Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3614DFD/9187C5D4776711EE99DFD9724AD9E6FC/40F84818776811EEA27107754AD9E6FC.roa
File: 40F84818776811EEA27107754AD9E6FC.roa (raw, json)
Hash identifier: nFqZ/v55EZimpFy2xDwmiE1oDV8eSlURy0csO3fvt1E=
Subject key identifier: 11:93:14:AF:A5:50:68:AB:5C:81:08:01:40:E3:9F:FB:55:B5:C9:5D
Certificate issuer: /CN=F3614DFDAF/serialNumber=3CE74AC525ABC9B505131E56D3AF4BAA0CA86BC7
Certificate serial: 05
Authority key identifier: 3C:E7:4A:C5:25:AB:C9:B5:05:13:1E:56:D3:AF:4B:AA:0C:A8:6B:C7
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/POdKxSWrybUFEx5W069Lqgyoa8c.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3614DFD/9187C5D4776711EE99DFD9724AD9E6FC/40F84818776811EEA27107754AD9E6FC.roa
Signing time: Mon 30 Oct 2023 21:06:54 +0000
ROA not before: Mon 30 Oct 2023 21:06:51 +0000
ROA not after: Tue 31 Dec 2030 21:06:51 +0000
asID: 37738
IP address blocks: 102.210.212.0/24 maxlen: 24
102.210.213.0/24 maxlen: 24
102.210.214.0/24 maxlen: 24
102.210.215.0/24 maxlen: 24
2c0f:5f40::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3614DFD/9187C5D4776711EE99DFD9724AD9E6FC/POdKxSWrybUFEx5W069Lqgyoa8c.crl
rsync://rpki.afrinic.net/repository/member_repository/F3614DFD/9187C5D4776711EE99DFD9724AD9E6FC/POdKxSWrybUFEx5W069Lqgyoa8c.mft
rsync://rpki.afrinic.net/repository/afrinic/POdKxSWrybUFEx5W069Lqgyoa8c.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5 (0x5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3614DFDAF/serialNumber=3CE74AC525ABC9B505131E56D3AF4BAA0CA86BC7
Validity
Not Before: Oct 30 21:06:51 2023 GMT
Not After : Dec 31 21:06:51 2030 GMT
Subject: CN=65401aee-78b2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:81:c6:30:09:92:e9:a1:14:04:48:ef:7a:bb:
82:77:95:ff:ec:c3:a5:e7:70:6f:a5:af:0b:6d:29:
a1:55:b1:f2:8f:68:11:8f:4d:87:99:d3:74:02:12:
8c:cb:97:e6:78:a8:7a:78:91:0a:54:90:80:18:2c:
75:62:d6:67:50:73:9b:fd:ca:51:76:13:a9:02:b8:
c7:e7:11:06:1b:e7:93:70:4a:b2:e0:6b:d2:85:bb:
91:46:ef:41:e7:44:43:5f:4b:9b:c4:a8:28:10:be:
08:ac:f2:99:4f:f1:bb:a0:4c:47:5f:b1:45:f5:b6:
a4:c7:f9:a3:dd:ab:a2:4c:8b:e2:19:8a:fa:9c:62:
c5:b4:ee:07:04:a3:5f:ab:2d:f1:5f:fe:7f:bd:80:
d5:16:b7:dd:6e:03:b0:d8:e3:93:9e:87:df:be:46:
d7:b4:c8:f0:81:04:f9:3d:7b:a1:67:83:da:38:0d:
d3:ba:60:8e:be:34:be:67:cb:c2:01:35:84:34:fb:
ea:fa:0c:db:e9:2f:cd:fb:15:57:3c:7f:af:5e:30:
a7:58:ed:ca:7a:6c:89:33:d0:9c:a7:2d:aa:c1:a8:
df:75:f3:52:3d:76:82:45:c9:3f:b8:51:51:2b:c1:
83:d7:e6:a4:20:28:ba:82:d6:fd:92:07:47:fc:16:
8d:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:93:14:AF:A5:50:68:AB:5C:81:08:01:40:E3:9F:FB:55:B5:C9:5D
X509v3 Authority Key Identifier:
keyid:3C:E7:4A:C5:25:AB:C9:B5:05:13:1E:56:D3:AF:4B:AA:0C:A8:6B:C7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3614DFD/9187C5D4776711EE99DFD9724AD9E6FC/POdKxSWrybUFEx5W069Lqgyoa8c.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/POdKxSWrybUFEx5W069Lqgyoa8c.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3614DFD/9187C5D4776711EE99DFD9724AD9E6FC/40F84818776811EEA27107754AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.210.212.0/22
IPv6:
2c0f:5f40::/32
Signature Algorithm: sha256WithRSAEncryption
2b:c9:45:db:25:07:4c:56:e2:dd:66:40:ac:e9:23:42:51:47:
5d:6b:f2:cd:24:53:45:48:a1:b4:12:0f:0b:bf:90:1b:f9:31:
61:f6:cd:2c:42:27:e7:3b:93:96:7b:c9:b8:e7:2e:ea:8f:9f:
0e:ca:a8:78:a7:f6:1b:e4:72:0a:cc:a0:c8:d6:a4:f4:93:59:
c4:5d:73:95:10:29:38:80:a7:5e:66:71:b7:d7:50:b3:f2:99:
73:5d:6f:1d:b8:f8:4c:ae:c1:c7:62:fc:a5:56:fa:c6:84:a2:
8f:dc:cb:0c:cb:84:44:a8:e7:66:bc:1e:6c:5f:32:03:70:71:
55:bc:28:71:f5:e3:87:14:e7:85:9a:5c:62:8e:4a:66:d6:c5:
62:e1:fe:4c:03:f0:68:75:26:9a:e3:95:aa:18:00:e0:4a:01:
4b:16:eb:39:b4:9f:08:40:c2:cd:8b:c3:f4:f2:4a:f7:e0:bb:
81:2b:8b:1e:b3:7b:11:36:e0:20:49:a8:9f:07:94:8f:8c:9c:
6f:9a:5e:6b:83:cd:1b:74:99:4a:87:13:5a:fa:20:c2:39:ab:
ba:dc:1b:8f:3b:c4:51:49:cf:19:a9:18:8c:46:ae:e2:24:21:
27:04:b2:46:4d:03:4d:07:1a:3e:00:34:82:4e:09:24:a2:b1:
f6:c2:fc:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:03:30 2024 by rpki-client on console-ams.rpki-client.org