Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F364B494/38F78A12329411ED96CD57A5F1222468/83ACCE309C0411EDB12456CEF1222468.roa
File: 83ACCE309C0411EDB12456CEF1222468.roa (raw, json)
Hash identifier: TIYICNTcucn9WwS8nowmdJ5oP58ro1vC+nknb7WxgMg=
Subject key identifier: 19:2B:E1:54:A3:B0:3B:AE:A9:6F:8C:7A:10:90:8D:8E:9B:B6:CB:D4
Certificate issuer: /CN=F364B494AF/serialNumber=FB0923F869D52E333802B9C53D78B3BA865430CC
Certificate serial: 91
Authority key identifier: FB:09:23:F8:69:D5:2E:33:38:02:B9:C5:3D:78:B3:BA:86:54:30:CC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/-wkj-GnVLjM4ArnFPXizuoZUMMw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F364B494/38F78A12329411ED96CD57A5F1222468/83ACCE309C0411EDB12456CEF1222468.roa
Signing time: Tue 24 Jan 2023 16:31:12 +0000
ROA not before: Tue 24 Jan 2023 16:31:07 +0000
ROA not after: Sat 01 Jan 2033 16:31:07 +0000
asID: 327872
IP address blocks: 102.213.0.0/22 maxlen: 24
102.219.88.0/22 maxlen: 24
196.250.128.0/19 maxlen: 24
2c0f:f4c8::/32 maxlen: 40
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F364B494/38F78A12329411ED96CD57A5F1222468/-wkj-GnVLjM4ArnFPXizuoZUMMw.crl
rsync://rpki.afrinic.net/repository/member_repository/F364B494/38F78A12329411ED96CD57A5F1222468/-wkj-GnVLjM4ArnFPXizuoZUMMw.mft
rsync://rpki.afrinic.net/repository/afrinic/-wkj-GnVLjM4ArnFPXizuoZUMMw.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 145 (0x91)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F364B494AF/serialNumber=FB0923F869D52E333802B9C53D78B3BA865430CC
Validity
Not Before: Jan 24 16:31:07 2023 GMT
Not After : Jan 1 16:31:07 2033 GMT
Subject: CN=63d007d0-e539
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:70:33:cc:fc:21:c5:20:1f:a4:8e:b2:f0:07:
50:8c:07:3b:8a:4c:a1:61:5b:1d:8d:a0:c8:b0:a5:
1a:bf:c2:5a:58:a2:30:ce:da:9e:05:17:9c:34:e8:
05:ca:85:ed:87:65:7b:eb:4a:a4:f3:19:f1:0f:88:
c8:a4:ae:71:21:cf:09:c7:02:c4:e8:38:3f:1d:a0:
4b:77:e8:93:a8:50:d7:0c:2e:ab:45:5a:03:64:46:
51:75:44:85:cf:c4:26:d8:d4:db:f5:e1:4e:9c:e0:
60:cd:23:7a:79:0d:28:ae:1d:c3:8b:bc:8c:17:96:
1c:c2:62:6e:e3:f5:ad:2a:7f:bd:47:51:47:8a:21:
ba:11:60:72:7f:8f:3e:c2:f1:82:91:2e:f5:4a:cf:
1f:31:8c:58:22:5b:c4:de:3c:3b:c8:9e:fc:f2:44:
45:73:25:05:bc:c8:92:39:91:b3:92:c6:7d:05:43:
87:eb:2c:1c:f9:51:06:48:3b:16:3d:c3:2d:b7:2a:
a9:3f:2f:4b:16:6d:94:d2:95:a1:8e:74:ec:30:d2:
98:8d:05:e2:40:ac:ee:0a:32:30:47:9f:a0:f5:d5:
ca:bc:4f:8e:ab:2b:8b:bb:e9:40:b7:46:ea:96:45:
cc:e4:c0:5c:1c:b9:28:81:e2:d7:72:7f:ea:d2:d1:
bf:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:2B:E1:54:A3:B0:3B:AE:A9:6F:8C:7A:10:90:8D:8E:9B:B6:CB:D4
X509v3 Authority Key Identifier:
keyid:FB:09:23:F8:69:D5:2E:33:38:02:B9:C5:3D:78:B3:BA:86:54:30:CC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F364B494/38F78A12329411ED96CD57A5F1222468/-wkj-GnVLjM4ArnFPXizuoZUMMw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/-wkj-GnVLjM4ArnFPXizuoZUMMw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F364B494/38F78A12329411ED96CD57A5F1222468/83ACCE309C0411EDB12456CEF1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.213.0.0/22
102.219.88.0/22
196.250.128.0/19
IPv6:
2c0f:f4c8::/32
Signature Algorithm: sha256WithRSAEncryption
6f:6a:aa:98:15:9a:17:c3:23:2a:9e:08:54:d4:c8:14:6c:fc:
ae:ee:85:b4:26:c9:f4:e8:41:bb:71:4e:25:39:61:f4:c0:74:
11:6a:9c:a4:bc:fb:e3:37:f8:11:af:ba:7c:2d:90:b7:bb:6d:
49:07:73:9c:cc:bc:3e:bc:85:ff:16:00:02:30:a1:de:17:d6:
ca:1c:75:a6:45:54:07:c8:24:33:df:c2:27:d6:03:09:73:9e:
a1:c8:5c:35:76:3d:5d:66:f5:47:45:7e:34:16:7a:48:c9:31:
f3:c5:30:a9:31:f2:2e:8f:ca:e8:52:a3:c3:c5:27:39:73:8a:
87:5e:ad:ed:35:a3:17:bc:d8:ee:b6:d6:e6:a9:ac:e5:ec:85:
77:5b:f2:87:5d:87:28:70:b6:20:7d:27:6a:29:ce:d9:10:22:
c0:31:83:2a:63:73:6e:06:03:69:fb:fc:5c:ec:77:22:a9:b7:
17:3b:8e:44:26:c7:e8:fa:e3:c5:2b:fe:bc:e4:5d:f2:83:a9:
e0:07:e8:1f:23:6e:d1:71:b3:2d:62:83:ba:1d:0a:88:ba:79:
b3:80:8a:16:46:87:0c:8b:3f:55:d3:8e:bf:ee:f5:f5:e6:bd:
05:26:59:7d:7c:9f:b1:16:69:13:7b:e3:1b:e8:a2:ef:e0:c0:
db:5c:43:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 03:52:53 2024 by rpki-client on console-fra.rpki-client.org