Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F364E699/9578AD3E87E811EE9774F3804AD9E6FC/5B2E23D224F711EFB578AD317DDC24C2.roa
File: 5B2E23D224F711EFB578AD317DDC24C2.roa (raw, json)
Hash identifier: dJqx2tIQdNKOhw5rXNRRGr+piGM3e2LGv8rFqRIxuKM=
Subject key identifier: CB:06:6B:4B:9B:01:A4:2E:BB:9A:D3:22:F5:75:9B:4D:AF:2E:C3:91
Certificate issuer: /CN=F364E699AF/serialNumber=EEB677AA50CBC69C6DBDBF695CA199D7E147A894
Certificate serial: D2
Authority key identifier: EE:B6:77:AA:50:CB:C6:9C:6D:BD:BF:69:5C:A1:99:D7:E1:47:A8:94
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/7rZ3qlDLxpxtvb9pXKGZ1-FHqJQ.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F364E699/9578AD3E87E811EE9774F3804AD9E6FC/5B2E23D224F711EFB578AD317DDC24C2.roa
Signing time: Fri 07 Jun 2024 17:57:08 +0000
ROA not before: Fri 07 Jun 2024 17:57:03 +0000
ROA not after: Sun 31 Dec 2034 17:57:03 +0000
asID: 329347
IP address blocks: 102.210.240.0/23 maxlen: 24
2c0f:6440::/32 maxlen: 48
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F364E699/9578AD3E87E811EE9774F3804AD9E6FC/7rZ3qlDLxpxtvb9pXKGZ1-FHqJQ.crl
rsync://rpki.afrinic.net/repository/member_repository/F364E699/9578AD3E87E811EE9774F3804AD9E6FC/7rZ3qlDLxpxtvb9pXKGZ1-FHqJQ.mft
rsync://rpki.afrinic.net/repository/afrinic/7rZ3qlDLxpxtvb9pXKGZ1-FHqJQ.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 210 (0xd2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F364E699AF/serialNumber=EEB677AA50CBC69C6DBDBF695CA199D7E147A894
Validity
Not Before: Jun 7 17:57:03 2024 GMT
Not After : Dec 31 17:57:03 2034 GMT
Subject: CN=666349f4-c84c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:47:9e:da:80:6d:82:4e:db:c0:d0:de:42:cd:
30:06:cc:44:c6:ef:07:59:9e:9e:b2:74:27:b8:33:
30:60:cd:d0:05:a3:2c:41:52:55:1c:4a:18:27:e2:
17:28:be:31:0a:1a:9f:55:4e:c9:85:d9:19:c9:20:
c6:9c:f4:3f:3d:95:65:4c:83:f2:ad:dd:0b:ec:b0:
50:24:df:d0:d6:5d:33:6e:f5:6f:d9:87:99:0d:22:
6d:d3:19:4e:1f:38:eb:c1:52:60:f5:7f:05:6a:4d:
91:8e:f4:21:cb:3e:a1:3f:20:06:09:07:84:f2:16:
a9:3c:f2:28:0b:84:10:6b:c1:e2:02:da:f6:0a:de:
73:0d:6e:90:51:f0:1e:61:d1:90:5e:fb:22:ef:c4:
df:85:96:95:95:b1:94:28:0a:36:2a:42:72:25:34:
c6:b2:be:f0:24:4a:1b:2d:d7:cb:ba:ed:37:93:9e:
ab:87:8e:51:3f:eb:35:4e:c8:87:57:2e:55:2d:b5:
af:b9:38:b6:59:30:5c:52:23:97:65:58:92:8f:0c:
a0:a7:1d:11:ad:4c:7f:94:f9:08:cc:51:4f:14:52:
12:67:8c:91:4d:28:72:98:42:cb:76:0b:14:91:1d:
12:0c:2c:bd:03:5e:69:8d:dd:0c:d8:b8:de:8d:af:
87:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:06:6B:4B:9B:01:A4:2E:BB:9A:D3:22:F5:75:9B:4D:AF:2E:C3:91
X509v3 Authority Key Identifier:
keyid:EE:B6:77:AA:50:CB:C6:9C:6D:BD:BF:69:5C:A1:99:D7:E1:47:A8:94
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F364E699/9578AD3E87E811EE9774F3804AD9E6FC/7rZ3qlDLxpxtvb9pXKGZ1-FHqJQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/7rZ3qlDLxpxtvb9pXKGZ1-FHqJQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F364E699/9578AD3E87E811EE9774F3804AD9E6FC/5B2E23D224F711EFB578AD317DDC24C2.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.210.240.0/23
IPv6:
2c0f:6440::/32
Signature Algorithm: sha256WithRSAEncryption
53:e1:09:4c:39:37:a4:68:68:92:e4:2b:48:d1:23:a3:6e:42:
78:25:2b:84:01:af:e7:06:ec:a0:64:0d:70:f2:23:dc:aa:04:
11:b5:80:00:cd:70:07:ce:46:61:89:d9:b0:7e:5e:11:5f:94:
2b:df:e9:02:3c:e7:13:ba:99:36:c6:c1:9f:2a:5f:f3:75:b5:
98:fd:41:5b:06:0e:de:e8:07:77:a5:fe:6f:6c:27:bb:ac:d6:
3a:fa:18:a1:ab:56:69:e7:ed:6d:4e:34:68:42:34:6d:4f:db:
73:88:b8:4f:b6:6e:a4:5c:38:5e:23:40:6f:32:14:4b:81:98:
68:67:f5:51:28:b0:01:fd:4a:b0:91:ac:b1:e3:1a:96:84:14:
24:ee:42:7b:bc:dc:e4:9a:68:77:40:3f:ea:be:06:3a:b4:50:
79:dc:ad:29:6b:8b:9c:26:70:8d:79:df:6f:f0:1f:2e:b6:72:
81:84:e7:dd:a2:04:0e:bb:39:aa:61:c7:b9:9c:c3:5d:55:fd:
2f:58:87:96:25:76:b8:a1:7d:a3:64:2e:4e:b1:99:77:5d:7e:
4a:e4:10:df:ae:f6:f7:2a:0a:26:63:b8:8a:8d:76:5f:0b:23:
5f:b6:d1:6c:3c:f9:0b:54:14:b3:26:5d:fc:ce:b1:88:25:8a:
ff:da:04:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:03:34 2024 by rpki-client on console-ams.rpki-client.org