Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3619AFB/CE504C0A9BA511ED9841AEC7F1222468/A8224E009BAC11ED85889BDAF1222468.roa
File: A8224E009BAC11ED85889BDAF1222468.roa (raw, json)
Hash identifier: bhxPv54/zUFovogztkEMR4hFBDitD62wrodHn4H3yf4=
Subject key identifier: BC:04:F7:7B:CB:21:3F:E8:EA:66:99:CB:9A:BF:E2:43:F0:E2:7B:7D
Certificate issuer: /CN=F3619AFBAF/serialNumber=503D1828D4EF0CDC63A58A54F5C0C992D23BC1AA
Certificate serial: 04
Authority key identifier: 50:3D:18:28:D4:EF:0C:DC:63:A5:8A:54:F5:C0:C9:92:D2:3B:C1:AA
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/UD0YKNTvDNxjpYpU9cDJktI7wao.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3619AFB/CE504C0A9BA511ED9841AEC7F1222468/A8224E009BAC11ED85889BDAF1222468.roa
Signing time: Tue 24 Jan 2023 06:02:18 +0000
ROA not before: Tue 24 Jan 2023 06:02:14 +0000
ROA not after: Thu 23 Jan 2025 06:02:14 +0000
asID: 329182
IP address blocks: 102.213.88.0/24 maxlen: 32
2c0f:2980::/34 maxlen: 128
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3619AFB/CE504C0A9BA511ED9841AEC7F1222468/UD0YKNTvDNxjpYpU9cDJktI7wao.crl
rsync://rpki.afrinic.net/repository/member_repository/F3619AFB/CE504C0A9BA511ED9841AEC7F1222468/UD0YKNTvDNxjpYpU9cDJktI7wao.mft
rsync://rpki.afrinic.net/repository/afrinic/UD0YKNTvDNxjpYpU9cDJktI7wao.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4 (0x4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3619AFBAF/serialNumber=503D1828D4EF0CDC63A58A54F5C0C992D23BC1AA
Validity
Not Before: Jan 24 06:02:14 2023 GMT
Not After : Jan 23 06:02:14 2025 GMT
Subject: CN=63cf7469-8904
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:d1:11:d9:c9:3c:4e:65:f6:ee:b5:08:99:27:
c0:13:14:a1:cb:cb:0a:ed:f4:af:ac:01:e7:f7:f2:
9a:7c:eb:a6:cc:2c:2d:33:d7:b7:6d:4f:8a:3f:ce:
a4:64:95:9d:65:ed:31:7f:34:a8:74:41:fc:2a:1b:
3e:16:41:10:bb:a5:97:13:9c:fa:5f:d7:73:3e:79:
9e:6a:76:e8:47:a8:95:68:2c:f3:20:ea:ec:5c:c5:
4d:f2:8a:59:38:32:d6:2e:38:6e:b4:76:e5:46:13:
b2:d6:cb:a5:b7:98:c1:d8:56:32:cb:0c:ab:2e:eb:
ce:8c:09:11:ea:df:1a:a2:1b:c9:4b:0e:3a:06:65:
24:eb:88:4a:86:ce:46:78:19:94:8e:d9:f5:d2:df:
99:a5:e3:4c:c6:ec:a5:0a:d6:a5:ae:99:b1:6d:34:
09:d1:61:9b:dc:c3:29:31:e8:19:fb:59:1d:de:62:
5d:85:aa:8e:31:b1:12:67:98:fc:62:bb:6b:ce:6f:
45:f5:23:bf:8a:a2:f1:3d:6d:cd:bb:b6:9a:c0:fa:
e6:67:7b:35:cd:65:d7:53:9c:f5:9d:ad:dc:38:a3:
c7:3c:32:66:b9:3f:39:7f:63:21:38:23:ca:9a:c7:
18:be:20:a9:40:18:42:b6:8c:e5:cb:67:5c:b1:cc:
ac:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:04:F7:7B:CB:21:3F:E8:EA:66:99:CB:9A:BF:E2:43:F0:E2:7B:7D
X509v3 Authority Key Identifier:
keyid:50:3D:18:28:D4:EF:0C:DC:63:A5:8A:54:F5:C0:C9:92:D2:3B:C1:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3619AFB/CE504C0A9BA511ED9841AEC7F1222468/UD0YKNTvDNxjpYpU9cDJktI7wao.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/UD0YKNTvDNxjpYpU9cDJktI7wao.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3619AFB/CE504C0A9BA511ED9841AEC7F1222468/A8224E009BAC11ED85889BDAF1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.213.88.0/24
IPv6:
2c0f:2980::/34
Signature Algorithm: sha256WithRSAEncryption
74:99:c2:3f:91:a6:c0:20:9e:1d:b5:76:2d:84:16:a0:48:6b:
ec:82:f3:43:60:85:cf:42:3c:ab:96:a0:c0:86:c5:aa:70:f4:
59:4a:90:d6:41:cb:49:01:ae:fe:b1:f1:0d:c0:17:6a:14:97:
36:20:34:54:83:1c:35:bb:ad:a5:c8:c9:1f:4c:e2:43:0f:43:
5b:87:38:cb:af:37:b1:02:64:c1:24:37:90:46:6b:06:12:63:
b7:48:b6:cb:f5:c7:6c:4b:20:f2:17:29:ae:fa:f2:e3:48:87:
dc:c9:11:4f:3c:8d:a8:81:cc:70:5b:0e:80:cd:17:d9:e8:ef:
8f:7c:7b:29:4a:a9:a2:49:0d:71:c7:7f:04:29:77:e8:29:b1:
68:9c:61:f3:cb:24:b1:51:1f:f3:cc:7d:f1:0c:a5:fb:0a:22:
c5:47:d2:ee:0a:a6:56:87:40:8d:48:6a:f4:b9:e4:ea:1c:87:
28:57:ab:61:3e:4e:36:30:48:f5:3f:43:b9:ef:e8:62:4a:9d:
e7:aa:21:78:a7:98:ec:30:57:c0:81:87:4c:ad:c1:2a:04:8c:
8b:cb:6c:57:d2:50:0e:2d:11:39:20:53:33:7c:46:5a:80:23:
ce:8c:3f:65:bc:15:78:56:b3:a6:63:0d:7e:2e:d0:4f:72:9d:
17:11:19:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 03:52:52 2024 by rpki-client on console-fra.rpki-client.org