Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3645721/4D8578E037FD11EDB8A2ADF9F1222468/10FEDB9C803611ED8B30D384F1222468.roa
File: 10FEDB9C803611ED8B30D384F1222468.roa (raw, json)
Hash identifier: Zuz3Z3Zh4kEspw4Fvyx7IOTvoGx4xXCHSoqMncPbPRw=
Subject key identifier: BA:9D:03:21:E7:C5:2D:26:33:78:75:A0:24:B6:5F:8C:DF:9E:51:62
Certificate issuer: /CN=F3645721AF/serialNumber=87F3ADC3A50A77763836AE8E37F5D938695711CA
Certificate serial: 62
Authority key identifier: 87:F3:AD:C3:A5:0A:77:76:38:36:AE:8E:37:F5:D9:38:69:57:11:CA
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/h_Otw6UKd3Y4Nq6ON_XZOGlXEco.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3645721/4D8578E037FD11EDB8A2ADF9F1222468/10FEDB9C803611ED8B30D384F1222468.roa
Signing time: Tue 20 Dec 2022 07:15:22 +0000
ROA not before: Tue 20 Dec 2022 07:15:18 +0000
ROA not after: Fri 20 Dec 2024 07:15:18 +0000
asID: 328271
IP address blocks: 102.22.208.0/21 maxlen: 21
102.22.212.0/24 maxlen: 24
102.22.213.0/24 maxlen: 24
102.22.214.0/24 maxlen: 24
102.22.215.0/24 maxlen: 24
102.176.180.0/22 maxlen: 22
102.176.180.0/24 maxlen: 24
102.176.181.0/24 maxlen: 24
102.176.182.0/24 maxlen: 24
102.176.183.0/24 maxlen: 24
2c0f:ee68::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3645721/4D8578E037FD11EDB8A2ADF9F1222468/h_Otw6UKd3Y4Nq6ON_XZOGlXEco.crl
rsync://rpki.afrinic.net/repository/member_repository/F3645721/4D8578E037FD11EDB8A2ADF9F1222468/h_Otw6UKd3Y4Nq6ON_XZOGlXEco.mft
rsync://rpki.afrinic.net/repository/afrinic/h_Otw6UKd3Y4Nq6ON_XZOGlXEco.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 20 May 2024 00:04:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 98 (0x62)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3645721AF/serialNumber=87F3ADC3A50A77763836AE8E37F5D938695711CA
Validity
Not Before: Dec 20 07:15:18 2022 GMT
Not After : Dec 20 07:15:18 2024 GMT
Subject: CN=63a1610a-7b8c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:7e:80:de:1a:4c:15:c4:b8:4b:ef:b1:7c:5b:
88:13:6c:ca:7f:60:44:a1:4e:58:c6:7d:8c:b7:3e:
d0:5e:66:56:38:7c:c8:24:cb:ec:be:fe:c4:e2:d9:
9f:b1:77:72:bf:f3:37:96:10:f8:44:5a:08:d2:d2:
e7:e5:bc:00:2d:8e:66:3f:77:b6:7f:29:11:14:f7:
88:21:1b:1c:2b:8a:4e:27:0d:41:d4:e2:fc:c7:3e:
2e:a4:96:3d:b1:59:8e:83:8b:9b:a1:4a:08:7b:ff:
f4:35:f7:9a:e3:1d:de:7e:16:7a:56:1b:b8:1b:c2:
7d:2d:a2:87:45:47:bd:a3:02:09:3b:f7:c2:48:dc:
f5:b0:b6:5e:07:57:8b:40:3b:33:e8:f0:a6:aa:23:
41:67:98:a6:2b:15:dc:c4:c2:0a:61:ae:c1:2f:ab:
75:57:1d:8f:fc:47:20:61:c9:47:fd:9b:51:28:4b:
98:ca:dc:5c:80:f7:65:13:c2:7d:b0:3d:28:7a:28:
5e:a0:8c:4f:22:1b:8d:4d:42:b5:5c:29:a7:6a:30:
90:f7:81:97:c4:47:b3:75:bd:e1:07:42:e3:14:33:
4b:77:a3:07:c6:8e:ab:a8:c6:5f:ba:fb:e9:17:30:
d5:44:66:da:99:9c:2e:30:76:0e:08:74:fa:be:bb:
ac:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:9D:03:21:E7:C5:2D:26:33:78:75:A0:24:B6:5F:8C:DF:9E:51:62
X509v3 Authority Key Identifier:
keyid:87:F3:AD:C3:A5:0A:77:76:38:36:AE:8E:37:F5:D9:38:69:57:11:CA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3645721/4D8578E037FD11EDB8A2ADF9F1222468/h_Otw6UKd3Y4Nq6ON_XZOGlXEco.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/h_Otw6UKd3Y4Nq6ON_XZOGlXEco.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3645721/4D8578E037FD11EDB8A2ADF9F1222468/10FEDB9C803611ED8B30D384F1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.22.208.0/21
102.176.180.0/22
IPv6:
2c0f:ee68::/32
Signature Algorithm: sha256WithRSAEncryption
35:0f:40:e3:89:c9:06:3c:ae:a0:18:46:5b:98:16:f8:1a:a6:
a4:14:e1:aa:c5:01:f3:98:3c:93:73:c7:e2:1c:41:19:4b:d4:
a4:86:31:08:45:92:38:7a:70:6c:c1:db:82:4f:7e:f7:ef:08:
d4:c2:94:4d:1e:dc:37:05:17:ad:68:13:66:20:23:b1:15:40:
d6:de:32:4c:73:4f:34:2c:17:e9:8a:d0:c4:48:ea:a8:08:3f:
20:df:d2:c0:01:7c:64:6c:04:6d:0c:d0:ca:21:cf:c5:97:60:
b3:1f:56:12:91:19:30:7c:c0:e1:ce:dd:86:c6:7f:f1:79:58:
8d:3f:19:46:82:e1:b0:d9:22:94:e2:44:55:9e:d4:67:ff:95:
26:3b:f4:24:0b:fa:2d:94:aa:f4:5b:29:5e:87:ca:12:d3:54:
7b:1f:97:ef:27:c9:20:7a:6e:4c:b8:cc:9c:fb:c4:8b:2d:06:
11:4e:54:02:75:64:b2:54:ac:5a:0f:96:95:71:a0:57:bb:94:
88:76:fd:4b:a4:06:e6:8a:bc:c8:fc:43:65:a0:97:04:ab:93:
e7:b2:25:f2:c1:69:75:ad:35:84:47:62:48:90:3d:d9:5b:9c:
03:8b:e2:09:89:79:6e:96:04:c1:57:4d:e1:82:53:57:dc:a8:
ad:ed:af:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 18 04:03:36 2024 by rpki-client on console-ams.rpki-client.org