Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3629595/612C69843D0C11EE96559D774AD9E6FC/BE084E483D0C11EEA697D1784AD9E6FC.roa
File: BE084E483D0C11EEA697D1784AD9E6FC.roa (raw, json)
Hash identifier: d3pcG470SIIHRtD4u5KMhKjkrzBNkxu/J9n0pkCnKfA=
Subject key identifier: 19:5C:63:D5:0A:10:8E:FA:A8:92:1B:FE:04:63:F3:72:B8:2D:75:66
Certificate issuer: /CN=F3629595AF/serialNumber=DC4248C07B298CCD6B39E76BE130CBD27B6C8A05
Certificate serial: 02
Authority key identifier: DC:42:48:C0:7B:29:8C:CD:6B:39:E7:6B:E1:30:CB:D2:7B:6C:8A:05
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/3EJIwHspjM1rOedr4TDL0ntsigU.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3629595/612C69843D0C11EE96559D774AD9E6FC/BE084E483D0C11EEA697D1784AD9E6FC.roa
Signing time: Thu 17 Aug 2023 14:45:43 +0000
ROA not before: Thu 17 Aug 2023 14:45:40 +0000
ROA not after: Wed 17 Aug 2033 14:45:40 +0000
asID: 329144
IP address blocks: 102.214.204.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3629595/612C69843D0C11EE96559D774AD9E6FC/3EJIwHspjM1rOedr4TDL0ntsigU.crl
rsync://rpki.afrinic.net/repository/member_repository/F3629595/612C69843D0C11EE96559D774AD9E6FC/3EJIwHspjM1rOedr4TDL0ntsigU.mft
rsync://rpki.afrinic.net/repository/afrinic/3EJIwHspjM1rOedr4TDL0ntsigU.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 04 Jun 2024 00:04:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2 (0x2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3629595AF/serialNumber=DC4248C07B298CCD6B39E76BE130CBD27B6C8A05
Validity
Not Before: Aug 17 14:45:40 2023 GMT
Not After : Aug 17 14:45:40 2033 GMT
Subject: CN=64de3297-b5a3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:49:a7:c8:7a:e1:f0:ab:41:d7:97:96:4d:5f:
29:b1:96:63:3f:0f:f6:4b:44:cc:63:b6:c9:98:17:
48:fc:75:b7:2d:33:4c:7e:89:b1:3d:ec:e6:b9:55:
d3:88:77:d1:10:86:98:f9:a5:2d:16:ef:06:60:b6:
84:4e:68:99:b7:db:1b:72:e6:f2:22:69:d5:ee:92:
9c:dd:9d:a4:88:75:93:50:15:d2:14:23:b9:a6:64:
fd:be:50:a1:2f:8d:39:f6:66:8e:c8:30:26:42:22:
24:f8:ea:cb:7d:28:de:9f:b0:31:ed:e6:f1:fd:99:
68:49:51:cd:8a:83:87:32:aa:61:64:f7:fa:51:f6:
f3:c8:45:8e:64:a6:fa:51:8b:8a:97:fe:2c:6c:79:
fa:46:4f:25:53:42:9f:c8:79:08:73:7f:15:cd:51:
a7:6e:6a:09:84:2d:a9:0a:69:84:23:5a:78:ed:c0:
9c:60:a1:a9:01:8a:1d:0b:28:e6:a9:ce:f0:d2:02:
10:b9:78:59:f0:09:2a:ab:63:4c:32:93:29:54:1d:
aa:28:ac:4a:f9:4a:a1:c8:29:fb:e7:de:02:c2:83:
df:51:a4:03:85:f1:e9:84:33:f0:02:d6:09:ba:0e:
7c:ed:a8:9e:cb:bc:10:1e:74:ce:d2:2b:a6:42:ab:
b1:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:5C:63:D5:0A:10:8E:FA:A8:92:1B:FE:04:63:F3:72:B8:2D:75:66
X509v3 Authority Key Identifier:
keyid:DC:42:48:C0:7B:29:8C:CD:6B:39:E7:6B:E1:30:CB:D2:7B:6C:8A:05
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3629595/612C69843D0C11EE96559D774AD9E6FC/3EJIwHspjM1rOedr4TDL0ntsigU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/3EJIwHspjM1rOedr4TDL0ntsigU.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3629595/612C69843D0C11EE96559D774AD9E6FC/BE084E483D0C11EEA697D1784AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.214.204.0/22
Signature Algorithm: sha256WithRSAEncryption
8f:49:6e:46:a2:84:96:c8:4c:b4:15:6f:67:a3:49:1b:cb:83:
3d:55:e1:1f:7f:19:7c:19:69:21:08:1e:45:0a:62:d5:52:6a:
f9:7a:e1:80:c1:8e:3c:cc:d2:c0:4e:b5:04:90:49:a3:85:ec:
a5:3e:f5:e7:1e:7f:88:95:44:a5:77:b4:ac:f6:49:58:86:75:
5f:56:fb:bc:95:e0:b2:7a:8b:bb:bd:11:cb:3f:d1:7d:97:41:
30:78:15:f4:ff:cf:c0:e9:88:f3:f7:3b:69:8c:32:27:26:ac:
e5:01:9f:67:c7:e4:46:29:57:f3:e5:5d:98:80:ae:ca:54:93:
5e:ff:52:2c:6d:9c:08:17:54:ca:f5:39:6d:a3:91:bd:4b:c1:
e8:e3:94:34:70:64:6b:7d:aa:8e:df:d9:05:81:f7:2a:04:5f:
a3:5e:d6:87:b8:3a:58:67:16:c9:1b:5b:67:76:38:6a:d8:c3:
f2:c2:26:b7:c3:7f:67:8e:c4:98:9a:a3:ad:d8:41:15:dd:44:
cf:9f:8d:c4:eb:4c:b0:e4:d0:94:6d:24:95:83:cc:17:c9:57:
43:5b:64:c6:ab:97:74:05:33:5c:4e:86:d5:d4:26:b8:c2:2d:
13:e1:90:7e:b2:8c:eb:3e:11:47:03:5b:9a:ee:cc:ea:67:cf:
f6:04:23:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 2 03:39:35 2024 by rpki-client on console-ams.rpki-client.org