17:e0:eb:67:9d:3a:51:3c:b6:0f:78:a1:1e:
0d:2c:ed:c8:cb:52:a7:de:9f:04:2e:8d:fa:e1:b1:dd:2e:f7:
9c:12:9f:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 20 02:38:22 2024 by rpki-client on console-fra.rpki-client.org