Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F365972A/2EA31FD677E411EE96312D884AD9E6FC/C089237695A011EEAB30DA62D25BE465.roa
File: C089237695A011EEAB30DA62D25BE465.roa (raw, json)
Hash identifier: jOLDFxaBFGJwGiQqhrYBHU9W5OBIUqajHLvdF73zQLc=
Subject key identifier: 59:FD:74:C2:8D:2A:73:50:E2:0E:6D:09:A2:B3:45:DB:E0:80:30:17
Certificate issuer: /CN=F365972AAF/serialNumber=3024350D34092082B90B53EA3D9BFDB8E7451D5A
Certificate serial: 28
Authority key identifier: 30:24:35:0D:34:09:20:82:B9:0B:53:EA:3D:9B:FD:B8:E7:45:1D:5A
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/MCQ1DTQJIIK5C1PqPZv9uOdFHVo.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F365972A/2EA31FD677E411EE96312D884AD9E6FC/C089237695A011EEAB30DA62D25BE465.roa
Signing time: Fri 08 Dec 2023 08:06:55 +0000
ROA not before: Fri 08 Dec 2023 08:06:52 +0000
ROA not after: Mon 08 Dec 2025 08:06:52 +0000
asID: 327907
IP address blocks: 102.22.64.0/20 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F365972A/2EA31FD677E411EE96312D884AD9E6FC/MCQ1DTQJIIK5C1PqPZv9uOdFHVo.crl
rsync://rpki.afrinic.net/repository/member_repository/F365972A/2EA31FD677E411EE96312D884AD9E6FC/MCQ1DTQJIIK5C1PqPZv9uOdFHVo.mft
rsync://rpki.afrinic.net/repository/afrinic/MCQ1DTQJIIK5C1PqPZv9uOdFHVo.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 40 (0x28)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F365972AAF/serialNumber=3024350D34092082B90B53EA3D9BFDB8E7451D5A
Validity
Not Before: Dec 8 08:06:52 2023 GMT
Not After : Dec 8 08:06:52 2025 GMT
Subject: CN=6572ce9f-119c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:ed:55:23:a2:ca:c3:6e:be:da:02:3c:f9:df:
45:3b:25:b5:6a:b6:ef:67:4a:23:2a:44:db:70:22:
a0:93:3a:b6:f2:bb:09:dd:29:04:e7:2e:27:2b:be:
48:35:3b:2c:a6:c7:a9:98:49:6a:32:a2:c4:d7:8c:
8d:37:e3:f1:03:31:e7:32:12:de:83:fd:ac:c9:ee:
c5:9f:84:63:f2:3d:73:3e:05:5a:61:35:4c:04:39:
9d:b2:81:e5:eb:52:ab:86:68:1f:b8:f9:3c:3c:bf:
d3:c7:31:be:71:f6:e5:2c:2b:b6:4d:5c:43:0e:01:
eb:0e:89:f7:9e:8d:0e:4b:45:e8:bc:9f:b8:17:9f:
6f:da:cf:0a:64:65:f1:b8:69:2d:63:a8:41:2c:e4:
ab:0e:6e:02:d7:34:55:d9:6a:60:d7:02:19:88:a2:
23:88:be:83:36:8f:a8:23:c7:bc:93:e3:71:0f:cf:
33:c0:48:5f:67:9a:cb:da:cd:bd:d3:d6:22:54:36:
7a:83:c3:ab:7d:38:91:ec:5a:d4:aa:7c:b5:e0:d2:
7f:ff:43:41:f9:03:d5:fc:28:29:24:5a:23:ef:4d:
c5:60:3a:37:57:37:5f:c1:ec:e0:5c:cc:52:ee:a8:
11:ac:bf:4d:2c:7a:0d:93:18:c9:5b:50:67:42:95:
84:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:FD:74:C2:8D:2A:73:50:E2:0E:6D:09:A2:B3:45:DB:E0:80:30:17
X509v3 Authority Key Identifier:
keyid:30:24:35:0D:34:09:20:82:B9:0B:53:EA:3D:9B:FD:B8:E7:45:1D:5A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F365972A/2EA31FD677E411EE96312D884AD9E6FC/MCQ1DTQJIIK5C1PqPZv9uOdFHVo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/MCQ1DTQJIIK5C1PqPZv9uOdFHVo.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F365972A/2EA31FD677E411EE96312D884AD9E6FC/C089237695A011EEAB30DA62D25BE465.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.22.64.0/20
Signature Algorithm: sha256WithRSAEncryption
6e:39:76:76:4c:f5:6f:14:61:b3:6b:c9:7d:3b:37:2b:57:ec:
42:5d:fd:ec:c8:0d:56:96:22:e6:c2:b8:5a:5f:6d:89:92:83:
97:a8:e3:3a:00:f8:90:27:06:e1:ac:54:91:7c:4d:50:46:e2:
df:d3:da:09:0d:87:b2:c1:a2:ec:5f:69:07:95:0d:44:73:45:
1e:65:4e:e8:71:e0:05:a0:02:13:a0:ff:c2:73:0d:39:a9:6a:
bc:e8:d2:53:8b:f7:f8:d2:d2:4b:07:6a:e3:f6:46:86:a9:0a:
98:ad:eb:6f:bc:f2:74:ac:75:fd:0b:b4:6d:38:14:61:72:0e:
e9:e3:4b:20:43:c1:ed:28:7e:bd:a2:92:7d:8f:8a:6d:bb:31:
f9:35:ef:9d:9e:a7:c8:88:71:d6:f3:e7:bc:58:de:b9:26:cb:
d1:b0:9a:4a:eb:70:d2:13:fd:3f:3d:2d:2a:5c:92:fb:3c:4a:
69:0a:67:e6:e8:fd:21:e9:57:94:c0:f4:57:d6:24:e0:f2:e0:
ee:0d:b1:50:63:78:d6:48:9f:59:5a:a1:d0:a0:98:54:48:21:
e2:49:33:5d:92:6a:21:9b:46:8f:6a:f7:fa:f2:29:d8:2e:95:
ab:84:4a:2d:e7:31:fa:57:dc:67:ef:0c:43:2d:52:b2:47:fc:
d2:9b:d0:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:03:35 2024 by rpki-client on console-ams.rpki-client.org