Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F362C18C/45883290ABD111EBB1A6715EF8AEA228/8816EFF4A29D11EF99938490762E951A.roa
File: 8816EFF4A29D11EF99938490762E951A.roa (raw, json)
Hash identifier: utEvmTftWJLsKIBUizWSdRkeOrLO72btVpcXd9Lz2Dk=
Subject key identifier: 65:34:B4:0B:24:94:80:28:DA:A6:93:0D:51:09:9A:A5:D9:3C:A0:26
Certificate issuer: /CN=F362C18CAF/serialNumber=63E0BB6B3433CD5D71A42B0169BDB01E20E4557F
Certificate serial: 0557
Authority key identifier: 63:E0:BB:6B:34:33:CD:5D:71:A4:2B:01:69:BD:B0:1E:20:E4:55:7F
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/Y-C7azQzzV1xpCsBab2wHiDkVX8.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F362C18C/45883290ABD111EBB1A6715EF8AEA228/8816EFF4A29D11EF99938490762E951A.roa
Signing time: Thu 14 Nov 2024 15:31:35 +0000
ROA not before: Thu 14 Nov 2024 15:31:31 +0000
ROA not after: Tue 31 Dec 2024 15:31:31 +0000
asID: 329007
IP address blocks: 102.220.212.0/24 maxlen: 24
102.220.213.0/24 maxlen: 24
102.220.214.0/24 maxlen: 24
102.220.215.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F362C18C/45883290ABD111EBB1A6715EF8AEA228/Y-C7azQzzV1xpCsBab2wHiDkVX8.crl
rsync://rpki.afrinic.net/repository/member_repository/F362C18C/45883290ABD111EBB1A6715EF8AEA228/Y-C7azQzzV1xpCsBab2wHiDkVX8.mft
rsync://rpki.afrinic.net/repository/afrinic/Y-C7azQzzV1xpCsBab2wHiDkVX8.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1367 (0x557)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F362C18CAF/serialNumber=63E0BB6B3433CD5D71A42B0169BDB01E20E4557F
Validity
Not Before: Nov 14 15:31:31 2024 GMT
Not After : Dec 31 15:31:31 2024 GMT
Subject: CN=673617d7-ea6b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:eb:c8:93:38:6b:ab:cb:95:4a:b3:9f:55:7b:
4d:6b:a3:b8:a5:22:6c:0d:b4:49:24:b7:a7:70:7f:
15:d3:84:c0:e9:ba:b3:ce:08:36:ca:39:24:7d:f6:
8d:5e:6c:5a:2e:95:c3:05:fe:8a:d5:73:dd:cd:da:
fa:98:ea:c4:fb:95:7a:9a:74:a9:b7:d9:65:54:4c:
65:59:a5:94:67:c4:5e:8b:1d:a7:06:16:c4:97:18:
8a:4d:84:d8:32:f8:f8:2d:0a:27:86:a7:bc:b6:7b:
42:25:64:1e:9a:09:77:06:9d:9e:65:40:10:ef:41:
49:c3:61:ff:f2:4d:64:3f:50:cb:9d:f9:e2:0e:3f:
09:1d:44:b7:f8:0a:0e:ba:b0:ae:6f:8e:56:8c:d6:
14:da:ba:d4:92:f1:07:49:c8:43:ef:91:73:1b:a3:
20:c0:0b:cc:c4:3a:31:56:6a:e9:41:e5:b2:4d:82:
56:53:20:9c:95:d7:8a:76:a2:11:ba:1d:a3:03:c6:
a5:27:a7:54:3d:b8:c1:1e:df:10:75:be:0c:fd:d4:
96:0e:2d:1b:81:e2:f0:c3:bb:8c:da:8f:0d:e0:20:
7a:1b:1e:51:75:55:77:f7:4b:ae:09:53:fd:75:bf:
51:e4:f2:37:18:c6:c3:60:27:52:06:10:a5:c8:58:
60:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:34:B4:0B:24:94:80:28:DA:A6:93:0D:51:09:9A:A5:D9:3C:A0:26
X509v3 Authority Key Identifier:
keyid:63:E0:BB:6B:34:33:CD:5D:71:A4:2B:01:69:BD:B0:1E:20:E4:55:7F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F362C18C/45883290ABD111EBB1A6715EF8AEA228/Y-C7azQzzV1xpCsBab2wHiDkVX8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/Y-C7azQzzV1xpCsBab2wHiDkVX8.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F362C18C/45883290ABD111EBB1A6715EF8AEA228/8816EFF4A29D11EF99938490762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.220.212.0/22
Signature Algorithm: sha256WithRSAEncryption
51:32:22:8d:ab:ba:9c:e0:70:5c:68:c9:de:cd:ce:5e:c7:d7:
1c:e7:bf:b9:f6:cb:1b:c0:0a:56:ba:e2:df:f3:83:b4:78:57:
fb:c9:9b:4e:4b:92:3e:8e:ea:46:30:75:e7:d9:5a:56:56:46:
b0:48:c2:7b:7a:cd:f1:f8:99:ea:44:ff:f2:a3:f1:68:c3:25:
2f:ba:bc:1c:62:f3:26:b3:44:64:a4:5a:f6:bd:67:b4:a1:e4:
74:71:b0:7d:6e:ab:97:42:83:4b:3c:60:05:e1:c4:cf:af:8f:
aa:98:e9:a7:c2:6d:18:79:88:9b:e6:f6:8b:19:eb:4f:d1:3e:
fc:10:bd:37:82:c7:f8:9d:da:97:50:4d:06:47:a9:af:b1:68:
cd:45:9c:5c:08:fb:16:98:f5:0d:30:4e:0d:87:01:11:00:ba:
50:9b:f6:8f:8e:f5:9d:c0:ff:84:84:d7:1e:78:f2:02:91:4c:
25:1d:d2:3b:0b:78:71:e4:1d:57:aa:a8:71:5e:f7:db:f2:0f:
f2:5d:55:9a:a0:86:46:28:9a:50:ba:28:b3:44:31:19:68:10:
2d:71:1c:72:e4:f3:b6:37:43:a7:1b:2d:79:72:e5:25:b5:c0:
f6:86:1c:a7:fa:b8:e4:c8:50:b2:12:f3:1d:62:14:25:92:3e:
25:ea:f1:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:03:32 2024 by rpki-client on console-ams.rpki-client.org