Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3620ACF/925E2BE6586D11E5AEB55C2FF8AEA228/705E5CA8155611ECA3F1402FD8A014CE.roa
File: 705E5CA8155611ECA3F1402FD8A014CE.roa (raw, json)
Hash identifier: BvaUlhFB8dhvbeBRjwtIRVfG1DlJ/s5hWEEmmbVV+rk=
Subject key identifier: 5F:26:CE:97:72:17:84:CD:8D:FC:3E:E3:A5:D7:80:4E:FD:92:2A:3B
Certificate issuer: /CN=F3620ACFAF/serialNumber=882629895D8DB57B2541EA48FA1126325E29020B
Certificate serial: 08DA
Authority key identifier: 88:26:29:89:5D:8D:B5:7B:25:41:EA:48:FA:11:26:32:5E:29:02:0B
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/iCYpiV2NtXslQepI-hEmMl4pAgs.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3620ACF/925E2BE6586D11E5AEB55C2FF8AEA228/705E5CA8155611ECA3F1402FD8A014CE.roa
Signing time: Tue 14 Sep 2021 12:22:34 +0000
ROA not before: Tue 14 Sep 2021 12:22:30 +0000
ROA not after: Wed 30 Apr 2031 12:22:30 +0000
asID: 327750
IP address blocks: 102.69.248.0/21 maxlen: 21
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3620ACF/925E2BE6586D11E5AEB55C2FF8AEA228/iCYpiV2NtXslQepI-hEmMl4pAgs.crl
rsync://rpki.afrinic.net/repository/member_repository/F3620ACF/925E2BE6586D11E5AEB55C2FF8AEA228/iCYpiV2NtXslQepI-hEmMl4pAgs.mft
rsync://rpki.afrinic.net/repository/afrinic/iCYpiV2NtXslQepI-hEmMl4pAgs.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 29 May 2024 00:04:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2266 (0x8da)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3620ACFAF/serialNumber=882629895D8DB57B2541EA48FA1126325E29020B
Validity
Not Before: Sep 14 12:22:30 2021 GMT
Not After : Apr 30 12:22:30 2031 GMT
Subject: CN=6140940a-63a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:cd:e5:3d:df:b2:a3:5f:84:6b:39:33:4f:46:
b1:f0:dc:ca:30:dd:64:e3:05:78:1c:b1:45:84:28:
06:83:a8:c8:1e:f1:cd:02:1d:8c:1c:77:9f:da:72:
d0:89:a5:b2:04:88:b2:c3:81:92:9b:d2:2a:bc:52:
c3:7c:41:12:b5:f7:3b:80:1c:9f:34:5c:6f:a2:36:
e0:de:6a:4d:f2:9a:54:9c:1f:95:1b:33:ea:a6:28:
8b:46:ed:6a:c2:5c:5e:85:f3:52:f8:58:d0:eb:66:
56:a7:86:3a:5a:62:12:7c:84:3a:bd:2b:13:cc:a3:
e8:24:1d:a0:3d:09:64:2f:af:38:36:3c:10:76:a6:
c4:a5:6a:e9:0f:84:07:69:99:3d:ca:0d:ed:dd:1e:
5f:c8:9f:42:83:be:a7:d4:78:4d:00:5a:92:1e:6d:
4e:a5:46:2f:2c:26:d0:67:11:b7:15:d1:0e:63:5d:
ce:fc:ac:70:96:89:ab:fe:69:57:17:ba:5c:7f:4a:
31:9c:97:6d:2d:7a:ad:d3:5f:27:fb:ca:f8:38:7d:
6b:87:2a:12:fb:98:a7:12:d5:78:15:70:08:ab:64:
c9:81:01:77:50:b4:ef:c4:26:4d:0a:96:c2:73:12:
23:52:88:55:31:57:f2:2e:d4:46:0c:fd:14:4d:f8:
9d:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:26:CE:97:72:17:84:CD:8D:FC:3E:E3:A5:D7:80:4E:FD:92:2A:3B
X509v3 Authority Key Identifier:
keyid:88:26:29:89:5D:8D:B5:7B:25:41:EA:48:FA:11:26:32:5E:29:02:0B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3620ACF/925E2BE6586D11E5AEB55C2FF8AEA228/iCYpiV2NtXslQepI-hEmMl4pAgs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/iCYpiV2NtXslQepI-hEmMl4pAgs.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3620ACF/925E2BE6586D11E5AEB55C2FF8AEA228/705E5CA8155611ECA3F1402FD8A014CE.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.69.248.0/21
Signature Algorithm: sha256WithRSAEncryption
0a:46:5b:15:c0:e9:5d:2b:95:e5:1e:9d:b9:c4:cb:6e:51:67:
81:a5:ba:87:30:7f:b6:dc:00:b3:ec:9a:e5:9e:9d:ec:a6:41:
0e:ee:cb:b9:77:5b:88:52:4c:2c:3e:2c:d8:1c:5c:b1:77:77:
7f:26:19:06:d5:38:84:86:cd:6b:22:3a:e7:dc:7e:89:20:bb:
af:a2:30:89:ab:5d:d7:4c:63:7c:20:b0:69:09:b2:16:24:a0:
b9:2e:5d:3a:f2:30:78:01:0c:e8:e3:72:3b:e1:86:30:cc:77:
b0:ec:84:36:1b:38:53:f2:94:8b:d8:32:41:8e:94:39:0d:ad:
4e:bf:d6:e2:a4:db:1a:45:f3:98:1b:f9:c6:e7:6d:23:ec:70:
8a:ab:ec:36:03:7e:39:ae:37:03:af:74:3c:bc:c5:84:f8:68:
20:ff:b3:38:0e:cd:ef:e4:99:d5:24:58:62:02:3d:fc:d7:c9:
33:c3:13:dc:95:01:03:00:28:b3:3c:e6:41:e8:d0:a5:19:14:
b9:7d:3b:fd:27:fb:59:cd:93:ea:76:e8:94:03:a8:a1:4e:c1:
e7:37:1f:69:0a:77:f6:ba:28:85:6b:e8:45:92:26:e4:7d:94:
77:ad:64:c6:39:14:00:28:bb:e9:69:07:3f:be:d7:15:45:72:
61:a2:1e:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 27 02:28:25 2024 by rpki-client on console-ams.rpki-client.org