Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3645721/4D8578E037FD11EDB8A2ADF9F1222468/68F04452BF2E11EEB8BC67B5775412E6.roa
File: 68F04452BF2E11EEB8BC67B5775412E6.roa (raw, json)
Hash identifier: UaIFMI+EAxlvctjyv1TCRjt/oHPIwIYRacpeQ9D+Rvc=
Subject key identifier: 9A:20:77:3F:E1:5C:2A:92:A0:CF:62:CA:8B:10:30:3F:A5:B3:14:0E
Certificate issuer: /CN=F3645721AF/serialNumber=87F3ADC3A50A77763836AE8E37F5D938695711CA
Certificate serial: 021A
Authority key identifier: 87:F3:AD:C3:A5:0A:77:76:38:36:AE:8E:37:F5:D9:38:69:57:11:CA
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/h_Otw6UKd3Y4Nq6ON_XZOGlXEco.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3645721/4D8578E037FD11EDB8A2ADF9F1222468/68F04452BF2E11EEB8BC67B5775412E6.roa
Signing time: Tue 30 Jan 2024 05:14:15 +0000
ROA not before: Wed 31 Jan 2024 05:14:10 +0000
ROA not after: Sat 01 Feb 2025 05:14:10 +0000
asID: 328271
IP address blocks: 102.22.208.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3645721/4D8578E037FD11EDB8A2ADF9F1222468/h_Otw6UKd3Y4Nq6ON_XZOGlXEco.crl
rsync://rpki.afrinic.net/repository/member_repository/F3645721/4D8578E037FD11EDB8A2ADF9F1222468/h_Otw6UKd3Y4Nq6ON_XZOGlXEco.mft
rsync://rpki.afrinic.net/repository/afrinic/h_Otw6UKd3Y4Nq6ON_XZOGlXEco.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 26 May 2024 00:04:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 538 (0x21a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3645721AF/serialNumber=87F3ADC3A50A77763836AE8E37F5D938695711CA
Validity
Not Before: Jan 31 05:14:10 2024 GMT
Not After : Feb 1 05:14:10 2025 GMT
Subject: CN=65b885a6-eed3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:a7:cc:ba:92:f9:60:b9:9a:4b:8e:4a:fe:30:
41:82:4c:99:33:16:00:99:ab:cd:ce:34:b4:0b:6c:
a4:09:8c:2a:08:89:8a:98:21:1d:df:05:2b:d5:22:
c4:f6:3c:09:5e:54:db:fc:a2:c6:9c:25:d1:41:f6:
0c:36:a9:d1:ac:a4:e4:fb:16:ab:f8:06:a7:f9:d1:
6b:27:e6:d4:db:e4:0f:10:7f:9f:ab:6b:a8:9c:b7:
22:8a:1d:c6:f2:ac:bd:f0:73:64:f4:5d:93:89:cf:
19:8b:14:35:4b:56:ff:b2:a9:e2:1f:08:c9:b0:e8:
93:a5:b2:b2:f3:2b:fa:6c:15:57:07:d4:c8:3a:8f:
ce:e5:63:2b:25:28:e7:5b:ff:02:32:27:61:0c:13:
a8:96:66:27:3f:5e:11:82:d8:ee:c0:be:ae:dd:be:
06:32:ea:05:cf:1e:f5:88:f9:cc:28:27:66:bd:68:
1e:4c:5d:44:8b:29:cf:b9:4b:34:14:7d:e6:f3:17:
20:3f:2e:15:0a:7d:5a:0b:bd:e2:73:20:49:55:74:
26:d5:22:23:71:ea:9e:59:3b:2d:bd:e7:c3:87:bd:
eb:ea:48:49:ed:d9:5e:f1:2e:37:ac:bd:b9:0e:c0:
be:63:05:c1:74:c6:07:6c:fe:8a:cf:b4:17:f4:71:
60:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:20:77:3F:E1:5C:2A:92:A0:CF:62:CA:8B:10:30:3F:A5:B3:14:0E
X509v3 Authority Key Identifier:
keyid:87:F3:AD:C3:A5:0A:77:76:38:36:AE:8E:37:F5:D9:38:69:57:11:CA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3645721/4D8578E037FD11EDB8A2ADF9F1222468/h_Otw6UKd3Y4Nq6ON_XZOGlXEco.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/h_Otw6UKd3Y4Nq6ON_XZOGlXEco.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3645721/4D8578E037FD11EDB8A2ADF9F1222468/68F04452BF2E11EEB8BC67B5775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.22.208.0/24
Signature Algorithm: sha256WithRSAEncryption
53:dc:91:37:1a:63:7d:e3:bb:c4:ac:ef:6f:4d:63:c2:7d:91:
1a:3f:cd:00:d4:4b:31:9b:22:12:da:98:b1:c7:14:57:fc:e8:
e3:ee:40:41:74:41:28:23:41:5c:65:ad:85:4f:1d:c1:80:1d:
9a:f6:d6:d0:d0:e8:e8:77:4a:52:0f:b3:85:1d:70:af:b9:2f:
59:f3:a4:9c:34:e2:10:85:c5:3b:63:1d:d1:69:08:31:b5:05:
25:f1:71:30:85:de:18:08:b5:da:29:99:ed:2b:ea:a3:15:8b:
49:f2:16:ee:a7:10:2b:91:e0:bb:58:73:7c:de:21:d0:1e:e0:
ca:d3:60:d4:3a:82:d0:0a:48:c4:17:7b:86:a3:1b:0c:7e:60:
3e:9e:8e:50:39:3a:cf:99:44:3b:17:83:8f:ab:d3:a1:d1:06:
61:7f:2e:17:c1:3b:89:cd:48:1d:80:66:30:36:dd:aa:68:25:
9a:ec:15:3c:2c:85:cb:c1:fa:ba:74:5a:59:55:33:6f:50:4f:
41:a6:f0:7f:bb:c4:f3:10:00:53:49:6e:4e:a1:bd:fc:62:29:
e5:0d:7b:26:5e:65:32:85:0b:3b:03:3d:67:10:70:e8:77:f8:
79:17:3d:80:33:c0:10:34:93:c7:17:55:c3:b6:33:1a:9f:51:
74:b6:a6:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 24 04:35:50 2024 by rpki-client on console-ams.rpki-client.org