Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3627A02/26DFD6B8B58E11E8A6CE2664F8AEA228/634D9B40A88611ED88D1E4D4F1222468.roa
File: 634D9B40A88611ED88D1E4D4F1222468.roa (raw, json)
Hash identifier: ZaiAbRGCnC/vkkh9axwZ9poc9LXXReOP9OZraxXElnM=
Subject key identifier: 38:23:9F:8F:FC:7E:A8:BD:61:DF:88:BF:ED:87:F2:A7:72:1F:9B:77
Certificate issuer: /CN=F3627A02AF/serialNumber=56952EF930F44FFE912770E3DBC163049F5AFDB7
Certificate serial: 0684
Authority key identifier: 56:95:2E:F9:30:F4:4F:FE:91:27:70:E3:DB:C1:63:04:9F:5A:FD:B7
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/VpUu-TD0T_6RJ3Dj28FjBJ9a_bc.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3627A02/26DFD6B8B58E11E8A6CE2664F8AEA228/634D9B40A88611ED88D1E4D4F1222468.roa
Signing time: Thu 09 Feb 2023 14:31:06 +0000
ROA not before: Thu 09 Feb 2023 14:31:02 +0000
ROA not after: Fri 08 Feb 2030 14:31:02 +0000
asID: 37721
IP address blocks: 102.67.96.0/19 maxlen: 24
102.212.161.0/24 maxlen: 24
102.214.64.0/22 maxlen: 24
2c0f:ee00::/32 maxlen: 64
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3627A02/26DFD6B8B58E11E8A6CE2664F8AEA228/VpUu-TD0T_6RJ3Dj28FjBJ9a_bc.crl
rsync://rpki.afrinic.net/repository/member_repository/F3627A02/26DFD6B8B58E11E8A6CE2664F8AEA228/VpUu-TD0T_6RJ3Dj28FjBJ9a_bc.mft
rsync://rpki.afrinic.net/repository/afrinic/VpUu-TD0T_6RJ3Dj28FjBJ9a_bc.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1668 (0x684)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3627A02AF/serialNumber=56952EF930F44FFE912770E3DBC163049F5AFDB7
Validity
Not Before: Feb 9 14:31:02 2023 GMT
Not After : Feb 8 14:31:02 2030 GMT
Subject: CN=63e503aa-4189
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:bc:c8:76:c3:d6:0d:80:9d:8d:56:89:53:2f:
72:16:29:6e:9a:b8:3c:0d:e7:28:05:4c:2a:33:99:
1b:fc:8c:b1:b7:a5:db:fa:0b:a7:eb:ca:c1:15:bd:
e1:74:5d:50:bd:28:44:6e:92:1c:a1:1b:98:01:44:
fd:90:d9:08:56:6e:62:6a:7a:bb:32:87:0a:5c:ba:
b6:04:69:83:d1:e5:91:05:1e:fc:d1:37:a7:91:05:
68:f9:f8:2a:ba:ed:9a:0b:0e:b1:a1:e1:31:86:99:
77:5a:16:a3:19:1a:e9:61:2a:95:d5:1f:32:dd:f4:
4e:84:c7:fe:d8:7a:0d:bf:e6:0c:94:94:30:4d:18:
d5:c1:79:ca:93:70:e9:1e:46:d4:d0:34:00:fd:9a:
d6:76:e9:f2:bc:dc:7b:9f:74:b2:9f:14:01:f8:88:
c4:4b:b8:81:e2:b7:52:25:2b:59:6b:4c:2b:66:49:
56:a0:f9:81:ec:70:9e:af:e9:7b:68:82:56:a0:de:
24:bb:47:ff:0e:04:3b:0b:ab:0d:35:6f:09:6f:d5:
72:56:67:d3:c7:6e:04:15:84:6c:2c:fd:ae:6a:0d:
2a:e1:38:27:ad:02:42:52:6f:18:dc:77:d1:79:8c:
05:c2:da:93:3e:21:72:3c:f5:11:67:42:85:04:d9:
a2:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:23:9F:8F:FC:7E:A8:BD:61:DF:88:BF:ED:87:F2:A7:72:1F:9B:77
X509v3 Authority Key Identifier:
keyid:56:95:2E:F9:30:F4:4F:FE:91:27:70:E3:DB:C1:63:04:9F:5A:FD:B7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3627A02/26DFD6B8B58E11E8A6CE2664F8AEA228/VpUu-TD0T_6RJ3Dj28FjBJ9a_bc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/VpUu-TD0T_6RJ3Dj28FjBJ9a_bc.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3627A02/26DFD6B8B58E11E8A6CE2664F8AEA228/634D9B40A88611ED88D1E4D4F1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.67.96.0/19
102.212.161.0/24
102.214.64.0/22
IPv6:
2c0f:ee00::/32
Signature Algorithm: sha256WithRSAEncryption
ce:57:57:a7:4f:19:5e:8e:0a:8d:30:f0:73:29:e5:37:08:82:
cb:1b:50:5f:e6:bd:4a:62:e4:9d:82:b9:08:32:8b:9f:38:18:
70:ba:0b:4f:65:a6:52:2c:c5:af:f3:a2:08:a1:4c:43:e5:be:
69:f3:53:e8:63:5d:84:3b:28:5b:fc:db:e3:16:63:48:fb:30:
5b:9b:44:ba:30:d2:15:b6:7d:fc:b7:23:11:39:59:39:7b:ee:
7c:18:14:37:38:ba:d3:de:79:49:6e:a0:03:cf:27:4a:fa:7d:
e1:fd:94:01:34:2a:7b:a9:14:51:8b:24:09:b1:9a:c0:e5:0e:
ee:44:66:6e:b7:7b:f2:46:2d:50:56:a6:1a:60:8b:c1:4c:37:
ab:d1:5d:fd:12:53:a5:04:10:8a:64:c0:ba:24:08:9e:9e:4e:
17:a2:e0:ea:33:af:85:64:dd:72:c4:06:75:c2:ce:0a:f2:87:
2e:1c:69:d9:5a:bb:9a:71:ca:82:c5:99:c7:ed:4b:82:7a:55:
b6:ea:82:03:5e:b0:8a:f9:6b:1c:b3:a1:3d:bd:da:5a:3e:1b:
11:f8:11:72:bb:e4:20:3e:bf:4b:20:97:58:93:72:60:04:78:
b5:b9:94:b2:c3:8d:8d:2a:1d:da:ef:3f:a2:7a:60:eb:dc:be:
f5:bf:e2:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:08:51 2024 by rpki-client on console-fra.rpki-client.org