Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F363C3E1/AAC01F88821611E9BD1EFE3CF8AEA228/14F8A0E8AB6B11ECABB679CF5A40D577.roa
File: 14F8A0E8AB6B11ECABB679CF5A40D577.roa (raw, json)
Hash identifier: jsRtwNWbCFDNk6YPeDZa2bp9O9SfXhNaNtf713XS5Jo=
Subject key identifier: 35:B6:04:52:A8:60:93:C6:76:FD:B7:4F:A7:90:53:5F:48:5C:30:91
Certificate issuer: /CN=F363C3E1AF/serialNumber=C40F95E97D832F0F576D13EE35AEB3D75A5D30D4
Certificate serial: 0426
Authority key identifier: C4:0F:95:E9:7D:83:2F:0F:57:6D:13:EE:35:AE:B3:D7:5A:5D:30:D4
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/xA-V6X2DLw9XbRPuNa6z11pdMNQ.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F363C3E1/AAC01F88821611E9BD1EFE3CF8AEA228/14F8A0E8AB6B11ECABB679CF5A40D577.roa
Signing time: Thu 24 Mar 2022 12:08:14 +0000
ROA not before: Thu 24 Mar 2022 12:08:10 +0000
ROA not after: Fri 31 Mar 2028 12:08:10 +0000
asID: 327892
IP address blocks: 102.22.32.0/19 maxlen: 24
2c0f:f478::/32 maxlen: 128
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F363C3E1/AAC01F88821611E9BD1EFE3CF8AEA228/xA-V6X2DLw9XbRPuNa6z11pdMNQ.crl
rsync://rpki.afrinic.net/repository/member_repository/F363C3E1/AAC01F88821611E9BD1EFE3CF8AEA228/xA-V6X2DLw9XbRPuNa6z11pdMNQ.mft
rsync://rpki.afrinic.net/repository/afrinic/xA-V6X2DLw9XbRPuNa6z11pdMNQ.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1062 (0x426)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F363C3E1AF/serialNumber=C40F95E97D832F0F576D13EE35AEB3D75A5D30D4
Validity
Not Before: Mar 24 12:08:10 2022 GMT
Not After : Mar 31 12:08:10 2028 GMT
Subject: CN=623c5f2e-b858
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:f5:78:61:64:bb:86:c9:03:03:ee:02:ca:c0:
7f:fd:fa:07:f5:f5:6e:88:79:95:47:15:62:5c:e5:
10:88:68:43:b3:6e:4d:b4:6a:06:30:be:51:d1:d1:
77:53:36:f8:3b:04:93:7d:cb:2c:e5:31:eb:e0:52:
e3:3a:a5:2b:ff:99:8f:af:0e:0d:0a:2d:ba:30:21:
ff:13:5d:c6:30:e9:ee:f1:67:ca:53:8c:fb:eb:f5:
14:7c:80:d4:5e:22:af:e3:d2:09:cb:4b:dc:a4:e9:
9c:06:a3:cb:60:5d:7f:eb:42:55:9a:94:11:d8:5d:
10:d3:11:55:60:13:51:f1:15:56:70:b6:a7:6b:4d:
ad:d7:b3:57:cc:66:ea:fa:0e:f0:3c:d9:1b:bb:9b:
ea:fb:08:d1:6e:d4:67:9f:5f:15:c5:29:cc:ec:b5:
f2:59:db:65:23:4b:33:e6:68:19:80:a1:cd:f8:17:
85:b6:e9:e5:37:56:ef:ea:2c:0b:65:c7:82:52:48:
4c:4c:6e:a8:03:d8:a2:98:c1:26:bb:84:e7:8c:75:
ef:37:c4:95:a8:21:e3:c4:25:49:e2:33:34:83:b3:
7c:7c:8d:73:9c:64:a4:06:3b:1c:40:25:f1:21:1c:
95:1f:b2:f8:9c:86:56:a9:a1:55:79:68:9e:e0:a9:
10:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:B6:04:52:A8:60:93:C6:76:FD:B7:4F:A7:90:53:5F:48:5C:30:91
X509v3 Authority Key Identifier:
keyid:C4:0F:95:E9:7D:83:2F:0F:57:6D:13:EE:35:AE:B3:D7:5A:5D:30:D4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F363C3E1/AAC01F88821611E9BD1EFE3CF8AEA228/xA-V6X2DLw9XbRPuNa6z11pdMNQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/xA-V6X2DLw9XbRPuNa6z11pdMNQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F363C3E1/AAC01F88821611E9BD1EFE3CF8AEA228/14F8A0E8AB6B11ECABB679CF5A40D577.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.22.32.0/19
IPv6:
2c0f:f478::/32
Signature Algorithm: sha256WithRSAEncryption
6e:09:68:e5:cd:ff:ae:ae:ad:cf:90:12:11:63:03:0b:fc:a0:
3f:be:46:1f:43:d7:b0:5b:ae:3c:90:81:2a:b4:87:37:96:9e:
be:80:b9:f4:d5:33:91:32:a9:98:60:55:9a:e4:52:5c:da:83:
41:34:14:7c:fd:93:6a:71:4b:c9:6f:52:1d:36:0f:73:7b:6d:
9f:15:42:5a:7b:9e:69:95:83:be:6a:b6:5d:1d:e3:0f:99:ea:
3d:20:12:d8:95:aa:3a:6e:07:48:78:06:49:23:9e:36:0f:47:
0c:c4:7b:40:d4:97:3a:6b:c7:7e:e1:49:eb:9a:73:3e:63:b1:
55:45:ad:4a:e6:65:7c:1a:d6:d1:14:a2:97:4f:79:5b:11:7e:
b2:a2:ad:52:20:12:ca:89:4e:ef:79:55:b1:15:dc:9f:90:01:
15:84:81:f2:dc:d9:9e:40:45:b2:08:9f:05:cc:b3:74:6a:dc:
f4:fe:7c:71:b6:3a:3e:36:20:4e:62:ae:c9:45:de:dc:21:45:
11:eb:ca:c0:f0:70:b6:39:e6:13:01:62:ed:96:ee:0d:b4:46:
21:d9:73:e6:f6:a5:99:73:d1:32:bc:c1:29:43:03:2c:3d:86:
dd:0a:4c:78:1d:fd:09:38:61:5c:b6:3a:76:a6:fd:fe:b8:65:
0f:d5:64:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:08:53 2024 by rpki-client on console-fra.rpki-client.org