Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F364712F/E9C4BAA2A0E811EB88958D10F8AEA228/88C7F19A463A11EC8A6DCA15D8A014CE.roa
File: 88C7F19A463A11EC8A6DCA15D8A014CE.roa (raw, json)
Hash identifier: anrHJdrDwUVVxzqA0H5Lv7h5BhwjhCFTP0rDmIVAs5g=
Subject key identifier: 6D:82:F2:7C:94:B7:F5:58:6B:9D:50:F2:A9:4C:64:F2:09:0C:F4:74
Certificate issuer: /CN=F364712FAF/serialNumber=3D55C784EA17912F0E960A25C6CA920E1002300A
Certificate serial: FE
Authority key identifier: 3D:55:C7:84:EA:17:91:2F:0E:96:0A:25:C6:CA:92:0E:10:02:30:0A
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/PVXHhOoXkS8OlgolxsqSDhACMAo.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F364712F/E9C4BAA2A0E811EB88958D10F8AEA228/88C7F19A463A11EC8A6DCA15D8A014CE.roa
Signing time: Mon 15 Nov 2021 17:36:16 +0000
ROA not before: Mon 15 Nov 2021 17:36:12 +0000
ROA not after: Sat 15 Nov 2031 17:36:12 +0000
asID: 36994
IP address blocks: 105.246.0.0/16 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F364712F/E9C4BAA2A0E811EB88958D10F8AEA228/PVXHhOoXkS8OlgolxsqSDhACMAo.crl
rsync://rpki.afrinic.net/repository/member_repository/F364712F/E9C4BAA2A0E811EB88958D10F8AEA228/PVXHhOoXkS8OlgolxsqSDhACMAo.mft
rsync://rpki.afrinic.net/repository/afrinic/PVXHhOoXkS8OlgolxsqSDhACMAo.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 21 Feb 2025 01:42:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 254 (0xfe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F364712FAF
Validity
Not Before: Nov 15 17:36:12 2021 GMT
Not After : Nov 15 17:36:12 2031 GMT
Subject: CN=61929a90-f903
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:3f:ea:07:2f:8f:cc:5d:bb:b2:20:15:b3:38:
fb:4c:d5:da:6b:b9:d4:d5:6d:d9:90:52:90:7b:6d:
c9:3a:06:6b:85:a1:f7:13:4f:66:c5:99:79:b9:6d:
fe:b0:c2:82:b8:91:77:be:3e:40:6e:a8:e8:14:bf:
04:b3:ce:eb:7b:9f:c8:f5:a9:9c:0f:56:e7:07:d1:
1d:34:d1:98:a1:63:b2:cc:90:12:b0:41:44:76:a4:
79:3c:86:d2:f3:f3:3b:12:2a:f6:73:fe:ab:92:12:
98:cd:93:79:f8:68:b8:16:8d:a8:10:ba:21:db:df:
81:2a:96:2a:24:58:c2:69:8b:93:98:3b:e8:06:12:
2a:61:89:44:b7:6e:b8:fa:c1:d8:6a:26:a2:17:c8:
ff:4b:4c:24:9a:d5:3d:d9:5b:29:81:29:d1:a5:fc:
ba:55:a4:76:95:c3:91:39:f1:f9:d5:36:12:90:b0:
60:5e:30:e8:d5:21:50:fe:7e:fe:ef:f0:82:dd:ca:
b3:5b:c0:3a:f6:8a:f3:07:d9:de:27:21:1d:3c:9e:
37:e2:20:32:62:8b:70:60:2b:78:fd:fa:ec:3f:f8:
35:01:41:1a:a5:aa:ce:ac:f3:90:56:97:5d:b2:5d:
c4:6c:64:9b:05:42:ac:66:78:a7:7b:35:79:69:44:
c8:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:82:F2:7C:94:B7:F5:58:6B:9D:50:F2:A9:4C:64:F2:09:0C:F4:74
X509v3 Authority Key Identifier:
keyid:3D:55:C7:84:EA:17:91:2F:0E:96:0A:25:C6:CA:92:0E:10:02:30:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F364712F/E9C4BAA2A0E811EB88958D10F8AEA228/PVXHhOoXkS8OlgolxsqSDhACMAo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/PVXHhOoXkS8OlgolxsqSDhACMAo.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F364712F/E9C4BAA2A0E811EB88958D10F8AEA228/88C7F19A463A11EC8A6DCA15D8A014CE.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
105.246.0.0/16
Signature Algorithm: sha256WithRSAEncryption
64:aa:4e:55:ea:1d:26:9e:ec:6a:44:e0:51:7b:d6:5e:7f:ea:
e5:d1:f9:7b:36:ed:09:83:ee:e9:d5:53:89:29:a8:ff:38:80:
f0:38:5b:38:4e:09:d8:c5:3e:08:a0:13:b3:65:6d:ae:c7:20:
a2:fa:cf:22:a5:2c:0d:63:87:a4:75:d7:d1:57:e5:9a:d8:f5:
80:27:b5:29:93:1f:f5:d0:fe:c1:41:03:75:d1:b7:ff:9e:cb:
4e:5e:ae:ee:ab:89:f1:82:08:d9:ed:90:4a:7a:10:5a:6d:a9:
21:66:a9:f0:99:69:66:e1:65:a9:db:b7:83:4e:06:bd:19:c4:
80:5b:24:c2:e4:3b:17:73:1a:f5:08:b2:48:58:03:86:86:48:
a5:88:04:2f:21:22:93:6b:af:15:e0:11:01:10:f5:5f:69:3a:
97:77:c1:9d:42:b1:ee:1c:b9:0a:39:89:f8:ed:94:73:63:49:
bb:d1:02:f5:0b:a6:ca:ff:63:fe:62:df:28:79:4d:40:32:8e:
39:d2:c4:d0:a0:be:a7:64:9b:0a:18:a9:4a:73:d8:1f:70:cb:
2e:ad:65:6b:ba:94:84:eb:5e:91:6c:9b:09:0a:f8:47:20:a2:
1d:13:c9:ad:2a:0e:3a:01:9d:ed:1a:03:ed:4c:3c:64:a9:98:
cb:93:27:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 20:46:36 2025 by rpki-client