Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F364B494/38F78A12329411ED96CD57A5F1222468/7E6D0BDA329411ED83690DA6F1222468.roa
File: 7E6D0BDA329411ED83690DA6F1222468.roa (raw, json)
Hash identifier: 9vBXav7hVf2XlLbTRQ+k6U2z6DcdpesgBwg/u89dKXo=
Subject key identifier: C5:B9:64:51:6D:D8:9B:EB:D5:F6:CB:8F:E1:3E:98:E0:C1:A7:94:40
Certificate issuer: /CN=F364B494AF/serialNumber=FB0923F869D52E333802B9C53D78B3BA865430CC
Certificate serial: 02
Authority key identifier: FB:09:23:F8:69:D5:2E:33:38:02:B9:C5:3D:78:B3:BA:86:54:30:CC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/-wkj-GnVLjM4ArnFPXizuoZUMMw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F364B494/38F78A12329411ED96CD57A5F1222468/7E6D0BDA329411ED83690DA6F1222468.roa
Signing time: Mon 12 Sep 2022 12:14:48 +0000
ROA not before: Mon 12 Sep 2022 12:14:36 +0000
ROA not after: Fri 31 Dec 2032 12:14:36 +0000
asID: 327872
IP address blocks: 102.219.88.0/22 maxlen: 24
196.250.128.0/19 maxlen: 24
2c0f:f4c8::/32 maxlen: 48
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F364B494/38F78A12329411ED96CD57A5F1222468/-wkj-GnVLjM4ArnFPXizuoZUMMw.crl
rsync://rpki.afrinic.net/repository/member_repository/F364B494/38F78A12329411ED96CD57A5F1222468/-wkj-GnVLjM4ArnFPXizuoZUMMw.mft
rsync://rpki.afrinic.net/repository/afrinic/-wkj-GnVLjM4ArnFPXizuoZUMMw.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 21 May 2024 00:04:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2 (0x2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F364B494AF/serialNumber=FB0923F869D52E333802B9C53D78B3BA865430CC
Validity
Not Before: Sep 12 12:14:36 2022 GMT
Not After : Dec 31 12:14:36 2032 GMT
Subject: CN=631f22b7-86ee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:19:29:9d:74:69:44:58:5c:96:d4:4f:86:00:
f6:a2:96:60:81:96:25:1b:99:f4:21:4d:20:a5:27:
76:da:5a:8e:1f:5f:b1:ac:78:cb:88:24:80:ac:ee:
22:1a:84:98:da:0b:81:a7:6a:ed:31:80:3e:61:6b:
03:14:fe:a8:af:2a:9a:fe:50:e5:22:ed:77:03:60:
43:b3:5e:6d:ea:52:ed:32:46:ce:2b:60:42:fb:03:
ce:cd:47:6a:8d:bf:0e:01:b2:08:e1:8c:f2:7b:36:
53:02:f2:1a:9d:f9:a8:a2:ad:34:94:65:9d:c6:ab:
5b:34:20:ce:e2:89:74:53:66:0e:c2:58:88:e3:82:
e4:fa:11:9c:6b:34:b6:23:71:58:3c:22:6b:51:1a:
33:5e:17:7f:69:9d:bf:c3:83:eb:39:79:50:92:44:
8f:d8:4f:ed:76:95:fe:09:83:db:eb:bd:ba:f4:ed:
be:da:77:3a:93:fd:8b:f1:b9:f0:69:ec:8c:e8:38:
76:30:b2:45:5e:a6:23:e5:70:ef:d3:2a:92:f3:9d:
b9:0b:b0:82:ad:d8:23:6e:89:cc:8f:28:0c:22:ab:
72:8b:bb:ac:1c:bc:dd:5d:9b:16:f6:75:e0:36:df:
87:ff:98:5b:10:71:63:92:b5:e2:a5:ab:2a:ca:a5:
7d:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:B9:64:51:6D:D8:9B:EB:D5:F6:CB:8F:E1:3E:98:E0:C1:A7:94:40
X509v3 Authority Key Identifier:
keyid:FB:09:23:F8:69:D5:2E:33:38:02:B9:C5:3D:78:B3:BA:86:54:30:CC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F364B494/38F78A12329411ED96CD57A5F1222468/-wkj-GnVLjM4ArnFPXizuoZUMMw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/-wkj-GnVLjM4ArnFPXizuoZUMMw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F364B494/38F78A12329411ED96CD57A5F1222468/7E6D0BDA329411ED83690DA6F1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.219.88.0/22
196.250.128.0/19
IPv6:
2c0f:f4c8::/32
Signature Algorithm: sha256WithRSAEncryption
31:e2:94:c6:b6:92:09:94:15:2c:b6:1c:14:0d:94:fd:c5:fa:
b3:96:97:79:aa:55:75:3d:bd:35:41:1c:94:ac:65:3c:5b:88:
1f:8f:dd:b8:1d:f7:1a:e4:48:d5:7a:44:b8:11:65:99:59:2f:
37:10:5d:27:fe:fe:52:28:6c:8f:da:6f:df:1c:25:82:8b:c3:
2a:d8:12:9a:2a:b0:5f:89:bd:2e:22:6b:06:b9:4b:66:82:6c:
f3:95:7e:ff:23:fa:3a:b0:4f:fd:af:8c:50:4c:c6:c1:6f:07:
30:eb:bf:d5:f1:f3:e1:a1:e7:59:2c:ce:15:4b:e8:20:c6:a8:
29:5d:20:ee:a2:e2:f9:50:6c:97:56:0c:05:97:2f:7d:86:d0:
9a:a2:40:15:76:f2:58:62:31:4f:01:9e:ca:f4:0f:0b:c2:c2:
56:b6:a9:50:68:7f:c3:04:1d:2a:0b:ec:31:37:fe:9d:53:55:
6f:67:8d:dd:aa:44:2d:9a:22:a1:ad:72:67:39:a0:63:93:c0:
50:76:fa:c4:3a:d2:4d:f6:9a:ab:d0:a1:21:b4:09:4c:4f:d9:
eb:46:94:c5:a7:a9:2f:d1:6f:70:c7:1b:5c:75:fb:fc:ae:d3:
74:5b:63:ce:25:30:76:1c:58:00:aa:50:4f:e6:72:e4:9d:95:
7b:ec:24:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 19 02:58:53 2024 by rpki-client on console-ams.rpki-client.org