Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3614659/6656DE746DF811ECBCC210765A40D577/C922278085DE11ED9DB06694F1222468.roa
File: C922278085DE11ED9DB06694F1222468.roa (raw, json)
Hash identifier: FhumJN5CwE530r8zOWX82tYEMaeuD6cFmalv48v2k0Y=
Subject key identifier: CD:B5:99:72:88:B7:EC:65:3A:CD:5C:A9:FA:E3:DD:72:AD:86:D9:CE
Certificate issuer: /CN=F3614659AF/serialNumber=60A0E5D1AC66C8AE3B7C9E6A8EF5BC04B8BBB88E
Certificate serial: 0234
Authority key identifier: 60:A0:E5:D1:AC:66:C8:AE:3B:7C:9E:6A:8E:F5:BC:04:B8:BB:B8:8E
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/YKDl0axmyK47fJ5qjvW8BLi7uI4.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3614659/6656DE746DF811ECBCC210765A40D577/C922278085DE11ED9DB06694F1222468.roa
Signing time: Tue 27 Dec 2022 12:05:42 +0000
ROA not before: Tue 27 Dec 2022 12:05:38 +0000
ROA not after: Fri 27 Dec 2030 12:05:38 +0000
asID: 328992
IP address blocks: 102.215.224.0/22 maxlen: 22
102.215.228.0/22 maxlen: 22
102.216.80.0/22 maxlen: 22
102.217.104.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3614659/6656DE746DF811ECBCC210765A40D577/YKDl0axmyK47fJ5qjvW8BLi7uI4.crl
rsync://rpki.afrinic.net/repository/member_repository/F3614659/6656DE746DF811ECBCC210765A40D577/YKDl0axmyK47fJ5qjvW8BLi7uI4.mft
rsync://rpki.afrinic.net/repository/afrinic/YKDl0axmyK47fJ5qjvW8BLi7uI4.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 01 May 2024 09:43:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 564 (0x234)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3614659AF/serialNumber=60A0E5D1AC66C8AE3B7C9E6A8EF5BC04B8BBB88E
Validity
Not Before: Dec 27 12:05:38 2022 GMT
Not After : Dec 27 12:05:38 2030 GMT
Subject: CN=63aadf96-5286
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:26:f0:74:b3:06:0a:b1:ac:22:f4:9b:54:24:
f3:8f:7f:3e:43:6f:13:49:67:dc:f3:50:32:e9:43:
55:9c:14:75:36:44:74:72:72:67:8b:2b:d6:7c:99:
42:34:b5:80:7e:5b:1e:73:2b:af:89:c5:b4:ef:23:
83:67:9e:94:4a:69:9e:5c:3a:8b:e2:ae:93:56:ff:
1a:08:21:a7:f9:78:b1:73:f2:b3:e0:d9:47:79:4c:
97:6c:26:f4:c9:32:48:b5:ff:b3:a8:c1:b4:b5:cc:
3f:4f:ac:62:7e:65:58:1a:f9:a9:9c:7b:6a:ef:9b:
dc:bf:40:11:48:e8:d6:2b:6f:e4:10:b4:4c:bd:db:
c2:dc:6f:d4:cc:89:26:94:a2:9e:67:5e:6c:62:76:
fd:13:cd:17:c4:da:77:97:50:29:36:24:67:56:31:
74:ab:34:98:30:ee:44:50:47:15:9d:96:25:eb:d2:
5d:8c:a3:ca:57:7b:c3:9c:1c:97:5e:16:ed:2e:07:
fc:b9:9d:21:1f:7a:60:ff:a9:0c:9a:86:87:83:67:
24:ae:7b:68:82:83:48:26:bf:12:33:18:c2:ad:b4:
0a:70:b9:c5:82:60:2e:44:3f:ed:56:84:b5:8a:eb:
74:fa:94:ab:90:6f:69:80:f7:e3:db:9a:89:a1:5a:
2b:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:B5:99:72:88:B7:EC:65:3A:CD:5C:A9:FA:E3:DD:72:AD:86:D9:CE
X509v3 Authority Key Identifier:
keyid:60:A0:E5:D1:AC:66:C8:AE:3B:7C:9E:6A:8E:F5:BC:04:B8:BB:B8:8E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3614659/6656DE746DF811ECBCC210765A40D577/YKDl0axmyK47fJ5qjvW8BLi7uI4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/YKDl0axmyK47fJ5qjvW8BLi7uI4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3614659/6656DE746DF811ECBCC210765A40D577/C922278085DE11ED9DB06694F1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.215.224.0/21
102.216.80.0/22
102.217.104.0/22
Signature Algorithm: sha256WithRSAEncryption
6d:fb:86:0d:15:1c:9e:4d:82:4f:96:e1:d5:ba:fc:a6:b3:b2:
35:ce:a1:60:d4:ba:aa:ab:22:ac:d3:93:02:e1:fe:22:8e:5d:
e8:42:19:3d:ec:8c:be:98:0d:9d:5e:6f:0e:c9:1a:85:04:58:
ab:ed:3b:ed:ff:b8:84:df:6c:a7:c5:32:46:d9:5e:eb:51:a5:
29:bd:14:b6:de:7a:a8:f9:2b:40:8e:2c:ae:26:38:cc:50:44:
a4:60:94:d5:73:f3:c8:b7:1d:6b:a7:57:35:bb:c1:66:9b:0e:
d1:bc:cc:a2:92:48:7c:7c:92:64:fe:50:ae:c7:70:69:65:3b:
28:c9:cb:aa:a9:c5:86:5b:8d:e3:14:4e:92:0f:bf:53:b3:bd:
58:5e:e9:4d:ba:ce:f9:b0:9f:06:7f:bc:a3:d5:96:81:e0:ba:
72:6c:8f:51:8e:7b:c3:41:4f:d0:be:3b:ef:05:c2:78:d4:fc:
53:81:42:6d:7b:f7:5a:77:e7:15:1b:ea:65:22:ab:fd:8e:97:
fe:61:a5:30:d0:70:dd:dd:ff:aa:56:4b:0b:86:c3:8f:44:6d:
9f:1c:23:f9:7b:5b:98:05:9f:30:6c:fb:d3:fb:da:7f:a9:13:
24:43:fa:af:10:9c:49:4d:f7:bb:62:71:96:32:e8:85:9f:82:
21:48:ce:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 30 03:32:42 2024 by rpki-client on console-fra.rpki-client.org