Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F362E39E/2001918480AB11E6A117AE63F8AEA228/48EF3A4CCAC511EBA25AC67CF8AEA228.roa
File: 48EF3A4CCAC511EBA25AC67CF8AEA228.roa (raw, json)
Hash identifier: akzUSGdVFPvN0ulPbNTi4W3s+HlY+6W8WohYYTP53AQ=
Subject key identifier: 2E:41:BD:77:9F:87:BB:41:D6:FF:9D:81:3D:66:F4:2F:EF:58:7A:5B
Certificate issuer: /CN=F362E39EAF/serialNumber=A1368E8BFC80F4EA5AB09716D257211936182851
Certificate serial: 071E
Authority key identifier: A1:36:8E:8B:FC:80:F4:EA:5A:B0:97:16:D2:57:21:19:36:18:28:51
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/oTaOi_yA9OpasJcW0lchGTYYKFE.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F362E39E/2001918480AB11E6A117AE63F8AEA228/48EF3A4CCAC511EBA25AC67CF8AEA228.roa
Signing time: Fri 11 Jun 2021 14:57:05 +0000
ROA not before: Wed 23 Jun 2021 14:56:58 +0000
ROA not after: Wed 25 Jun 2025 14:56:58 +0000
asID: 11845
IP address blocks: 102.39.0.0/16 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F362E39E/2001918480AB11E6A117AE63F8AEA228/oTaOi_yA9OpasJcW0lchGTYYKFE.crl
rsync://rpki.afrinic.net/repository/member_repository/F362E39E/2001918480AB11E6A117AE63F8AEA228/oTaOi_yA9OpasJcW0lchGTYYKFE.mft
rsync://rpki.afrinic.net/repository/afrinic/oTaOi_yA9OpasJcW0lchGTYYKFE.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:04:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1822 (0x71e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F362E39EAF/serialNumber=A1368E8BFC80F4EA5AB09716D257211936182851
Validity
Not Before: Jun 23 14:56:58 2021 GMT
Not After : Jun 25 14:56:58 2025 GMT
Subject: CN=60c379c1-cdfd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:29:21:ef:84:95:05:c5:ec:4d:7f:e7:0e:54:
6e:56:87:5a:bc:c5:9d:55:67:72:d0:65:62:9c:0c:
d5:64:25:9a:2a:61:45:fd:0b:94:6d:48:a5:f9:8c:
f9:ad:8b:42:59:9d:e4:5c:9a:42:8a:94:49:2d:22:
73:a2:f4:66:92:ff:d9:08:92:e9:e4:55:e5:4d:08:
73:84:c0:6d:72:e6:a3:4a:f5:c5:fe:27:b3:a9:e5:
11:06:fc:d2:84:16:66:73:23:a1:5c:07:9d:f5:16:
ba:42:ff:86:cf:27:09:e0:88:e6:f9:d4:83:44:8e:
1c:43:29:24:89:30:d1:82:9c:f1:89:b6:3a:64:d8:
53:a7:08:db:69:b4:8e:85:92:23:4e:5e:45:ab:e7:
fe:fa:88:ee:79:83:ac:73:a5:6c:a9:ed:f0:e4:48:
c2:28:4f:de:84:b4:ee:f9:87:c8:c8:16:25:99:a8:
49:22:26:f7:34:23:16:5d:0c:68:c9:f7:84:8a:e7:
c7:76:db:37:11:a9:b2:7c:bd:db:54:c2:24:bc:62:
00:17:67:99:a3:8e:aa:1c:a8:5b:af:28:3e:de:70:
65:fc:23:97:07:66:15:86:5f:be:cd:66:3c:8b:4b:
8a:4d:4c:ed:91:7c:08:2d:dc:08:15:13:2a:3a:04:
6a:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:41:BD:77:9F:87:BB:41:D6:FF:9D:81:3D:66:F4:2F:EF:58:7A:5B
X509v3 Authority Key Identifier:
keyid:A1:36:8E:8B:FC:80:F4:EA:5A:B0:97:16:D2:57:21:19:36:18:28:51
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F362E39E/2001918480AB11E6A117AE63F8AEA228/oTaOi_yA9OpasJcW0lchGTYYKFE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/oTaOi_yA9OpasJcW0lchGTYYKFE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F362E39E/2001918480AB11E6A117AE63F8AEA228/48EF3A4CCAC511EBA25AC67CF8AEA228.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.39.0.0/16
Signature Algorithm: sha256WithRSAEncryption
4f:60:c6:6b:fc:96:1e:d6:7d:b0:54:47:c5:fa:49:7e:e6:a9:
6c:50:d0:c7:dd:12:fe:0f:e2:53:a4:97:dc:08:ef:55:53:6f:
45:9f:de:18:8c:3f:f8:26:4b:bb:2a:bc:de:53:49:b3:5c:d7:
b7:ec:57:33:e8:cb:29:f7:bd:33:fd:e7:42:69:97:23:c0:b2:
78:77:a6:8a:82:ad:43:9b:de:e4:8f:95:6a:39:97:a3:9d:8a:
e9:a1:5d:46:df:9b:ed:7e:a0:d2:f0:cc:04:eb:ad:9d:1f:c6:
89:58:e6:23:22:c3:aa:d0:b2:cc:65:2b:21:af:1d:67:96:86:
a3:82:6c:4e:ba:99:33:87:52:e6:32:09:27:63:04:24:00:89:
d9:ac:c7:75:e3:e6:b4:b1:6a:6e:f4:e7:2a:2b:17:9a:a1:21:
d9:45:85:54:66:8b:57:ad:c1:e7:a2:9b:fa:c3:4f:9b:e5:33:
0a:c7:61:02:4d:93:0d:1e:6c:c9:5a:3b:a9:a5:c1:3d:93:22:
ba:2a:45:0d:9d:86:5b:db:62:0b:bc:57:91:a1:c5:c2:ed:ed:
9c:05:4e:ec:63:59:25:72:bf:88:69:55:6b:07:cc:70:28:2d:
9b:e2:21:75:56:9f:a6:e5:f0:f7:6b:b9:7d:4d:a2:c8:2d:11:
88:f1:a5:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 01:48:14 2024 by rpki-client on console-fra.rpki-client.org