Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36598F5/A410D350DC0211EC99E36188F1222468/4DA68878DC0411ECBFFD558DF1222468.roa
File: 4DA68878DC0411ECBFFD558DF1222468.roa (raw, json)
Hash identifier: TgvAkv0ZCgN+4Uy4XiUukijeclS22leiSbDTqwA5GIk=
Subject key identifier: 06:9D:C8:37:6F:E5:17:68:11:26:F8:50:EF:3D:23:38:69:2C:86:4F
Certificate issuer: /CN=F36598F5AF/serialNumber=3D4A4EFD029A112EB89AAC8ECA9D917A47CB6C5C
Certificate serial: 02
Authority key identifier: 3D:4A:4E:FD:02:9A:11:2E:B8:9A:AC:8E:CA:9D:91:7A:47:CB:6C:5C
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/PUpO_QKaES64mqyOyp2RekfLbFw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36598F5/A410D350DC0211EC99E36188F1222468/4DA68878DC0411ECBFFD558DF1222468.roa
Signing time: Wed 25 May 2022 08:25:58 +0000
ROA not before: Wed 25 May 2022 08:25:55 +0000
ROA not after: Sat 25 May 2024 08:25:55 +0000
asID: 328820
IP address blocks: 102.220.104.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36598F5/A410D350DC0211EC99E36188F1222468/PUpO_QKaES64mqyOyp2RekfLbFw.crl
rsync://rpki.afrinic.net/repository/member_repository/F36598F5/A410D350DC0211EC99E36188F1222468/PUpO_QKaES64mqyOyp2RekfLbFw.mft
rsync://rpki.afrinic.net/repository/afrinic/PUpO_QKaES64mqyOyp2RekfLbFw.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 19 May 2024 00:04:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2 (0x2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36598F5AF/serialNumber=3D4A4EFD029A112EB89AAC8ECA9D917A47CB6C5C
Validity
Not Before: May 25 08:25:55 2022 GMT
Not After : May 25 08:25:55 2024 GMT
Subject: CN=628de816-de15
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:36:c1:69:47:e5:8d:a5:1d:ff:e7:a5:df:15:
ad:a4:b5:ad:1f:ff:c2:56:0d:86:74:7b:c7:33:10:
39:ba:13:fa:4e:ac:fb:b7:f1:39:83:07:17:f4:3d:
d8:a6:cb:28:88:cc:32:50:e7:2f:0d:0c:68:61:b7:
7a:ec:68:89:1a:d5:de:00:33:2a:8f:98:bf:78:b2:
73:28:ac:fb:62:c9:98:aa:c5:51:36:3a:40:d2:5a:
fe:36:37:dd:96:9f:b1:4b:bc:58:e8:04:6e:f0:69:
b3:5b:c7:f4:87:78:b4:19:a6:9d:24:fa:f3:f7:37:
44:16:a7:8f:58:f0:4a:47:44:63:56:42:13:e2:7c:
46:c8:1c:fa:3b:90:41:1e:ee:64:f4:55:39:37:59:
b0:95:89:90:b1:7f:d7:9b:b8:92:b0:c7:bc:86:e5:
49:e2:56:c1:18:fe:79:c6:06:96:a5:54:e2:57:65:
b2:f8:92:23:7b:60:b6:cf:24:b9:16:6e:0f:1f:84:
6b:5b:c7:2c:15:ba:65:bb:5b:16:7d:74:b0:81:6b:
2f:f8:55:0d:27:79:05:01:c4:60:44:17:6d:e6:13:
b0:a3:06:37:16:44:84:bb:59:98:59:51:f8:ac:fc:
88:40:5d:36:4e:f1:6e:7b:fd:50:1a:a1:ce:71:cd:
74:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:9D:C8:37:6F:E5:17:68:11:26:F8:50:EF:3D:23:38:69:2C:86:4F
X509v3 Authority Key Identifier:
keyid:3D:4A:4E:FD:02:9A:11:2E:B8:9A:AC:8E:CA:9D:91:7A:47:CB:6C:5C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36598F5/A410D350DC0211EC99E36188F1222468/PUpO_QKaES64mqyOyp2RekfLbFw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/PUpO_QKaES64mqyOyp2RekfLbFw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36598F5/A410D350DC0211EC99E36188F1222468/4DA68878DC0411ECBFFD558DF1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.220.104.0/22
Signature Algorithm: sha256WithRSAEncryption
47:77:ab:ef:b4:09:fd:52:d4:7f:b7:3b:68:f5:ad:e2:ab:e2:
b7:13:11:c4:d9:49:b2:bb:e4:02:77:33:76:d1:00:21:98:69:
db:94:70:0e:a9:92:3a:d4:f3:e1:35:23:6c:aa:91:4a:96:52:
4d:a2:15:1e:ea:be:4f:26:58:f2:85:4a:b7:f3:80:68:5c:a9:
5f:d8:3a:c2:21:d5:10:37:e3:d7:49:ce:1e:d4:af:94:a4:5c:
82:af:95:52:ab:50:74:a8:51:19:50:2d:11:01:02:21:49:10:
c8:20:c5:8c:bf:69:ad:f7:04:3f:f2:e1:31:0a:17:05:df:49:
c2:2d:61:cf:8e:c5:9f:54:e9:b3:63:43:c2:06:d1:95:1c:c6:
f7:3c:3d:04:de:47:32:47:21:e6:e0:2b:d9:a9:67:f3:13:c1:
f9:67:00:76:1a:f7:a0:24:5a:5b:33:7b:dc:c6:7a:cb:0b:98:
9d:2b:cf:1b:83:ea:f0:86:3f:89:86:0e:f9:9c:eb:62:61:ef:
8a:c1:f5:90:71:13:31:f8:46:ea:a2:6f:67:30:bb:64:0b:57:
99:8e:ae:5b:1b:10:2c:d0:cd:5b:a7:67:fc:fc:21:86:54:2f:
3a:f6:47:f8:81:98:b5:70:05:4b:80:c6:cb:5e:00:6e:18:58:
10:6d:0d:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 17 03:06:25 2024 by rpki-client on console-ams.rpki-client.org