Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36ECD0F/454938AA130511ED8BBA279CF1222468/28DD93FC132611EDA5E33282F1222468.roa
File: 28DD93FC132611EDA5E33282F1222468.roa (raw, json)
Hash identifier: Zp9OU6g7D2rykwxn2CBB9jRbeI1IDb1Iz30ro3lTYFo=
Subject key identifier: 13:03:0C:8F:17:D6:EE:F4:49:34:6A:02:2E:25:E2:97:35:01:24:C0
Certificate issuer: /CN=F36ECD0FAF/serialNumber=D2E2742AFBD4514C69CF4DEEDBD8BA8E5CD70388
Certificate serial: 06
Authority key identifier: D2:E2:74:2A:FB:D4:51:4C:69:CF:4D:EE:DB:D8:BA:8E:5C:D7:03:88
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/0uJ0KvvUUUxpz03u29i6jlzXA4g.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36ECD0F/454938AA130511ED8BBA279CF1222468/28DD93FC132611EDA5E33282F1222468.roa
Signing time: Wed 03 Aug 2022 12:16:54 +0000
ROA not before: Wed 03 Aug 2022 12:16:49 +0000
ROA not after: Tue 03 Aug 2032 12:16:49 +0000
asID: 329088
IP address blocks: 102.215.68.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36ECD0F/454938AA130511ED8BBA279CF1222468/0uJ0KvvUUUxpz03u29i6jlzXA4g.crl
rsync://rpki.afrinic.net/repository/member_repository/F36ECD0F/454938AA130511ED8BBA279CF1222468/0uJ0KvvUUUxpz03u29i6jlzXA4g.mft
rsync://rpki.afrinic.net/repository/afrinic/0uJ0KvvUUUxpz03u29i6jlzXA4g.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 21 May 2024 00:04:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6 (0x6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36ECD0FAF/serialNumber=D2E2742AFBD4514C69CF4DEEDBD8BA8E5CD70388
Validity
Not Before: Aug 3 12:16:49 2022 GMT
Not After : Aug 3 12:16:49 2032 GMT
Subject: CN=62ea6735-1b6c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:0e:8d:c6:d9:99:5d:f7:2f:10:46:7d:da:34:
69:2f:4c:f6:f0:06:f4:3f:36:dd:1d:39:3a:5e:c7:
10:48:92:4b:39:05:d8:39:7d:81:9d:77:f3:b0:4e:
68:90:7c:21:bf:d8:be:2f:cb:91:c2:f4:8e:b0:c7:
c7:fe:69:2b:5e:ca:92:6f:b1:9d:1b:8a:18:20:69:
f8:56:55:fd:dc:ad:69:13:00:0f:d8:27:de:b7:ef:
8a:6d:b6:73:b6:fd:8a:46:f5:f8:65:28:ca:d8:c9:
17:6b:1b:f9:d1:a9:71:c4:c1:08:c9:6f:cd:1a:2f:
a3:43:50:ab:18:77:da:e7:bd:dd:d6:76:75:24:5c:
c6:99:ab:70:e6:a4:9a:a0:2e:2f:78:a3:84:f6:de:
1b:54:3c:ff:16:23:be:28:9b:63:47:d2:f7:ee:45:
9b:7e:67:b7:98:13:82:b4:a1:ea:e1:48:3f:6c:7c:
0d:9d:47:68:ff:a9:d0:3b:d3:cb:59:59:4d:e5:7f:
0b:75:78:c5:6c:5e:f0:0f:be:f3:ba:5f:79:40:ba:
2c:0c:00:0e:6d:7b:7a:60:ce:a0:12:a4:7e:dc:e1:
5f:67:8b:13:4e:b5:ff:1f:b5:92:7b:74:3f:8d:87:
db:e8:63:3a:ff:85:1c:da:20:d9:79:6f:ec:a6:ce:
7b:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:03:0C:8F:17:D6:EE:F4:49:34:6A:02:2E:25:E2:97:35:01:24:C0
X509v3 Authority Key Identifier:
keyid:D2:E2:74:2A:FB:D4:51:4C:69:CF:4D:EE:DB:D8:BA:8E:5C:D7:03:88
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36ECD0F/454938AA130511ED8BBA279CF1222468/0uJ0KvvUUUxpz03u29i6jlzXA4g.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/0uJ0KvvUUUxpz03u29i6jlzXA4g.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36ECD0F/454938AA130511ED8BBA279CF1222468/28DD93FC132611EDA5E33282F1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.215.68.0/22
Signature Algorithm: sha256WithRSAEncryption
32:56:76:71:31:16:9c:64:0a:a9:14:68:f3:91:b3:b8:75:07:
18:31:f6:01:b9:ad:a0:46:d1:5e:d7:3e:b4:d0:31:66:62:1c:
59:6e:7b:2b:60:0d:b9:5c:f6:90:f1:ad:58:14:d3:fe:9a:ef:
80:6c:85:10:5a:45:dc:83:a3:75:61:09:51:84:6b:e5:ee:9a:
b5:64:55:e3:0f:21:73:7f:92:e8:71:b7:d3:45:41:db:5c:d6:
1e:34:c5:95:19:c3:d3:d4:45:35:04:49:37:a2:38:f8:66:6e:
df:0e:27:93:05:f5:a0:f6:4b:81:10:22:3d:5a:52:4e:8a:34:
01:97:e2:e1:94:ab:e8:c7:31:69:72:9f:3b:b9:26:82:71:8e:
c2:2a:14:c5:63:fc:08:92:57:e0:c7:3b:f3:5d:13:f8:80:98:
c3:23:bd:0b:64:2b:98:f2:4d:02:8c:12:c1:29:62:05:62:06:
7c:8d:7e:3e:6b:3d:ca:35:2b:8e:14:4a:8c:b5:34:d0:9e:01:
40:dc:17:64:8a:b3:e3:91:78:84:e3:85:17:a2:74:19:98:17:
11:77:c4:ac:2e:25:20:2e:2d:93:ea:10:61:27:3b:4f:cd:48:
95:ba:7f:c6:4c:96:77:22:63:45:56:50:e0:23:11:c3:25:55:
e3:78:45:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 19 02:59:03 2024 by rpki-client on console-ams.rpki-client.org