Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F363D469/4468EECA9BF511EDBA51D1A3F1222468/2AE7EDC49C4B11ED968F7C94F1222468.roa
File: 2AE7EDC49C4B11ED968F7C94F1222468.roa (raw, json)
Hash identifier: 5OmAvjiEqUJnyteo7wlt/BRCjHQ6KGmWgxwrqsnVCGk=
Subject key identifier: C2:C2:1B:CF:32:8A:6E:4D:CA:BF:1D:C3:23:EE:C9:58:37:94:38:61
Certificate issuer: /CN=F363D469AF/serialNumber=B81EA23A178F6080E7D80EF306B004E9A1DCE110
Certificate serial: 08
Authority key identifier: B8:1E:A2:3A:17:8F:60:80:E7:D8:0E:F3:06:B0:04:E9:A1:DC:E1:10
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/uB6iOhePYIDn2A7zBrAE6aHc4RA.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F363D469/4468EECA9BF511EDBA51D1A3F1222468/2AE7EDC49C4B11ED968F7C94F1222468.roa
Signing time: Wed 25 Jan 2023 00:56:58 +0000
ROA not before: Thu 26 Jan 2023 00:00:54 +0000
ROA not after: Thu 01 Dec 2033 00:00:54 +0000
asID: 328253
IP address blocks: 102.68.178.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F363D469/4468EECA9BF511EDBA51D1A3F1222468/uB6iOhePYIDn2A7zBrAE6aHc4RA.crl
rsync://rpki.afrinic.net/repository/member_repository/F363D469/4468EECA9BF511EDBA51D1A3F1222468/uB6iOhePYIDn2A7zBrAE6aHc4RA.mft
rsync://rpki.afrinic.net/repository/afrinic/uB6iOhePYIDn2A7zBrAE6aHc4RA.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 21 Feb 2025 02:24:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8 (0x8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F363D469AF
Validity
Not Before: Jan 26 00:00:54 2023 GMT
Not After : Dec 1 00:00:54 2033 GMT
Subject: CN=63d07e59-932d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:08:74:32:a3:31:28:55:db:b6:e3:c2:ba:02:
a5:8d:26:24:e0:aa:ca:32:13:89:8d:bb:62:0b:0b:
6e:0a:ea:c0:30:10:d4:93:50:0f:21:b5:26:12:81:
b5:d8:5a:5c:7d:c1:b2:36:bf:78:9d:db:2e:6c:02:
44:90:e6:e1:22:54:d1:f8:89:94:4f:54:53:f2:47:
86:42:34:c8:8e:09:32:0c:ea:bb:bd:6c:97:b2:fb:
55:76:81:b0:e6:30:91:c5:0a:81:bb:1a:7d:fb:4d:
c2:b0:d7:e6:48:ba:63:3c:bb:a2:7c:29:27:a4:74:
55:37:3b:4b:75:fa:cf:83:03:61:62:c1:78:17:56:
93:1f:e9:9f:2e:c6:23:6e:80:e4:94:56:8e:ef:bc:
9d:c2:17:8b:18:17:40:93:3a:53:a3:c6:9d:4c:fd:
1e:f3:b5:03:4b:1e:67:7f:b5:87:e9:56:d4:d5:52:
2a:15:7d:24:f0:2d:7f:39:1b:53:ea:20:da:a4:b4:
2e:57:6c:22:25:ac:44:96:71:84:59:41:e4:dc:4f:
ba:7a:1c:db:e9:e9:5a:1f:e0:c0:5d:cd:53:6f:c1:
58:a4:c7:13:b8:c8:b2:ef:48:6e:9f:84:6f:44:28:
ed:8a:96:94:f0:cd:1d:5f:c7:36:06:46:b9:8c:57:
13:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:C2:1B:CF:32:8A:6E:4D:CA:BF:1D:C3:23:EE:C9:58:37:94:38:61
X509v3 Authority Key Identifier:
keyid:B8:1E:A2:3A:17:8F:60:80:E7:D8:0E:F3:06:B0:04:E9:A1:DC:E1:10
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F363D469/4468EECA9BF511EDBA51D1A3F1222468/uB6iOhePYIDn2A7zBrAE6aHc4RA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/uB6iOhePYIDn2A7zBrAE6aHc4RA.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F363D469/4468EECA9BF511EDBA51D1A3F1222468/2AE7EDC49C4B11ED968F7C94F1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.68.178.0/23
Signature Algorithm: sha256WithRSAEncryption
46:62:c2:6e:9d:4b:e2:bc:ec:c7:cc:e8:2c:84:64:4f:7c:13:
b3:0d:ce:ab:0b:d4:7a:41:19:ee:f5:14:07:f6:bd:d8:c0:c2:
e6:b5:79:52:ea:83:a6:1e:62:ab:d9:71:61:35:14:a7:9c:dc:
7b:99:8c:c4:b8:c9:f8:61:97:3c:a9:fc:2e:ba:53:23:33:55:
8a:9b:40:f3:c1:39:e2:54:b4:d6:cd:88:48:78:8c:69:b9:2c:
52:7c:db:6e:bf:15:03:ea:fb:83:dd:f7:2d:9f:03:c6:74:92:
c5:6b:b0:f8:b1:09:d8:97:4c:e3:44:ce:10:d8:f8:b7:db:9e:
ca:1a:c8:81:ec:b2:f7:0c:54:11:51:ee:24:fe:db:40:e0:07:
2c:a9:f8:40:e8:13:51:c8:a1:4c:23:0c:b6:7d:fb:b8:13:bc:
8f:97:ca:f6:58:ae:26:54:88:72:0f:cd:84:62:1b:09:23:bc:
05:d4:d4:e0:ec:d6:50:9b:b0:26:56:87:74:c3:2b:d7:7e:56:
74:b4:52:9c:af:fb:f9:52:5d:67:df:1e:6f:3b:79:21:68:0e:
18:ca:2b:d0:f2:0e:10:0a:68:91:ec:96:05:71:a4:e6:6a:9d:
fb:8b:e0:6e:bc:1f:42:7f:d7:dd:de:d8:8f:cd:d3:43:4a:08:
22:9f:ed:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 20:39:14 2025 by rpki-client