Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F364BCB6/E79A860CDB3111EBB216782CF8AEA228/4488BE72E9F311EBA80D554DD8A014CE.roa
File: 4488BE72E9F311EBA80D554DD8A014CE.roa (raw, json)
Hash identifier: 43tZkzq+YQqiJ2x6x6QXzZmL2gInWBmD66gj1ziVmg0=
Subject key identifier: C9:94:08:E8:7C:33:BA:D9:C1:22:D8:75:23:91:52:20:26:A6:52:6E
Certificate issuer: /CN=F364BCB6AF/serialNumber=7BCEA7B0B8A741566B5E6F34622D588B0FB67F95
Certificate serial: 18
Authority key identifier: 7B:CE:A7:B0:B8:A7:41:56:6B:5E:6F:34:62:2D:58:8B:0F:B6:7F:95
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/e86nsLinQVZrXm80Yi1Yiw-2f5U.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F364BCB6/E79A860CDB3111EBB216782CF8AEA228/4488BE72E9F311EBA80D554DD8A014CE.roa
Signing time: Wed 21 Jul 2021 07:14:29 +0000
ROA not before: Wed 21 Jul 2021 07:14:24 +0000
ROA not after: Sun 21 Jul 2024 07:14:24 +0000
asID: 328837
IP address blocks: 102.220.52.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F364BCB6/E79A860CDB3111EBB216782CF8AEA228/e86nsLinQVZrXm80Yi1Yiw-2f5U.crl
rsync://rpki.afrinic.net/repository/member_repository/F364BCB6/E79A860CDB3111EBB216782CF8AEA228/e86nsLinQVZrXm80Yi1Yiw-2f5U.mft
rsync://rpki.afrinic.net/repository/afrinic/e86nsLinQVZrXm80Yi1Yiw-2f5U.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 03 May 2024 00:04:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 24 (0x18)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F364BCB6AF/serialNumber=7BCEA7B0B8A741566B5E6F34622D588B0FB67F95
Validity
Not Before: Jul 21 07:14:24 2021 GMT
Not After : Jul 21 07:14:24 2024 GMT
Subject: CN=60f7c955-fffc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:0a:bc:dc:52:d6:3a:82:01:b0:18:f9:1a:21:
6c:a9:68:40:c1:28:1a:f5:db:ca:bd:d4:96:a1:89:
29:04:2f:0d:ec:82:63:ed:ec:1d:88:96:b2:f0:14:
f0:e7:39:e3:19:d8:6f:23:39:b7:d6:90:3d:5b:43:
07:b2:ad:1a:fc:19:ae:62:ff:fe:87:01:dc:85:31:
01:20:8b:09:64:92:9c:50:cf:c6:dc:e1:4f:68:32:
31:ce:72:b8:bb:cd:2f:31:25:47:b7:3f:e5:cb:d8:
53:75:7a:72:21:e9:c5:2f:27:9f:c5:9e:1f:ad:aa:
f6:02:44:dc:ec:c7:17:9f:bc:ca:ef:e5:52:0c:70:
85:ba:0d:87:4b:5f:59:13:de:27:6c:49:ac:74:c5:
92:f1:6c:a7:3f:5b:35:5e:32:ec:af:4b:4e:f6:a0:
f7:f9:c8:ed:29:d4:a5:a2:86:d3:9a:b4:08:d4:a1:
96:7d:ea:8a:40:0a:01:e9:dd:bb:d0:d6:f4:d4:68:
13:46:37:f1:4a:d7:3e:f8:45:f3:3e:0f:07:cc:2f:
de:e2:e5:7a:3f:de:bf:23:9f:c9:69:1c:9d:32:58:
66:7f:0e:5e:5e:a6:d0:e0:e2:fc:ec:ea:72:d3:be:
31:7c:20:55:d8:ae:10:b2:e3:fe:b2:9c:e6:a4:42:
1c:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:94:08:E8:7C:33:BA:D9:C1:22:D8:75:23:91:52:20:26:A6:52:6E
X509v3 Authority Key Identifier:
keyid:7B:CE:A7:B0:B8:A7:41:56:6B:5E:6F:34:62:2D:58:8B:0F:B6:7F:95
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F364BCB6/E79A860CDB3111EBB216782CF8AEA228/e86nsLinQVZrXm80Yi1Yiw-2f5U.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/e86nsLinQVZrXm80Yi1Yiw-2f5U.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F364BCB6/E79A860CDB3111EBB216782CF8AEA228/4488BE72E9F311EBA80D554DD8A014CE.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.220.52.0/22
Signature Algorithm: sha256WithRSAEncryption
20:77:07:13:66:bc:e3:6b:3c:d7:7b:2c:3d:ab:79:eb:ac:a1:
68:50:30:d5:a7:93:98:7d:00:44:f3:7d:c8:23:4d:d6:23:6d:
2e:58:6c:6f:16:0e:13:93:b9:9d:17:3c:f8:07:46:60:ba:04:
86:97:38:ce:1c:2f:8f:e9:98:80:64:42:b8:4d:91:5b:09:a7:
e9:af:05:a9:da:6e:1f:7f:c6:8f:b8:90:3d:d5:29:99:e3:fa:
28:b4:60:f8:91:37:7f:38:e1:63:64:34:89:55:8e:3d:e6:5c:
c8:1e:5f:09:dc:1d:07:16:a6:ee:5f:17:7b:fc:95:64:1e:9b:
be:d8:92:bd:65:a3:86:05:62:58:ca:2b:85:d4:8c:07:a7:e6:
90:24:66:50:40:e2:27:73:81:31:12:12:bf:a7:f8:a2:ac:1e:
cf:bd:71:02:ce:2d:a0:82:20:33:7b:00:9b:95:e7:84:19:e0:
eb:c5:de:45:93:5c:7b:80:ba:fa:c2:94:c9:a6:db:14:9f:ba:
e1:c6:5e:cc:8f:e9:fa:c3:1e:6a:64:64:c6:97:56:40:5e:09:
45:d9:dd:ee:1a:ee:9e:2a:1c:ab:e2:97:19:c2:a1:25:3a:23:
f9:c1:7e:16:c2:14:38:5e:37:3a:4a:36:82:5c:be:2f:1c:bf:
94:c8:61:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 1 02:07:11 2024 by rpki-client on console-fra.rpki-client.org