Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3621C06/58C9B78C205911EC991B6877D8A014CE/8D6B78EC5CFF11EEA03853504AD9E6FC.roa
File: 8D6B78EC5CFF11EEA03853504AD9E6FC.roa (raw, json)
Hash identifier: N2EcD3kdSdMQj5/9reT3f9eObU8HLxcgDqJJWyRBPgs=
Subject key identifier: 1F:5A:F4:58:C9:79:BA:1B:39:7C:F3:EB:18:C8:31:B1:0B:1A:FB:1A
Certificate issuer: /CN=F3621C06AF/serialNumber=1DD16FD68BFF7CAB1AB91C55DA61FC0CDFF41743
Certificate serial: 0318
Authority key identifier: 1D:D1:6F:D6:8B:FF:7C:AB:1A:B9:1C:55:DA:61:FC:0C:DF:F4:17:43
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/HdFv1ov_fKsauRxV2mH8DN_0F0M.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3621C06/58C9B78C205911EC991B6877D8A014CE/8D6B78EC5CFF11EEA03853504AD9E6FC.roa
Signing time: Wed 27 Sep 2023 06:31:55 +0000
ROA not before: Wed 27 Sep 2023 06:31:52 +0000
ROA not after: Tue 30 Sep 2025 06:31:52 +0000
asID: 328327
IP address blocks: 102.140.64.0/20 maxlen: 24
2c0f:c00::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3621C06/58C9B78C205911EC991B6877D8A014CE/HdFv1ov_fKsauRxV2mH8DN_0F0M.crl
rsync://rpki.afrinic.net/repository/member_repository/F3621C06/58C9B78C205911EC991B6877D8A014CE/HdFv1ov_fKsauRxV2mH8DN_0F0M.mft
rsync://rpki.afrinic.net/repository/afrinic/HdFv1ov_fKsauRxV2mH8DN_0F0M.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 30 Apr 2024 00:04:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 792 (0x318)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3621C06AF/serialNumber=1DD16FD68BFF7CAB1AB91C55DA61FC0CDFF41743
Validity
Not Before: Sep 27 06:31:52 2023 GMT
Not After : Sep 30 06:31:52 2025 GMT
Subject: CN=6513cc5b-6bca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:f9:5c:72:18:3d:0b:68:1b:16:60:98:90:c3:
5e:d5:be:f3:11:a4:3d:13:95:20:d2:45:57:95:29:
9b:ce:5b:df:95:24:fe:d1:f7:d4:fb:b0:87:19:e2:
f7:96:e4:13:0f:03:f3:70:3a:6f:ad:24:28:91:51:
29:c1:ae:1c:76:a1:ce:39:8e:85:18:74:9d:aa:d7:
a1:34:f6:81:4f:c5:f7:a4:8a:52:5a:65:9b:bc:07:
28:37:64:d4:79:22:4f:22:9b:a0:e5:bc:b4:e2:32:
c7:49:a2:9f:74:38:a0:95:30:d6:53:58:35:c5:d1:
7a:89:66:a8:94:aa:52:ff:fa:22:a5:57:69:7f:3c:
9d:4c:94:96:d4:94:d3:d3:9a:4e:87:b5:1a:f4:da:
3e:da:ba:c3:36:e0:18:13:a8:cf:81:56:ee:1a:f2:
1f:7a:da:09:83:f5:57:70:0f:aa:0b:ee:42:0d:47:
b1:ed:76:3d:28:5c:ac:8a:9d:1f:82:e9:e5:26:7c:
5c:f1:b0:a2:14:8c:76:54:11:77:5c:31:e2:db:e0:
04:00:00:21:4c:25:bf:d8:87:7a:46:43:f8:d3:87:
4f:75:af:a4:e4:b9:44:f6:c2:7c:dc:48:b3:2c:b3:
24:82:4c:85:38:b6:57:f4:a1:e5:56:63:49:36:6a:
d6:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:5A:F4:58:C9:79:BA:1B:39:7C:F3:EB:18:C8:31:B1:0B:1A:FB:1A
X509v3 Authority Key Identifier:
keyid:1D:D1:6F:D6:8B:FF:7C:AB:1A:B9:1C:55:DA:61:FC:0C:DF:F4:17:43
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3621C06/58C9B78C205911EC991B6877D8A014CE/HdFv1ov_fKsauRxV2mH8DN_0F0M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/HdFv1ov_fKsauRxV2mH8DN_0F0M.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3621C06/58C9B78C205911EC991B6877D8A014CE/8D6B78EC5CFF11EEA03853504AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.140.64.0/20
IPv6:
2c0f:c00::/32
Signature Algorithm: sha256WithRSAEncryption
88:dd:73:1c:b3:5f:d4:c5:16:53:d5:b9:7a:2f:27:2d:c1:4a:
c6:22:66:28:4d:61:ea:1f:88:eb:e7:fd:b4:4f:f0:58:25:9f:
bc:a2:3f:7f:89:62:29:a7:91:04:74:c1:c4:5b:6a:16:ab:da:
04:bc:ed:1e:fe:2a:35:b5:3f:92:ba:91:1a:5c:f3:02:b3:1a:
3b:9b:8f:2f:82:9d:69:23:d8:b0:8e:3d:50:92:e7:c8:7b:51:
d5:1b:37:ac:b5:e4:1f:ab:79:ca:03:51:b0:26:cc:a2:16:a0:
7d:55:9b:7f:e2:d4:86:84:89:2b:e4:68:4b:ac:d7:98:df:59:
b8:44:54:3c:5a:32:db:ca:b7:ba:36:00:e8:ea:4a:aa:c6:df:
2f:5a:83:33:73:61:24:41:50:e8:ee:e8:e1:bb:68:b9:bd:28:
e4:ee:69:33:b3:c4:57:13:de:02:86:20:a9:1d:51:e9:64:fd:
f2:33:f5:33:d0:56:1c:60:92:d6:df:80:55:80:bd:a4:4f:42:
92:2c:ff:70:1d:6b:cd:66:d8:7d:7c:8c:20:11:1a:37:eb:2d:
0b:56:5b:0a:8c:fe:56:d9:dc:0e:dd:5f:66:7a:fd:6c:54:bc:
da:28:e0:e2:2e:fb:ba:87:1f:3d:07:d5:e4:2b:cb:a9:e1:90:
34:13:27:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 28 03:10:28 2024 by rpki-client on console-ams.rpki-client.org