Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F363D469/4468EECA9BF511EDBA51D1A3F1222468/A49AEBF49C4A11ED8889C092F1222468.roa
File: A49AEBF49C4A11ED8889C092F1222468.roa (raw, json)
Hash identifier: Hjh+cNH65SUWuICHVLU9SeRPx4NPulRYf6OVRg3lUc8=
Subject key identifier: 77:64:79:22:39:17:B8:02:32:8A:5A:30:A9:F4:A5:64:4D:D8:A3:37
Certificate issuer: /CN=F363D469AF/serialNumber=B81EA23A178F6080E7D80EF306B004E9A1DCE110
Certificate serial: 04
Authority key identifier: B8:1E:A2:3A:17:8F:60:80:E7:D8:0E:F3:06:B0:04:E9:A1:DC:E1:10
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/uB6iOhePYIDn2A7zBrAE6aHc4RA.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F363D469/4468EECA9BF511EDBA51D1A3F1222468/A49AEBF49C4A11ED8889C092F1222468.roa
Signing time: Wed 25 Jan 2023 00:53:12 +0000
ROA not before: Thu 26 Jan 2023 00:00:08 +0000
ROA not after: Thu 01 Dec 2033 00:00:08 +0000
asID: 328253
IP address blocks: 102.222.204.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F363D469/4468EECA9BF511EDBA51D1A3F1222468/uB6iOhePYIDn2A7zBrAE6aHc4RA.crl
rsync://rpki.afrinic.net/repository/member_repository/F363D469/4468EECA9BF511EDBA51D1A3F1222468/uB6iOhePYIDn2A7zBrAE6aHc4RA.mft
rsync://rpki.afrinic.net/repository/afrinic/uB6iOhePYIDn2A7zBrAE6aHc4RA.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 21 May 2024 00:04:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4 (0x4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F363D469AF/serialNumber=B81EA23A178F6080E7D80EF306B004E9A1DCE110
Validity
Not Before: Jan 26 00:00:08 2023 GMT
Not After : Dec 1 00:00:08 2033 GMT
Subject: CN=63d07d78-18e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:fc:9c:68:b0:37:d3:a9:db:e8:b9:3a:93:02:
35:17:8b:e7:ee:34:1e:ea:65:75:d4:ee:9d:48:ff:
65:65:5d:f5:43:9c:b2:a4:ef:67:82:48:4e:2d:90:
04:f9:74:f6:a9:f9:8b:c8:55:ac:f7:38:c4:f4:fa:
c9:fb:85:af:47:43:07:68:bb:89:96:08:96:4b:ae:
83:5e:21:50:e6:5b:c9:40:d5:f1:7a:c1:db:22:bd:
1c:0e:89:69:f7:e9:63:bf:ba:3f:b2:70:ce:b7:d8:
94:ff:d9:39:06:14:b1:43:07:cc:92:bc:9b:1a:40:
6e:3d:bc:1b:f9:75:ae:a2:ad:9d:08:d2:ac:36:46:
cb:ab:76:81:39:45:d1:2a:20:43:d5:f6:81:df:34:
ce:2b:60:20:45:06:ce:56:88:7f:5e:a2:10:dd:7a:
b5:1d:a6:9c:e4:33:d8:0c:f0:a3:ae:d7:bb:1b:de:
db:04:c2:14:e4:40:9e:b4:1a:95:db:61:31:2d:99:
fe:34:92:38:a6:8b:1b:34:ab:8d:89:89:98:dd:b2:
72:ab:3c:b2:a8:56:8e:00:38:a4:83:40:36:57:72:
de:0e:12:fa:c8:b7:e0:b4:fe:94:94:62:33:7a:8b:
5d:4a:71:f1:68:8d:51:01:44:56:99:6b:45:3e:50:
34:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:64:79:22:39:17:B8:02:32:8A:5A:30:A9:F4:A5:64:4D:D8:A3:37
X509v3 Authority Key Identifier:
keyid:B8:1E:A2:3A:17:8F:60:80:E7:D8:0E:F3:06:B0:04:E9:A1:DC:E1:10
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F363D469/4468EECA9BF511EDBA51D1A3F1222468/uB6iOhePYIDn2A7zBrAE6aHc4RA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/uB6iOhePYIDn2A7zBrAE6aHc4RA.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F363D469/4468EECA9BF511EDBA51D1A3F1222468/A49AEBF49C4A11ED8889C092F1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.222.204.0/22
Signature Algorithm: sha256WithRSAEncryption
67:79:87:2c:68:b8:42:93:aa:6a:70:c6:d8:c6:48:97:9a:cd:
8f:81:d5:48:d4:76:13:64:fc:ba:c6:6a:50:32:e2:a4:7f:56:
72:79:23:6d:17:34:04:6d:65:9e:6f:f8:7d:f1:da:57:08:3b:
33:74:0c:b8:c9:47:e0:f1:64:c5:6e:31:7c:8c:b7:47:21:9f:
63:e1:3e:50:9f:9c:5e:93:c1:56:e4:2c:fe:6a:1c:00:c3:1c:
99:6e:7b:26:27:7a:78:03:01:f8:ef:02:b8:e6:c9:5d:1c:14:
09:a2:4b:04:05:61:b9:1e:1d:7c:d3:e6:74:7b:0a:e1:3b:ec:
01:f3:2f:32:c1:db:71:d0:7b:a0:e2:c8:48:f8:b4:f9:cf:b7:
6e:5c:8d:f8:da:a0:88:36:09:2b:a9:49:2a:24:81:91:ba:a0:
fc:e9:59:52:e6:5a:ce:3a:17:d5:9b:e2:69:f7:f1:29:16:95:
c8:0d:eb:7c:71:fc:61:c3:17:7e:59:1d:af:9a:eb:e2:e2:1b:
0d:be:c1:e8:75:c8:61:c9:7a:f2:3c:c6:03:8d:e7:24:f4:db:
22:57:c9:69:a1:85:70:0b:38:0f:82:11:8a:b3:46:16:d2:55:
41:52:4c:c0:b7:bb:74:89:2c:73:0c:04:10:56:5c:f2:32:98:
13:f6:37:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 19 02:58:50 2024 by rpki-client on console-ams.rpki-client.org