Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F365AA12/76D92404BF8511EBACD38C2DF8AEA228/B663D9A8C37B11EB8DB89456F8AEA228.roa
File: B663D9A8C37B11EB8DB89456F8AEA228.roa (raw, json)
Hash identifier: BanY5OoiK/H0UyDozciFZEgNwlpeFk96ik1kdsHY5gM=
Subject key identifier: 9B:8E:F9:F8:B6:3E:96:5B:87:57:8A:BF:EE:81:AB:B1:51:C2:24:EC
Certificate issuer: /CN=F365AA12AF/serialNumber=22CD6F187775C23E27515B2FE38082E4BFEA8FF4
Certificate serial: 07
Authority key identifier: 22:CD:6F:18:77:75:C2:3E:27:51:5B:2F:E3:80:82:E4:BF:EA:8F:F4
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/Is1vGHd1wj4nUVsv44CC5L_qj_Q.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F365AA12/76D92404BF8511EBACD38C2DF8AEA228/B663D9A8C37B11EB8DB89456F8AEA228.roa
Signing time: Wed 02 Jun 2021 08:22:48 +0000
ROA not before: Wed 02 Jun 2021 08:22:43 +0000
ROA not after: Sun 01 Jun 2031 08:22:43 +0000
asID: 328656
IP address blocks: 102.223.40.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F365AA12/76D92404BF8511EBACD38C2DF8AEA228/Is1vGHd1wj4nUVsv44CC5L_qj_Q.crl
rsync://rpki.afrinic.net/repository/member_repository/F365AA12/76D92404BF8511EBACD38C2DF8AEA228/Is1vGHd1wj4nUVsv44CC5L_qj_Q.mft
rsync://rpki.afrinic.net/repository/afrinic/Is1vGHd1wj4nUVsv44CC5L_qj_Q.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 06 May 2024 00:04:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7 (0x7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F365AA12AF/serialNumber=22CD6F187775C23E27515B2FE38082E4BFEA8FF4
Validity
Not Before: Jun 2 08:22:43 2021 GMT
Not After : Jun 1 08:22:43 2031 GMT
Subject: CN=60b73fd8-9922
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:b2:61:dc:92:61:4b:d0:1e:3f:75:64:bc:60:
96:b8:fd:c0:41:b7:87:f7:13:19:66:11:35:58:cf:
dd:1a:45:d0:c6:5f:86:27:86:d6:35:4a:1f:60:09:
28:38:25:34:2d:80:b5:07:44:e4:5b:d1:16:f8:4d:
4c:f4:4e:3f:f7:81:db:11:09:4c:cd:a1:5a:0a:2c:
78:11:2b:85:bb:20:d3:d8:b5:f6:06:14:2c:4d:ab:
7b:3c:93:b7:ea:d5:24:a2:4d:5e:18:45:b0:ba:33:
25:e1:d6:97:22:40:df:f8:36:1d:3f:41:49:e9:16:
17:11:56:e6:99:21:c5:ff:8f:0e:85:86:16:5b:f6:
0b:e7:16:85:d4:3c:05:78:24:4a:b9:93:6a:e0:db:
65:ae:1e:4b:7d:ab:e1:54:19:0e:b0:98:10:6d:96:
11:58:26:73:7d:db:b6:38:64:3f:40:13:1f:41:0f:
92:91:d5:aa:e9:e9:77:fa:d8:27:dd:1a:13:38:86:
dc:7c:63:3c:c5:91:1e:8d:73:d9:db:15:17:31:60:
fe:4c:ce:07:01:1f:b0:5a:c6:e2:1a:aa:78:4e:c6:
05:ae:c5:3b:d2:52:fa:80:7d:1c:b8:ff:b6:00:8d:
fe:fa:b2:2d:8d:b7:99:e5:3d:0d:4b:f2:9a:bf:21:
7b:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:8E:F9:F8:B6:3E:96:5B:87:57:8A:BF:EE:81:AB:B1:51:C2:24:EC
X509v3 Authority Key Identifier:
keyid:22:CD:6F:18:77:75:C2:3E:27:51:5B:2F:E3:80:82:E4:BF:EA:8F:F4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F365AA12/76D92404BF8511EBACD38C2DF8AEA228/Is1vGHd1wj4nUVsv44CC5L_qj_Q.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/Is1vGHd1wj4nUVsv44CC5L_qj_Q.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F365AA12/76D92404BF8511EBACD38C2DF8AEA228/B663D9A8C37B11EB8DB89456F8AEA228.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.223.40.0/22
Signature Algorithm: sha256WithRSAEncryption
21:bb:a5:ef:13:1d:9f:70:a6:66:39:82:b8:4c:bd:29:f8:82:
f4:c6:20:ad:a7:5d:ac:71:aa:f6:22:b9:f5:2c:e3:c6:7f:43:
fb:09:0f:0a:07:bc:5a:dd:7b:84:3a:90:2c:da:90:18:59:56:
13:99:7e:9f:65:e8:26:09:91:cb:f6:5a:a9:d5:e8:ca:26:32:
0b:58:32:81:11:c7:d6:da:27:6f:69:30:19:a1:16:46:3d:0a:
3d:5d:4b:70:7a:b1:24:b5:3e:89:48:be:08:44:bb:f2:3d:a2:
db:b8:64:a6:98:da:e0:e6:c1:fd:6f:af:17:c4:d1:9e:3f:a4:
88:8f:e2:57:d8:ca:4b:8c:53:78:09:53:4e:0f:b2:99:43:8d:
19:13:a4:ba:a0:ed:1e:4d:df:b5:0e:6d:d1:8b:5e:e7:99:9c:
45:c5:10:2c:c4:0b:74:26:81:42:80:e8:73:ba:2c:78:a0:55:
d4:70:03:d9:31:20:53:ba:67:ed:fa:3a:f3:ac:9e:ad:c2:94:
92:9b:96:45:9c:79:39:99:73:0b:72:a5:8c:47:e4:85:4a:61:
11:c0:fb:83:ee:fd:41:4d:db:b1:0d:82:98:35:8c:51:7f:3a:
69:94:a9:ba:b4:3d:e4:43:db:38:be:ec:c4:6a:55:fc:4e:29:
8d:0a:3c:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 4 02:37:15 2024 by rpki-client on console-fra.rpki-client.org