Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36EADB7/3C8EB292132011ED9CAE43EEF1222468/8EDD8A98132311EDA5DBA8F8F1222468.roa
File: 8EDD8A98132311EDA5DBA8F8F1222468.roa (raw, json)
Hash identifier: NC2uz7SGVEzPm4cOqmNgoejzxjyFF2dCIW3kwBubs0A=
Subject key identifier: 90:63:30:E3:61:D0:C1:47:56:97:AF:B2:FD:67:66:8A:EC:43:A8:45
Certificate issuer: /CN=F36EADB7AF/serialNumber=5343C38BDF2E49183139A58AC42F116FA99673CD
Certificate serial: 04
Authority key identifier: 53:43:C3:8B:DF:2E:49:18:31:39:A5:8A:C4:2F:11:6F:A9:96:73:CD
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/U0PDi98uSRgxOaWKxC8Rb6mWc80.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36EADB7/3C8EB292132011ED9CAE43EEF1222468/8EDD8A98132311EDA5DBA8F8F1222468.roa
Signing time: Wed 03 Aug 2022 11:58:16 +0000
ROA not before: Wed 03 Aug 2022 11:58:06 +0000
ROA not after: Tue 31 Aug 2032 11:58:06 +0000
asID: 328888
IP address blocks: 102.22.118.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36EADB7/3C8EB292132011ED9CAE43EEF1222468/U0PDi98uSRgxOaWKxC8Rb6mWc80.crl
rsync://rpki.afrinic.net/repository/member_repository/F36EADB7/3C8EB292132011ED9CAE43EEF1222468/U0PDi98uSRgxOaWKxC8Rb6mWc80.mft
rsync://rpki.afrinic.net/repository/afrinic/U0PDi98uSRgxOaWKxC8Rb6mWc80.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4 (0x4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36EADB7AF/serialNumber=5343C38BDF2E49183139A58AC42F116FA99673CD
Validity
Not Before: Aug 3 11:58:06 2022 GMT
Not After : Aug 31 11:58:06 2032 GMT
Subject: CN=62ea62d8-6392
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:14:02:0c:a6:11:16:c9:68:c0:a4:cf:15:dd:
a0:a3:39:0b:41:f5:6a:d3:4d:41:cb:4c:d6:4e:d0:
a1:fa:b4:07:0e:e8:5f:35:6c:95:93:f4:1e:f3:1e:
14:21:53:d8:1d:b6:ec:9e:55:72:7f:69:a3:ba:05:
3f:42:d4:09:a7:79:a9:53:a3:ba:aa:bd:94:19:4a:
d1:7d:2e:0c:61:7d:53:4a:c2:98:74:d7:78:cf:c0:
36:c2:31:ae:4a:d0:47:88:2a:82:16:3e:c2:9f:41:
94:f5:78:43:47:1e:75:6f:fc:da:c9:ba:ae:79:cb:
db:8d:76:9d:eb:e6:67:22:13:24:7d:e7:8e:fd:b0:
b4:df:40:ca:dc:e9:d0:c2:02:ce:4e:77:26:b4:ed:
ce:45:87:25:91:f8:50:2b:04:a9:92:1b:9c:39:c0:
7d:2b:c1:16:fe:b4:3e:6d:50:20:6b:fd:75:ee:eb:
7a:70:68:35:42:a1:21:1d:07:86:02:95:fc:0c:44:
9b:67:70:94:d7:34:93:3b:0f:59:a1:32:9f:74:48:
d3:35:30:66:9c:ce:6d:18:07:6d:f7:6d:00:d3:26:
76:29:2b:75:f6:18:6a:d9:08:0f:a6:11:f4:22:b2:
48:5d:27:a8:f9:04:6e:77:0b:35:f1:82:75:c7:df:
7c:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:63:30:E3:61:D0:C1:47:56:97:AF:B2:FD:67:66:8A:EC:43:A8:45
X509v3 Authority Key Identifier:
keyid:53:43:C3:8B:DF:2E:49:18:31:39:A5:8A:C4:2F:11:6F:A9:96:73:CD
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36EADB7/3C8EB292132011ED9CAE43EEF1222468/U0PDi98uSRgxOaWKxC8Rb6mWc80.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/U0PDi98uSRgxOaWKxC8Rb6mWc80.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36EADB7/3C8EB292132011ED9CAE43EEF1222468/8EDD8A98132311EDA5DBA8F8F1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.22.118.0/24
Signature Algorithm: sha256WithRSAEncryption
18:4a:aa:cc:e5:80:ab:ea:e4:ea:7d:e7:c3:0e:c6:f6:1d:25:
06:b8:e2:88:4a:6f:6c:8b:55:de:08:8b:f0:b8:75:91:3d:9c:
92:41:c6:35:28:0e:60:d7:15:56:ec:f4:a7:b9:a6:07:b4:86:
d7:f3:e6:2f:d5:7c:fa:0e:75:af:62:c6:4e:83:62:ca:f4:ed:
9f:01:c0:23:36:3a:03:fc:e4:5e:df:eb:35:a9:73:f6:7a:ea:
7c:8a:64:95:c6:6a:8b:0f:ad:2f:ad:4d:82:26:01:cc:df:a6:
e0:10:3f:6d:f8:48:a4:b6:b6:f8:a4:dd:de:03:a1:83:4a:d1:
88:dc:f3:5d:34:f5:a7:5e:6c:df:22:b7:65:d1:3d:e9:c9:6a:
d7:27:40:03:df:66:8d:6a:cc:83:88:f7:49:57:cb:65:87:c4:
94:b8:31:72:32:78:ad:7c:08:ce:1d:13:40:fa:db:54:c2:a3:
d7:3a:2f:43:fb:37:3c:27:1d:93:5c:f7:48:5d:34:c5:24:b5:
73:b5:e4:9f:44:9c:51:c8:76:b9:e2:47:01:d8:ef:9d:6d:e6:
b0:b6:3c:5b:76:3d:62:d5:97:94:18:72:e9:8b:52:88:50:39:
c8:42:2d:0f:1c:c1:ad:77:c9:b8:49:76:0d:84:04:fd:08:ac:
59:f5:91:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 03:53:00 2024 by rpki-client on console-fra.rpki-client.org