Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F364FE7F/8CEFCC7490B811EDBCC9A5ECF1222468/19CE3122EB3011EDAE06FA2E4AD9E6FC.roa
File: 19CE3122EB3011EDAE06FA2E4AD9E6FC.roa (raw, json)
Hash identifier: YPR5ZPuqkdZkQEpi5lW1Zb4V+AhxtcRccNuBTtLoCOU=
Subject key identifier: FC:03:98:8D:D3:F1:D8:41:45:18:0A:3A:7E:B5:3C:2E:0D:EA:E8:7B
Certificate issuer: /CN=F364FE7FAF/serialNumber=4102690498AC378BFFEFEE27BC695F91A123BF43
Certificate serial: 81
Authority key identifier: 41:02:69:04:98:AC:37:8B:FF:EF:EE:27:BC:69:5F:91:A1:23:BF:43
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/QQJpBJisN4v_7-4nvGlfkaEjv0M.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F364FE7F/8CEFCC7490B811EDBCC9A5ECF1222468/19CE3122EB3011EDAE06FA2E4AD9E6FC.roa
Signing time: Fri 05 May 2023 10:32:14 +0000
ROA not before: Fri 05 May 2023 10:32:11 +0000
ROA not after: Fri 02 May 2025 10:32:11 +0000
asID: 328200
IP address blocks: 102.212.136.0/22 maxlen: 24
2c0f:ed18::/32 maxlen: 64
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F364FE7F/8CEFCC7490B811EDBCC9A5ECF1222468/QQJpBJisN4v_7-4nvGlfkaEjv0M.crl
rsync://rpki.afrinic.net/repository/member_repository/F364FE7F/8CEFCC7490B811EDBCC9A5ECF1222468/QQJpBJisN4v_7-4nvGlfkaEjv0M.mft
rsync://rpki.afrinic.net/repository/afrinic/QQJpBJisN4v_7-4nvGlfkaEjv0M.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 129 (0x81)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F364FE7FAF/serialNumber=4102690498AC378BFFEFEE27BC695F91A123BF43
Validity
Not Before: May 5 10:32:11 2023 GMT
Not After : May 2 10:32:11 2025 GMT
Subject: CN=6454db2e-eb32
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:38:b0:aa:fa:d5:9a:5e:0b:1d:b2:58:7f:56:
34:bc:63:c0:3c:d0:93:ca:48:88:bc:17:0e:e0:41:
d7:a4:43:ad:a1:f3:86:26:e5:4e:13:ca:24:04:03:
b1:32:94:a9:05:ab:7d:d4:9a:e6:c0:9d:fb:21:1e:
b2:e5:83:ed:f6:b2:5c:43:f0:c4:7a:38:9f:8c:1a:
1c:0a:10:df:ee:1f:f9:62:8e:e4:ea:70:e0:05:22:
55:bd:28:2f:82:b0:14:21:2e:87:93:ed:59:35:10:
5b:02:f3:0a:f8:85:f6:82:f7:62:5c:cf:26:24:5f:
9b:d6:91:26:b3:72:d7:ac:5f:88:ab:78:35:ad:96:
c6:09:63:af:57:3f:fa:e9:ef:55:d3:b7:85:d2:46:
eb:4a:7f:62:96:72:79:bf:8b:e4:13:8e:e0:f3:e7:
40:91:c1:0b:7f:a9:27:b5:da:14:ad:29:df:3e:90:
b8:62:0a:15:1a:c1:b1:2c:53:e2:5e:54:0b:25:2d:
ea:7d:97:bd:7d:20:fe:1f:82:33:81:1e:d0:8a:96:
74:b8:22:59:07:41:e5:91:23:30:9f:dd:15:f4:6f:
94:f1:02:21:78:e2:95:1d:ac:49:29:55:95:93:6d:
99:23:54:88:e4:31:db:b1:4b:84:88:0f:58:80:5f:
09:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:03:98:8D:D3:F1:D8:41:45:18:0A:3A:7E:B5:3C:2E:0D:EA:E8:7B
X509v3 Authority Key Identifier:
keyid:41:02:69:04:98:AC:37:8B:FF:EF:EE:27:BC:69:5F:91:A1:23:BF:43
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F364FE7F/8CEFCC7490B811EDBCC9A5ECF1222468/QQJpBJisN4v_7-4nvGlfkaEjv0M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/QQJpBJisN4v_7-4nvGlfkaEjv0M.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F364FE7F/8CEFCC7490B811EDBCC9A5ECF1222468/19CE3122EB3011EDAE06FA2E4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.212.136.0/22
IPv6:
2c0f:ed18::/32
Signature Algorithm: sha256WithRSAEncryption
07:75:b1:54:d2:55:f5:0d:2a:c2:78:93:ad:c3:86:4f:7d:e1:
b1:bf:7d:88:a7:fa:30:0d:45:b3:3e:23:b9:36:30:85:03:e5:
e9:8c:e5:fe:15:01:ff:8f:c6:8e:5a:7d:41:56:bf:bf:0e:ef:
39:a0:e1:f3:5f:76:ab:9d:e0:c3:9c:a4:b4:c2:be:af:4a:6e:
1d:08:f0:1c:94:20:5b:03:b5:4d:a6:d0:02:b1:1e:26:c9:bf:
37:3d:db:24:5f:74:8c:5e:5f:2a:fd:63:8e:f4:ae:3f:c1:6c:
11:ac:01:bc:04:9d:57:a9:77:a9:a3:50:17:b9:24:bf:2d:79:
dd:28:c4:c7:d7:b4:f5:2d:0c:18:71:64:88:0a:78:a0:1c:fe:
c7:b8:b5:76:7b:29:1d:52:de:5f:61:e1:0f:a1:58:6b:df:b8:
a8:6d:b3:e9:f8:f5:4d:f7:45:1e:19:6f:9b:91:51:84:12:e2:
25:31:70:2d:b4:bc:1f:3f:dc:da:94:06:6e:63:39:89:fb:f0:
e3:49:43:02:c8:3b:4c:af:f6:84:a5:26:d3:a9:1e:e0:4c:4a:
88:f2:67:4a:aa:18:36:93:9f:a7:23:95:4d:f0:8b:a5:d6:43:
f4:f4:3a:83:7d:fa:26:65:77:fd:df:ae:7f:01:74:78:1d:b9:
d9:a5:3c:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:03:34 2024 by rpki-client on console-ams.rpki-client.org