Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36F0163/885DC644FC9A11E98179B23DF8AEA228/38D7B3B4FC9F11E9A4E33B41F8AEA228.roa
File: 38D7B3B4FC9F11E9A4E33B41F8AEA228.roa (raw, json)
Hash identifier: nNsbmr9/5pRB8Y6AFAqdxecPNFhdqNuMc+kOEEeB4Yk=
Subject key identifier: 2F:27:3C:FD:E8:0D:71:13:CD:15:13:22:CE:32:A8:DD:27:84:A9:BF
Certificate issuer: /CN=F36F0163AF/serialNumber=39D030AE0AFAC6912B0B133FF7A342F784D0EA8C
Certificate serial: 08
Authority key identifier: 39:D0:30:AE:0A:FA:C6:91:2B:0B:13:3F:F7:A3:42:F7:84:D0:EA:8C
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/OdAwrgr6xpErCxM_96NC94TQ6ow.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36F0163/885DC644FC9A11E98179B23DF8AEA228/38D7B3B4FC9F11E9A4E33B41F8AEA228.roa
Signing time: Fri 01 Nov 2019 12:00:40 +0000
ROA not before: Fri 01 Nov 2019 12:00:34 +0000
ROA not after: Thu 01 Nov 2029 12:00:34 +0000
asID: 37682
IP address blocks: 102.176.244.0/24 maxlen: 24
102.176.245.0/24 maxlen: 24
102.176.246.0/24 maxlen: 24
102.176.247.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36F0163/885DC644FC9A11E98179B23DF8AEA228/OdAwrgr6xpErCxM_96NC94TQ6ow.crl
rsync://rpki.afrinic.net/repository/member_repository/F36F0163/885DC644FC9A11E98179B23DF8AEA228/OdAwrgr6xpErCxM_96NC94TQ6ow.mft
rsync://rpki.afrinic.net/repository/afrinic/OdAwrgr6xpErCxM_96NC94TQ6ow.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 17 May 2024 00:05:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8 (0x8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36F0163AF/serialNumber=39D030AE0AFAC6912B0B133FF7A342F784D0EA8C
Validity
Not Before: Nov 1 12:00:34 2019 GMT
Not After : Nov 1 12:00:34 2029 GMT
Subject: CN=5dbc1e68-9aa5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f7:eb:69:6e:5c:87:df:2d:6a:f9:6c:8e:1f:7c:
7f:dd:44:a0:b3:f9:fc:db:da:00:6a:14:60:4c:8d:
06:10:37:3d:46:7c:51:92:7f:cd:4f:9a:df:5b:16:
40:81:3c:95:80:10:c7:2c:9c:b6:a9:20:2a:82:8e:
fe:66:ee:08:15:fe:db:19:e8:3b:5c:de:7f:6a:5f:
2d:19:f6:6a:5c:cf:ca:e0:2f:2f:6b:58:75:86:3e:
41:d4:90:b1:35:14:8b:04:be:c1:8c:17:fc:32:f6:
0b:1e:6e:7c:a1:b5:54:ec:fc:3f:c2:13:3b:16:44:
61:b4:64:88:b5:2b:54:41:e0:9c:38:77:7a:e2:5e:
ab:98:06:12:cd:10:e8:97:5c:68:8a:a5:0b:9a:03:
04:2c:1f:9e:ca:3c:cf:78:da:46:1f:e4:2c:ad:1b:
a3:59:57:01:98:3f:1d:f4:e5:02:0f:72:c2:81:8b:
f5:bb:75:8d:54:87:8c:77:ea:e0:92:c0:fe:5e:80:
08:c3:b4:e8:15:17:12:42:8d:49:1e:7b:6f:c2:96:
2f:7b:25:34:22:46:48:12:15:f8:d8:cd:c6:f6:b2:
cb:e6:33:18:c3:4c:35:fb:15:16:09:3c:89:fc:e2:
37:05:56:5a:40:0f:9f:da:54:f3:d3:30:2c:7e:48:
02:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:27:3C:FD:E8:0D:71:13:CD:15:13:22:CE:32:A8:DD:27:84:A9:BF
X509v3 Authority Key Identifier:
keyid:39:D0:30:AE:0A:FA:C6:91:2B:0B:13:3F:F7:A3:42:F7:84:D0:EA:8C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36F0163/885DC644FC9A11E98179B23DF8AEA228/OdAwrgr6xpErCxM_96NC94TQ6ow.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/OdAwrgr6xpErCxM_96NC94TQ6ow.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36F0163/885DC644FC9A11E98179B23DF8AEA228/38D7B3B4FC9F11E9A4E33B41F8AEA228.roa
sbgp-ipAddrBlock: critical
IPv4:
102.176.244.0/22
Signature Algorithm: sha256WithRSAEncryption
7b:7e:c7:df:3d:92:c4:34:e4:65:bf:3a:33:e7:99:b8:6c:02:
60:03:4d:3c:91:49:a5:c8:a2:9d:f5:fe:7e:71:1c:6f:df:ab:
10:b0:1a:23:a0:da:99:99:22:0d:cc:1d:b0:15:aa:43:eb:47:
6c:1c:3a:82:92:51:56:e5:13:23:a2:a7:7e:97:8b:89:ff:78:
83:01:72:01:34:8f:b5:92:22:aa:5c:3d:c7:e2:25:4a:4b:85:
39:17:a3:cf:ac:df:eb:21:d5:31:cf:da:f2:fa:d5:bd:0e:20:
f5:05:a6:ab:e5:f1:47:5c:84:f3:20:0b:f7:85:bc:82:db:60:
55:66:0f:86:61:4a:3e:44:5e:13:4d:70:43:e1:58:11:a3:10:
e5:63:e0:fe:85:9b:0f:9d:07:f1:2c:9e:e1:aa:88:0f:6f:ea:
8f:4c:64:1b:4a:a6:f1:62:6a:0d:eb:ca:65:81:87:35:b5:4b:
43:52:a4:71:7d:3d:7f:8f:79:b9:5d:3b:49:04:ad:3a:88:a1:
f5:4c:9e:fa:eb:79:8f:ce:22:ca:2b:fe:13:ca:5e:f5:72:56:
57:37:5a:91:5f:e4:1a:62:28:49:ec:47:4f:40:1b:25:c1:ca:
2a:22:87:76:01:a8:9a:22:61:82:9f:9d:40:27:cb:06:16:39:
dc:36:d2:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 15 03:49:52 2024 by rpki-client on console-fra.rpki-client.org