Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3659F22/9A0832F6FCAB11EEA6901B3D017001B1/63F953CEFCAC11EEBF79DD42017001B1.roa
File: 63F953CEFCAC11EEBF79DD42017001B1.roa (raw, json)
Hash identifier: QUrF98/VSe1fHvkmtbRiXHKLgMqdx5SEhERKt7m8P5c=
Subject key identifier: 31:F7:B6:14:8D:1B:3D:25:AE:21:8D:6A:D1:C8:8C:77:2D:91:E9:D7
Certificate issuer: /CN=F3659F22AF/serialNumber=5556D637278A4D6987D448763BD3CAEBA058A50F
Certificate serial: 08
Authority key identifier: 55:56:D6:37:27:8A:4D:69:87:D4:48:76:3B:D3:CA:EB:A0:58:A5:0F
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/VVbWNyeKTWmH1Eh2O9PK66BYpQ8.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3659F22/9A0832F6FCAB11EEA6901B3D017001B1/63F953CEFCAC11EEBF79DD42017001B1.roa
Signing time: Wed 17 Apr 2024 11:19:44 +0000
ROA not before: Wed 17 Apr 2024 11:19:40 +0000
ROA not after: Tue 01 Apr 2025 11:19:40 +0000
asID: 328711
IP address blocks: 102.222.158.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3659F22/9A0832F6FCAB11EEA6901B3D017001B1/VVbWNyeKTWmH1Eh2O9PK66BYpQ8.crl
rsync://rpki.afrinic.net/repository/member_repository/F3659F22/9A0832F6FCAB11EEA6901B3D017001B1/VVbWNyeKTWmH1Eh2O9PK66BYpQ8.mft
rsync://rpki.afrinic.net/repository/afrinic/VVbWNyeKTWmH1Eh2O9PK66BYpQ8.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 04 Jun 2024 00:04:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8 (0x8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3659F22AF/serialNumber=5556D637278A4D6987D448763BD3CAEBA058A50F
Validity
Not Before: Apr 17 11:19:40 2024 GMT
Not After : Apr 1 11:19:40 2025 GMT
Subject: CN=661fb050-a76f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:34:3a:a8:ce:fa:f8:29:24:6e:78:e2:a6:9f:
6a:f7:04:f8:02:82:fc:1b:c6:6b:98:b7:f9:15:c4:
74:e8:0b:bf:3c:82:11:ec:71:ef:f3:8c:63:e3:40:
7b:d2:57:81:2a:fc:1b:42:85:67:bd:fc:4b:00:b2:
aa:27:4f:e9:76:54:0d:6e:47:d0:8e:38:44:a9:99:
ba:1d:51:db:64:ec:ee:d3:91:df:b3:7d:32:ce:96:
c6:8f:c6:24:53:c0:09:bb:b2:f1:9d:b9:61:a6:f3:
65:b3:1a:16:56:11:62:01:e6:92:e4:00:6d:eb:44:
6b:0b:98:08:a1:85:f8:ec:cb:e3:c4:8e:2a:96:51:
92:2c:83:a3:d3:a0:c7:39:57:3d:f3:94:80:59:a8:
3e:6b:f8:77:2a:96:28:f8:16:48:b2:e3:91:37:85:
80:89:ff:a0:ba:22:1f:a8:6a:5f:eb:a6:5a:fa:21:
18:f2:50:cc:55:b2:2a:77:68:d8:5c:63:9f:94:18:
35:d9:c5:33:64:d2:bf:a9:8f:dc:7b:a7:08:57:46:
8a:38:38:64:d3:f8:5b:88:db:bb:a1:42:e6:1a:f2:
6c:3a:00:e1:2d:e7:37:54:aa:cf:68:23:a7:e1:b5:
eb:ae:3b:33:ba:63:c7:e3:a8:95:6f:1b:1d:29:cb:
30:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:F7:B6:14:8D:1B:3D:25:AE:21:8D:6A:D1:C8:8C:77:2D:91:E9:D7
X509v3 Authority Key Identifier:
keyid:55:56:D6:37:27:8A:4D:69:87:D4:48:76:3B:D3:CA:EB:A0:58:A5:0F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3659F22/9A0832F6FCAB11EEA6901B3D017001B1/VVbWNyeKTWmH1Eh2O9PK66BYpQ8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/VVbWNyeKTWmH1Eh2O9PK66BYpQ8.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3659F22/9A0832F6FCAB11EEA6901B3D017001B1/63F953CEFCAC11EEBF79DD42017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.222.158.0/24
Signature Algorithm: sha256WithRSAEncryption
7d:43:1d:00:cd:d1:86:bb:a8:96:a4:15:d1:53:ba:8f:f2:80:
84:31:5c:64:0b:8a:6f:fa:e8:ee:f1:55:86:29:99:a1:2f:4f:
e0:d6:51:fa:7b:f9:50:30:12:51:a5:98:f2:3b:e0:da:bb:b8:
b5:99:f1:25:b0:0d:3a:44:15:0e:8c:98:5c:7a:b8:37:bf:de:
09:f3:98:92:c9:d3:18:2f:29:9f:e7:a7:e0:9a:00:81:01:bb:
4e:32:c9:70:e4:f6:4d:59:d5:e1:08:64:4a:58:3c:9a:1f:df:
96:66:2f:e3:72:fa:00:4e:24:8e:44:c3:1a:cf:a6:ea:9d:aa:
63:e1:0a:ef:61:77:f7:83:62:38:83:16:d0:b2:4f:39:d9:b6:
3b:06:e9:35:ef:14:66:04:30:d8:25:b7:5f:3c:e9:0d:28:09:
11:45:b2:e3:b4:61:52:b2:fc:60:67:ac:9f:71:90:5b:e8:9b:
cf:9a:be:ba:98:ed:ca:b3:96:c9:16:38:df:c3:cf:57:81:87:
20:7c:48:81:7b:06:6f:e9:c0:b6:e6:af:6c:75:2d:dd:f1:21:
fb:0e:b8:80:eb:a1:f3:86:38:05:35:e0:9d:a0:4b:28:e0:9b:
55:b1:f8:e9:b4:be:e9:4a:61:16:74:88:72:b0:52:fc:f1:79:
79:7f:26:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 2 03:39:39 2024 by rpki-client on console-ams.rpki-client.org