Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3627A02/26DFD6B8B58E11E8A6CE2664F8AEA228/249F4B5058F611EB92C0CB7CF8AEA228.roa
File: 249F4B5058F611EB92C0CB7CF8AEA228.roa (raw, json)
Hash identifier: y/cv6sXye1KX1c+QrX03ipPES8zbWLlQF0864FDufEE=
Subject key identifier: 6A:D5:B0:27:0C:3B:D4:02:6B:AF:43:D3:32:BA:44:E2:F4:59:B4:B0
Certificate issuer: /CN=F3627A02AF/serialNumber=56952EF930F44FFE912770E3DBC163049F5AFDB7
Certificate serial: 037D
Authority key identifier: 56:95:2E:F9:30:F4:4F:FE:91:27:70:E3:DB:C1:63:04:9F:5A:FD:B7
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/VpUu-TD0T_6RJ3Dj28FjBJ9a_bc.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3627A02/26DFD6B8B58E11E8A6CE2664F8AEA228/249F4B5058F611EB92C0CB7CF8AEA228.roa
Signing time: Sun 17 Jan 2021 18:59:38 +0000
ROA not before: Sun 17 Jan 2021 18:59:31 +0000
ROA not after: Fri 17 Jan 2025 18:59:31 +0000
asID: 37721
IP address blocks: 102.67.96.0/19 maxlen: 24
2c0f:ee00::/32 maxlen: 64
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3627A02/26DFD6B8B58E11E8A6CE2664F8AEA228/VpUu-TD0T_6RJ3Dj28FjBJ9a_bc.crl
rsync://rpki.afrinic.net/repository/member_repository/F3627A02/26DFD6B8B58E11E8A6CE2664F8AEA228/VpUu-TD0T_6RJ3Dj28FjBJ9a_bc.mft
rsync://rpki.afrinic.net/repository/afrinic/VpUu-TD0T_6RJ3Dj28FjBJ9a_bc.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 24 May 2024 00:05:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 893 (0x37d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3627A02AF/serialNumber=56952EF930F44FFE912770E3DBC163049F5AFDB7
Validity
Not Before: Jan 17 18:59:31 2021 GMT
Not After : Jan 17 18:59:31 2025 GMT
Subject: CN=60048919-cb87
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:ba:e1:88:3f:de:29:91:78:be:24:6a:90:a4:
e9:73:b9:2d:4c:d9:02:93:3f:dc:2a:99:45:5f:fb:
39:aa:80:b0:57:8d:f6:de:e3:0f:f9:88:21:d6:57:
a7:c4:dc:05:c7:7b:d4:f2:da:4a:9e:91:cc:ac:f6:
01:5f:64:30:e0:8e:75:c3:df:5b:6b:6f:44:57:7f:
76:3c:f0:c0:d8:f5:e2:19:73:a5:34:4c:14:3c:0d:
85:4c:65:86:63:de:74:67:da:66:47:81:1c:d5:9d:
42:55:45:25:e8:3c:24:37:7f:4c:ee:0e:81:db:34:
f6:d3:33:b8:6d:24:a7:48:59:b2:73:97:62:ca:3c:
9a:7c:a1:66:34:eb:84:40:c3:53:a7:fe:4d:08:be:
79:3e:af:f1:2c:d0:0a:b4:64:54:a1:cc:d1:46:2f:
3e:47:c9:dc:0c:ab:13:6e:f4:13:0d:11:8d:bc:a3:
81:52:43:0b:ef:df:13:c2:34:62:dc:77:53:a8:01:
07:d7:05:fb:5d:8d:d3:29:fd:64:6a:37:28:e5:98:
61:d3:97:f5:da:47:73:7e:f4:d0:b3:fc:7c:55:d1:
cf:25:08:db:2a:b1:09:5f:34:42:c2:f4:c7:c7:14:
9b:06:17:f7:30:c3:a8:49:1c:3e:ae:a5:f7:ed:c1:
de:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:D5:B0:27:0C:3B:D4:02:6B:AF:43:D3:32:BA:44:E2:F4:59:B4:B0
X509v3 Authority Key Identifier:
keyid:56:95:2E:F9:30:F4:4F:FE:91:27:70:E3:DB:C1:63:04:9F:5A:FD:B7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3627A02/26DFD6B8B58E11E8A6CE2664F8AEA228/VpUu-TD0T_6RJ3Dj28FjBJ9a_bc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/VpUu-TD0T_6RJ3Dj28FjBJ9a_bc.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3627A02/26DFD6B8B58E11E8A6CE2664F8AEA228/249F4B5058F611EB92C0CB7CF8AEA228.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.67.96.0/19
IPv6:
2c0f:ee00::/32
Signature Algorithm: sha256WithRSAEncryption
35:6e:66:2e:a0:a2:ef:06:32:22:e4:7b:d5:e3:b9:f6:c0:92:
e3:67:50:87:89:e9:26:47:a6:6a:31:ab:2d:0b:db:92:d0:0c:
f8:44:e6:60:4d:d0:e9:dc:9b:23:71:01:8d:d0:a2:6f:19:85:
84:99:47:4c:e6:62:39:b5:2e:d5:1c:b9:36:85:df:19:9a:f3:
bc:21:3a:f5:d0:73:de:53:1a:90:ac:19:dd:d1:d1:94:2a:a4:
d4:7f:bc:c2:08:b4:01:90:25:d6:3a:66:41:05:b4:04:13:fa:
ef:3e:99:aa:df:6e:c9:b9:3c:eb:8f:7b:5b:80:da:87:72:08:
bf:c7:fb:52:88:e4:52:83:ca:27:63:ae:67:60:f2:84:3a:c4:
1f:36:85:5e:3f:14:77:6d:55:6c:c6:2b:6d:bd:9c:81:e5:76:
eb:3a:6b:bd:e3:58:bf:80:49:6f:03:a9:da:6a:13:ce:e4:59:
db:d5:09:b1:54:cc:1b:28:b4:72:0a:1e:91:99:63:aa:68:22:
16:69:85:30:91:12:ac:fa:08:57:51:6e:83:5d:d2:b9:84:b6:
08:a0:96:bf:19:44:ff:ac:af:c6:9e:79:8a:9c:62:b5:ef:a7:
f3:82:3f:f2:55:ad:ed:47:14:e0:7c:18:ce:90:a1:e5:39:59:
58:53:30:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 22 01:45:57 2024 by rpki-client on console-fra.rpki-client.org