Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36390A9/31A3DDA286E211EFBB3D6C96762E951A/2043601A871311EFAA833C47762E951A.roa
File: 2043601A871311EFAA833C47762E951A.roa (raw, json)
Hash identifier: 7V2EXwaz5iXOD12PTDbUdoIOuqdno8tko8fgycVsw+8=
Subject key identifier: 90:28:15:FA:7E:DA:64:C9:AE:DF:85:C3:E8:7E:EC:5D:9D:C5:2F:DC
Certificate issuer: /CN=F36390A9AF/serialNumber=C7423ED27AFCC10D59829A80B1797162B646FFDD
Certificate serial: 02
Authority key identifier: C7:42:3E:D2:7A:FC:C1:0D:59:82:9A:80:B1:79:71:62:B6:46:FF:DD
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/x0I-0nr8wQ1ZgpqAsXlxYrZG_90.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36390A9/31A3DDA286E211EFBB3D6C96762E951A/2043601A871311EFAA833C47762E951A.roa
Signing time: Thu 10 Oct 2024 14:22:49 +0000
ROA not before: Thu 10 Oct 2024 14:22:45 +0000
ROA not after: Tue 10 Oct 2034 14:22:45 +0000
asID: 328233
IP address blocks: 102.207.221.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36390A9/31A3DDA286E211EFBB3D6C96762E951A/x0I-0nr8wQ1ZgpqAsXlxYrZG_90.crl
rsync://rpki.afrinic.net/repository/member_repository/F36390A9/31A3DDA286E211EFBB3D6C96762E951A/x0I-0nr8wQ1ZgpqAsXlxYrZG_90.mft
rsync://rpki.afrinic.net/repository/afrinic/x0I-0nr8wQ1ZgpqAsXlxYrZG_90.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 25 Oct 2024 00:05:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2 (0x2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36390A9AF/serialNumber=C7423ED27AFCC10D59829A80B1797162B646FFDD
Validity
Not Before: Oct 10 14:22:45 2024 GMT
Not After : Oct 10 14:22:45 2034 GMT
Subject: CN=6707e339-70ee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:ad:28:fa:5d:53:13:84:56:ba:25:88:9b:17:
b8:f5:45:3f:17:06:0d:37:d4:8b:e6:cf:47:bb:18:
05:0c:d4:06:2d:b6:c6:d1:0c:39:78:36:d8:3a:40:
b9:cb:6a:a3:25:e1:09:c4:d8:96:7e:88:26:f5:01:
e6:15:fd:b4:81:24:db:aa:2b:c4:21:eb:4c:16:5f:
b9:f9:60:2e:2d:91:dd:cc:be:45:fe:62:ad:18:0a:
e6:1d:86:37:53:d1:fa:fc:ef:c5:41:f7:96:1e:15:
20:8f:f3:f7:be:72:38:f4:8e:db:94:e1:5e:99:3a:
ba:f0:09:fb:5f:a1:5a:bb:32:dd:fd:e4:78:69:5c:
20:a1:8c:21:bd:76:35:f9:f0:3a:0c:7f:77:5a:10:
ed:4d:fc:cb:41:c0:c0:28:77:d1:5c:c5:c3:df:b4:
5b:c4:5d:77:a6:6d:36:ed:75:5e:99:c7:bc:b7:e6:
26:1f:d9:d9:43:88:5a:05:9e:d3:2c:a9:66:c4:3e:
92:38:41:2a:16:b8:d9:9c:86:96:a6:6a:bc:24:12:
30:e8:c9:4f:ba:fe:a6:7e:73:fb:93:42:ae:2e:f5:
08:07:68:92:8b:34:a4:a1:ce:19:4a:1c:1a:18:8c:
53:3d:a5:e6:10:fe:ef:1b:ef:94:ba:cf:04:a8:db:
26:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:28:15:FA:7E:DA:64:C9:AE:DF:85:C3:E8:7E:EC:5D:9D:C5:2F:DC
X509v3 Authority Key Identifier:
keyid:C7:42:3E:D2:7A:FC:C1:0D:59:82:9A:80:B1:79:71:62:B6:46:FF:DD
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36390A9/31A3DDA286E211EFBB3D6C96762E951A/x0I-0nr8wQ1ZgpqAsXlxYrZG_90.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/x0I-0nr8wQ1ZgpqAsXlxYrZG_90.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36390A9/31A3DDA286E211EFBB3D6C96762E951A/2043601A871311EFAA833C47762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.207.221.0/24
Signature Algorithm: sha256WithRSAEncryption
73:15:09:93:96:32:e8:7e:69:f6:34:d3:56:bf:86:62:7d:2f:
12:90:60:2a:69:f3:c8:7c:73:c0:d6:0e:d0:e6:5e:ab:92:5c:
0e:e4:67:e0:fe:90:ee:3c:9a:61:db:e9:f2:a6:34:f9:c8:9e:
26:d8:63:22:36:7e:42:cd:95:ab:d7:f6:9f:2d:c5:91:7c:0d:
35:14:42:05:f3:01:22:91:92:9f:c7:44:40:29:c2:19:9e:2e:
64:d1:0a:d0:90:d8:85:ef:1f:73:74:0a:d7:33:af:aa:b3:34:
83:94:e4:4c:4c:2d:16:3d:aa:1c:7d:63:46:84:bb:67:a2:ae:
44:b5:a0:18:c6:67:f1:c9:69:e1:7d:77:30:8e:d6:f7:3f:c9:
c8:5e:0f:c4:ec:e3:c1:6b:0e:61:ce:c1:9e:ca:58:56:b8:57:
c8:6b:20:e6:85:5f:1c:2a:eb:5a:f4:72:40:b5:82:d0:df:94:
fc:0e:ab:87:65:c1:d7:0b:4b:d8:a5:64:38:b2:37:b4:70:8d:
0e:cd:fa:5c:5a:7d:34:31:2d:49:31:1b:2c:48:dd:f6:14:22:
16:ba:33:3b:7a:f2:6a:87:ba:71:21:bf:0f:7d:9e:f4:52:76:
65:5a:29:fa:ca:c5:ef:bf:6d:7b:c0:e5:4b:39:2a:77:0a:93:
53:1e:4d:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Oct 23 04:41:11 2024 by rpki-client on console-ams.rpki-client.org