Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36ECAA2/53AE1EDCA60911ED9422C1B9F1222468/22934508A60D11EDB81041C4F1222468.roa
File: 22934508A60D11EDB81041C4F1222468.roa (raw, json)
Hash identifier: iIIKmZv0hW8wlHoV6xZsUe6KFdRjuYNOIqMfAgHd9Rk=
Subject key identifier: 74:F5:49:2D:15:79:F0:44:74:E1:BE:A3:6D:68:8C:79:60:00:83:1F
Certificate issuer: /CN=F36ECAA2AF/serialNumber=833D4A24E39CDC942CBC5782541B81D4DD96AEA8
Certificate serial: 05
Authority key identifier: 83:3D:4A:24:E3:9C:DC:94:2C:BC:57:82:54:1B:81:D4:DD:96:AE:A8
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/gz1KJOOc3JQsvFeCVBuB1N2Wrqg.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36ECAA2/53AE1EDCA60911ED9422C1B9F1222468/22934508A60D11EDB81041C4F1222468.roa
Signing time: Mon 06 Feb 2023 10:58:06 +0000
ROA not before: Mon 06 Feb 2023 10:58:03 +0000
ROA not after: Tue 01 Feb 2028 10:58:03 +0000
asID: 29286
IP address blocks: 102.213.86.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36ECAA2/53AE1EDCA60911ED9422C1B9F1222468/gz1KJOOc3JQsvFeCVBuB1N2Wrqg.crl
rsync://rpki.afrinic.net/repository/member_repository/F36ECAA2/53AE1EDCA60911ED9422C1B9F1222468/gz1KJOOc3JQsvFeCVBuB1N2Wrqg.mft
rsync://rpki.afrinic.net/repository/afrinic/gz1KJOOc3JQsvFeCVBuB1N2Wrqg.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 06 May 2024 00:04:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5 (0x5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36ECAA2AF/serialNumber=833D4A24E39CDC942CBC5782541B81D4DD96AEA8
Validity
Not Before: Feb 6 10:58:03 2023 GMT
Not After : Feb 1 10:58:03 2028 GMT
Subject: CN=63e0dd3e-161a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:1d:09:f7:53:e3:37:eb:a4:83:76:81:7b:69:
c1:7c:4c:e3:48:49:e1:d0:6e:1d:60:05:05:e5:a7:
a2:a0:5f:ce:d2:a3:18:3b:43:f3:71:58:ac:2c:a0:
0e:e0:76:b0:28:6a:e2:1c:58:a1:48:32:5e:bd:b9:
e0:e8:bd:c5:c2:b3:87:4d:a3:c7:1c:81:57:84:68:
09:30:2d:9e:04:62:5f:bc:25:09:b3:31:2b:01:ce:
26:48:d6:0f:53:dd:11:6f:da:6a:92:ac:5f:22:4a:
03:43:fa:5b:88:0a:90:24:e3:af:1f:13:59:3a:66:
c9:6c:8e:c7:b0:6f:b3:6f:99:77:86:24:a5:5b:2f:
42:3d:1b:0e:6c:fd:20:a4:38:7f:74:7c:e3:43:b6:
6a:55:59:3e:13:0d:1e:3e:31:66:e4:82:65:85:0f:
1d:5e:d5:1e:c4:c6:39:a5:fa:30:46:60:3f:9c:9c:
cd:a5:b5:ee:c2:06:8d:26:7e:39:ba:12:6c:42:46:
45:eb:d9:39:0d:83:1e:37:c3:be:01:49:98:fe:00:
9d:f1:b1:25:c2:eb:4d:34:37:f3:55:db:24:12:2b:
9c:f1:a0:5b:b5:03:53:d3:06:63:c9:6f:b2:cc:49:
5a:bd:d8:51:64:0c:1e:2c:af:31:7c:f6:9d:44:c6:
95:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:F5:49:2D:15:79:F0:44:74:E1:BE:A3:6D:68:8C:79:60:00:83:1F
X509v3 Authority Key Identifier:
keyid:83:3D:4A:24:E3:9C:DC:94:2C:BC:57:82:54:1B:81:D4:DD:96:AE:A8
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36ECAA2/53AE1EDCA60911ED9422C1B9F1222468/gz1KJOOc3JQsvFeCVBuB1N2Wrqg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/gz1KJOOc3JQsvFeCVBuB1N2Wrqg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36ECAA2/53AE1EDCA60911ED9422C1B9F1222468/22934508A60D11EDB81041C4F1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.213.86.0/24
Signature Algorithm: sha256WithRSAEncryption
7e:c3:9b:01:c1:14:d8:3b:e9:9c:3d:b3:d1:9b:0d:8b:92:c8:
4b:a4:03:70:c5:32:6c:77:23:5f:62:81:12:48:10:a9:ab:c8:
db:d4:b3:da:78:6d:0c:1f:40:4e:c7:c4:bd:d9:87:fc:50:06:
c0:28:41:62:4c:83:31:f2:d9:51:07:82:23:96:99:e9:8e:24:
5e:41:8a:a1:3c:a5:33:f2:7b:db:2f:87:36:33:48:24:de:9c:
5c:00:98:ce:72:9b:c5:6c:e5:73:76:e6:a0:fb:cb:72:ac:a2:
be:78:3b:b6:ba:0b:f5:8c:b5:eb:a8:ef:3a:04:bc:4e:8d:c4:
0b:72:49:f9:f1:ed:a0:76:b7:d6:a0:3c:57:a8:56:8a:37:a2:
e6:36:07:78:b9:c0:12:3a:b8:90:4b:d1:8e:d7:a7:a6:9b:f8:
7f:77:19:d4:4e:53:a0:a7:24:1d:31:08:ec:b7:83:71:23:1f:
44:e4:46:2d:74:50:a9:e3:a4:48:69:56:89:12:0d:36:2f:61:
a4:82:6a:10:be:aa:d8:1f:9a:eb:27:ca:94:e4:76:d8:e6:11:
b2:08:ed:9d:cd:e0:a8:f6:6b:16:4d:64:6d:81:3e:22:ae:e1:
26:61:b3:2d:dd:b3:6e:a5:5b:f4:30:8d:25:69:39:77:11:59:
b1:c9:ae:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 4 03:56:08 2024 by rpki-client on console-fra.rpki-client.org