Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F363D469/4468EECA9BF511EDBA51D1A3F1222468/F2F6D3C69C4A11EDA363D193F1222468.roa
File: F2F6D3C69C4A11EDA363D193F1222468.roa (raw, json)
Hash identifier: KT17pd2nQjFMAiBQ3exlqZDkST3WgPMfNK/ecqBV9t4=
Subject key identifier: 35:9F:6E:62:CE:9C:58:3B:F6:18:CE:DA:C9:D4:3E:A0:E6:EB:EA:3B
Certificate issuer: /CN=F363D469AF/serialNumber=B81EA23A178F6080E7D80EF306B004E9A1DCE110
Certificate serial: 06
Authority key identifier: B8:1E:A2:3A:17:8F:60:80:E7:D8:0E:F3:06:B0:04:E9:A1:DC:E1:10
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/uB6iOhePYIDn2A7zBrAE6aHc4RA.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F363D469/4468EECA9BF511EDBA51D1A3F1222468/F2F6D3C69C4A11EDA363D193F1222468.roa
Signing time: Wed 25 Jan 2023 00:55:24 +0000
ROA not before: Thu 26 Jan 2023 00:00:20 +0000
ROA not after: Thu 01 Dec 2033 00:00:20 +0000
asID: 328253
IP address blocks: 102.68.176.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F363D469/4468EECA9BF511EDBA51D1A3F1222468/uB6iOhePYIDn2A7zBrAE6aHc4RA.crl
rsync://rpki.afrinic.net/repository/member_repository/F363D469/4468EECA9BF511EDBA51D1A3F1222468/uB6iOhePYIDn2A7zBrAE6aHc4RA.mft
rsync://rpki.afrinic.net/repository/afrinic/uB6iOhePYIDn2A7zBrAE6aHc4RA.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 30 May 2024 00:04:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6 (0x6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F363D469AF/serialNumber=B81EA23A178F6080E7D80EF306B004E9A1DCE110
Validity
Not Before: Jan 26 00:00:20 2023 GMT
Not After : Dec 1 00:00:20 2033 GMT
Subject: CN=63d07dfc-21f5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:f9:cb:1d:5c:e7:d5:62:7a:bc:db:d8:f4:aa:
a1:49:4a:e1:b3:77:91:97:75:72:95:d3:28:ea:16:
d7:54:5c:02:f4:3e:a8:34:19:12:74:d2:48:70:b2:
77:e6:b1:ef:07:42:c4:3b:e1:8c:50:52:81:cb:bf:
93:9f:82:60:44:98:2c:9a:d3:43:f4:b9:ae:31:53:
58:1b:65:64:0a:c7:f6:49:77:eb:80:3c:71:07:3b:
1f:fa:a1:8f:a9:dc:8b:4a:0b:bd:c6:ca:e6:30:fb:
3a:95:17:59:7a:0f:68:1c:45:9e:1f:3c:ff:4e:54:
5e:a5:c0:f4:f3:fa:1a:40:78:3d:aa:65:27:4b:ff:
3b:e9:52:bd:ac:d0:8d:52:97:c8:41:a3:59:0a:62:
0f:5e:9e:88:4d:d6:39:b0:6c:6c:af:45:72:09:8e:
77:f3:61:ce:14:ab:6f:0b:28:84:88:3f:c3:5d:0d:
fc:f5:17:6a:10:4f:fc:ae:f9:86:66:c8:37:de:23:
83:80:07:34:cf:cd:8b:c2:86:c7:31:c3:79:6c:d4:
41:5a:c9:3a:d3:a7:5c:99:2a:ef:43:6a:ba:ed:f2:
11:75:2e:f0:9a:9e:7d:4a:b8:1c:9a:1c:ef:b8:59:
cc:54:ef:44:1c:91:57:53:35:16:1d:62:a2:52:9c:
a1:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:9F:6E:62:CE:9C:58:3B:F6:18:CE:DA:C9:D4:3E:A0:E6:EB:EA:3B
X509v3 Authority Key Identifier:
keyid:B8:1E:A2:3A:17:8F:60:80:E7:D8:0E:F3:06:B0:04:E9:A1:DC:E1:10
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F363D469/4468EECA9BF511EDBA51D1A3F1222468/uB6iOhePYIDn2A7zBrAE6aHc4RA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/uB6iOhePYIDn2A7zBrAE6aHc4RA.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F363D469/4468EECA9BF511EDBA51D1A3F1222468/F2F6D3C69C4A11EDA363D193F1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.68.176.0/23
Signature Algorithm: sha256WithRSAEncryption
b6:b5:60:4f:37:7e:c2:79:8a:2f:bc:7f:56:cb:f6:a1:85:f6:
35:2d:0b:2e:61:96:31:7a:40:bd:6f:16:95:f3:9d:41:94:aa:
82:83:1c:be:ef:10:55:2b:f0:45:7f:e2:c0:10:84:16:5b:3d:
dd:6c:99:ef:ce:a1:a3:08:c5:7f:5c:da:23:cb:ab:7d:7f:66:
3a:5a:02:3e:71:99:d3:33:81:42:f9:fe:a8:95:85:b9:45:84:
c0:f4:1c:4e:31:15:f8:63:8e:9b:a4:83:70:66:46:a3:99:c2:
de:3d:40:51:af:ba:46:98:37:90:27:7d:a9:50:90:fe:09:1a:
9f:24:48:29:fa:33:e8:27:ff:0a:f8:9a:92:03:aa:8d:1a:42:
d2:a4:c5:78:25:50:47:7c:4e:23:a6:b0:76:21:b5:f2:e8:6e:
fd:bf:2e:38:ca:64:d4:43:42:4c:f5:e8:38:b4:39:c9:57:9e:
f4:a8:3a:9e:53:3a:d6:5d:d8:4a:78:df:ca:37:c0:71:06:f2:
ed:b5:ed:76:81:f1:d2:5c:fb:3e:46:d1:9d:3e:52:4d:1b:03:
b2:e8:b2:8e:ca:39:af:93:9d:8c:cb:94:6a:d6:12:d5:13:42:
75:2d:72:41:f7:1d:da:32:e1:d6:a9:bc:d9:78:62:61:10:e1:
5c:45:9a:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 28 04:28:54 2024 by rpki-client on console-ams.rpki-client.org