Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F363C396/CAE0D4D81E9C11EFBCA1A4227DDC24C2/AB00E3321E9D11EFAD20E30A7DDC24C2.roa
File: AB00E3321E9D11EFAD20E30A7DDC24C2.roa (raw, json)
Hash identifier: jczqBl4rLfWV3D8zqP6XHofdCAQZu3xZe0wHy+hc42o=
Subject key identifier: CE:7E:A9:69:09:61:3C:E2:CE:89:D3:88:09:C9:DA:74:1A:EA:57:06
Certificate issuer: /CN=F363C396AF/serialNumber=88EF79C641C15E89181E729D48A8FE6E73CE25A7
Certificate serial: 02
Authority key identifier: 88:EF:79:C6:41:C1:5E:89:18:1E:72:9D:48:A8:FE:6E:73:CE:25:A7
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/iO95xkHBXokYHnKdSKj-bnPOJac.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F363C396/CAE0D4D81E9C11EFBCA1A4227DDC24C2/AB00E3321E9D11EFAD20E30A7DDC24C2.roa
Signing time: Thu 30 May 2024 16:00:00 +0000
ROA not before: Thu 30 May 2024 15:59:57 +0000
ROA not after: Wed 31 May 2028 15:59:57 +0000
asID: 328898
IP address blocks: 102.219.92.0/24 maxlen: 24
2001:43fd:4000::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F363C396/CAE0D4D81E9C11EFBCA1A4227DDC24C2/iO95xkHBXokYHnKdSKj-bnPOJac.crl
rsync://rpki.afrinic.net/repository/member_repository/F363C396/CAE0D4D81E9C11EFBCA1A4227DDC24C2/iO95xkHBXokYHnKdSKj-bnPOJac.mft
rsync://rpki.afrinic.net/repository/afrinic/iO95xkHBXokYHnKdSKj-bnPOJac.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 26 Oct 2024 00:05:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2 (0x2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F363C396AF/serialNumber=88EF79C641C15E89181E729D48A8FE6E73CE25A7
Validity
Not Before: May 30 15:59:57 2024 GMT
Not After : May 31 15:59:57 2028 GMT
Subject: CN=6658a280-e569
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:be:7b:ae:89:63:31:58:7a:63:2e:83:55:40:
2d:8c:a9:8f:7c:7a:78:26:ad:c0:fc:59:70:ea:e8:
45:8a:ed:26:47:29:91:c7:68:1d:c0:10:1d:8a:e8:
8a:4a:5e:3b:ca:b8:69:2b:c6:24:5d:e7:5e:7c:57:
94:fd:f1:ce:7d:29:ee:f1:84:d6:c6:c0:ec:d1:d2:
e6:60:8d:45:57:d0:76:98:39:94:d0:bc:3e:58:55:
cf:3a:f3:dc:4f:b5:3b:df:0d:a3:f9:15:da:ca:c2:
40:9b:78:b3:94:6d:05:21:72:33:fd:79:84:37:24:
80:f3:be:59:90:59:66:15:87:17:3b:4a:21:5c:f4:
c9:f9:d1:49:5a:49:88:e0:18:d2:d8:c2:1d:3d:6b:
1e:55:4c:e4:07:ae:6a:c7:6d:1a:f7:4d:00:89:1e:
93:44:ef:4a:82:69:49:c6:00:b2:af:8c:69:e8:3f:
5e:b4:32:23:f6:52:22:1a:53:eb:5b:6b:2a:a8:a8:
7f:3f:dd:3b:a5:a0:46:d7:4e:55:ab:ea:f0:c2:58:
1e:b4:1a:98:e1:4a:20:ae:47:d3:16:78:26:53:a0:
b3:1b:bc:5a:4b:2f:84:16:f9:be:ba:d6:c8:a1:b2:
c1:cb:30:14:60:07:79:ad:91:72:19:bc:93:38:4b:
c3:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:7E:A9:69:09:61:3C:E2:CE:89:D3:88:09:C9:DA:74:1A:EA:57:06
X509v3 Authority Key Identifier:
keyid:88:EF:79:C6:41:C1:5E:89:18:1E:72:9D:48:A8:FE:6E:73:CE:25:A7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F363C396/CAE0D4D81E9C11EFBCA1A4227DDC24C2/iO95xkHBXokYHnKdSKj-bnPOJac.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/iO95xkHBXokYHnKdSKj-bnPOJac.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F363C396/CAE0D4D81E9C11EFBCA1A4227DDC24C2/AB00E3321E9D11EFAD20E30A7DDC24C2.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.219.92.0/24
IPv6:
2001:43fd:4000::/48
Signature Algorithm: sha256WithRSAEncryption
96:37:cf:53:b6:f3:f4:20:62:cb:59:73:9f:60:17:46:44:97:
c4:a8:c0:d6:a6:96:96:b4:aa:1b:18:97:c9:63:b9:b4:cb:33:
ae:f7:26:83:f5:33:84:eb:6c:5e:9a:12:7f:96:c2:b0:9c:1e:
f5:fd:a1:30:aa:20:13:92:fc:60:74:27:05:70:b5:e9:a8:7c:
0b:d7:02:ae:99:5b:b1:4b:5a:99:54:a7:38:24:8f:23:27:fd:
4d:d1:71:2b:ee:f5:52:ad:16:49:3b:66:51:b4:99:b7:41:8e:
31:0a:ac:4e:8f:98:cb:04:17:f7:44:74:e8:1b:0c:f5:d0:87:
05:c2:5f:09:b7:ee:0f:42:18:f7:0d:da:41:1a:0b:79:00:22:
a3:c0:96:a8:cb:5d:75:39:03:e6:15:ae:9b:f6:58:19:fc:3d:
a9:56:ba:71:89:f9:c4:e3:ee:4e:23:63:42:3b:f7:3a:d9:ad:
78:31:34:ae:bc:bc:d4:e8:e6:0c:27:93:3b:c6:f9:3d:00:d3:
de:09:7a:5b:76:42:65:af:cf:a8:ad:77:9f:c5:61:7d:25:3e:
45:d6:aa:8a:79:40:f6:14:45:09:8f:d2:be:d1:21:be:a2:cb:
7c:94:6b:55:a7:ac:75:21:da:61:84:1f:2e:36:c8:a7:85:87:
67:35:db:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Oct 24 06:47:45 2024 by rpki-client on console-fra.rpki-client.org