Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36F505D/1FB1B4B0EE5F11EDA8219C5A4AD9E6FC/4880939CC4DE11EE95672478775412E6.roa
File: 4880939CC4DE11EE95672478775412E6.roa (raw, json)
Hash identifier: F2e0hzbOK6HYaj0QzfpPWideNdPZ8IN39pRD4AiYXOM=
Subject key identifier: 80:A5:66:A8:AF:A7:B6:61:B7:95:C9:6E:11:AF:31:06:17:9A:38:89
Certificate issuer: /CN=F36F505DAF/serialNumber=1DDB8E931F57A92817649830C4ED8ADD74EF49F9
Certificate serial: 0124
Authority key identifier: 1D:DB:8E:93:1F:57:A9:28:17:64:98:30:C4:ED:8A:DD:74:EF:49:F9
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/HduOkx9XqSgXZJgwxO2K3XTvSfk.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36F505D/1FB1B4B0EE5F11EDA8219C5A4AD9E6FC/4880939CC4DE11EE95672478775412E6.roa
Signing time: Tue 06 Feb 2024 10:55:47 +0000
ROA not before: Tue 06 Feb 2024 10:55:44 +0000
ROA not after: Sun 29 Feb 2032 10:55:44 +0000
asID: 329243
IP address blocks: 102.212.44.0/22 maxlen: 24
2c0f:240::/32 maxlen: 64
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36F505D/1FB1B4B0EE5F11EDA8219C5A4AD9E6FC/HduOkx9XqSgXZJgwxO2K3XTvSfk.crl
rsync://rpki.afrinic.net/repository/member_repository/F36F505D/1FB1B4B0EE5F11EDA8219C5A4AD9E6FC/HduOkx9XqSgXZJgwxO2K3XTvSfk.mft
rsync://rpki.afrinic.net/repository/afrinic/HduOkx9XqSgXZJgwxO2K3XTvSfk.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 27 Nov 2024 00:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 292 (0x124)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36F505DAF/serialNumber=1DDB8E931F57A92817649830C4ED8ADD74EF49F9
Validity
Not Before: Feb 6 10:55:44 2024 GMT
Not After : Feb 29 10:55:44 2032 GMT
Subject: CN=65c21033-5d14
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:77:04:87:7a:b4:e5:7b:19:39:f4:01:75:53:
f8:b6:07:39:16:b3:58:6a:c5:30:0b:23:76:0b:10:
53:70:25:4c:23:1c:c0:c5:ed:e5:93:73:01:96:0d:
5d:85:f6:5f:c8:7a:e3:5e:c1:8f:11:5d:eb:f6:85:
74:68:ff:d6:84:f7:26:cd:c3:91:96:32:4f:88:c4:
1e:f7:83:d9:5b:e8:26:be:6f:a9:32:1b:c0:bf:f2:
63:f7:96:55:8b:e3:b2:c3:6e:a4:da:fe:7a:db:cf:
a5:af:50:35:75:06:f7:2a:93:c1:b7:53:0d:b7:19:
6a:4a:a8:d6:b4:a0:b9:51:11:fe:31:08:00:72:39:
9d:0a:1e:ee:a7:61:54:23:a8:a6:c3:66:ed:08:d9:
b6:2e:9f:3c:9b:ed:ec:c7:15:ee:cb:4b:75:1a:a0:
36:bb:05:6e:25:21:2d:09:6d:9e:70:b7:7e:4b:c6:
c2:c7:2a:ec:3d:61:1d:0b:16:86:01:6d:c3:39:67:
94:86:b3:0f:44:8f:ec:fe:bb:e8:34:78:d5:ba:75:
65:19:1d:02:d4:6e:95:de:f6:40:20:af:1e:b0:39:
c1:d3:57:e1:91:38:18:1a:5f:78:a8:df:3e:d6:b2:
6b:0e:b7:59:68:ec:0b:94:07:b5:3b:44:ea:be:51:
77:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:A5:66:A8:AF:A7:B6:61:B7:95:C9:6E:11:AF:31:06:17:9A:38:89
X509v3 Authority Key Identifier:
keyid:1D:DB:8E:93:1F:57:A9:28:17:64:98:30:C4:ED:8A:DD:74:EF:49:F9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36F505D/1FB1B4B0EE5F11EDA8219C5A4AD9E6FC/HduOkx9XqSgXZJgwxO2K3XTvSfk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/HduOkx9XqSgXZJgwxO2K3XTvSfk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36F505D/1FB1B4B0EE5F11EDA8219C5A4AD9E6FC/4880939CC4DE11EE95672478775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.212.44.0/22
IPv6:
2c0f:240::/32
Signature Algorithm: sha256WithRSAEncryption
b5:ac:29:d8:83:c3:b9:47:17:95:11:15:d6:cd:5f:51:c0:9a:
11:ea:76:47:69:9a:4b:01:ca:02:fb:4c:a6:c9:17:41:80:60:
75:27:e7:10:9d:c4:57:3e:f2:9f:06:26:b8:f3:87:a1:b0:12:
f7:fb:68:95:d8:c2:bd:94:36:e6:d9:07:23:b7:00:74:da:23:
d8:a4:05:79:b2:e9:7f:b4:08:56:85:93:38:9d:19:90:df:d6:
27:b1:04:66:2f:d7:12:be:97:86:82:68:b9:ab:9e:51:fc:c6:
fe:dc:eb:6c:42:f4:97:f8:e5:04:36:f6:59:f1:ff:48:a9:d5:
a2:a5:e9:cf:57:be:7f:55:18:48:cd:c6:22:1d:4c:78:3a:c4:
32:bb:4d:23:ab:7e:94:09:29:37:22:98:06:7c:4b:5c:ed:a4:
b5:61:8a:75:62:51:e7:ea:e2:6c:46:9a:f8:11:bf:ff:c2:fd:
9a:c8:c6:8d:84:63:a4:5f:1f:05:ba:fe:8e:98:01:3a:61:e1:
b0:62:8c:16:ca:09:58:e9:27:4b:32:c1:49:73:13:01:f4:9e:
53:ec:1b:83:95:3c:78:bc:a1:4a:64:9d:07:38:84:84:88:3e:
a7:e8:9e:96:42:60:7c:b3:0f:e9:8f:4e:d4:34:02:0d:39:fc:
56:9c:ee:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 04:54:27 2024 by rpki-client on console-fra.rpki-client.org