Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F365BC44/892D49C6F61811ECBE1B38AFF1222468/AEB3FD70F61811ECA343ACAFF1222468.roa
File: AEB3FD70F61811ECA343ACAFF1222468.roa (raw, json)
Hash identifier: yr8c8nv1fl6R2/dpv4d+UEGlhaBD6Mc7GC6CbBKlwUE=
Subject key identifier: E6:E6:72:FE:66:FE:0A:0E:08:5A:E3:EA:B2:00:D2:9A:AB:47:DF:67
Certificate issuer: /CN=F365BC44AF/serialNumber=2D00154E600A640AC32A3285D9CE9FC50A941AB3
Certificate serial: 02
Authority key identifier: 2D:00:15:4E:60:0A:64:0A:C3:2A:32:85:D9:CE:9F:C5:0A:94:1A:B3
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/LQAVTmAKZArDKjKF2c6fxQqUGrM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F365BC44/892D49C6F61811ECBE1B38AFF1222468/AEB3FD70F61811ECA343ACAFF1222468.roa
Signing time: Mon 27 Jun 2022 12:57:21 +0000
ROA not before: Mon 27 Jun 2022 12:57:17 +0000
ROA not after: Sun 27 Jun 2032 12:57:17 +0000
asID: 328915
IP address blocks: 102.218.204.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F365BC44/892D49C6F61811ECBE1B38AFF1222468/LQAVTmAKZArDKjKF2c6fxQqUGrM.crl
rsync://rpki.afrinic.net/repository/member_repository/F365BC44/892D49C6F61811ECBE1B38AFF1222468/LQAVTmAKZArDKjKF2c6fxQqUGrM.mft
rsync://rpki.afrinic.net/repository/afrinic/LQAVTmAKZArDKjKF2c6fxQqUGrM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 28 May 2024 00:04:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2 (0x2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F365BC44AF/serialNumber=2D00154E600A640AC32A3285D9CE9FC50A941AB3
Validity
Not Before: Jun 27 12:57:17 2022 GMT
Not After : Jun 27 12:57:17 2032 GMT
Subject: CN=62b9a931-ed8b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f6:33:8e:f9:08:7e:5c:56:af:d0:4c:ae:9f:bf:
17:59:f9:d6:4a:17:c1:7d:90:bf:4f:bf:43:6d:93:
95:a1:3f:68:73:07:41:62:e9:0c:28:17:4e:a6:67:
95:90:85:33:69:44:2d:1e:82:93:53:d5:80:e2:7f:
ff:8c:1e:83:0e:b5:f2:df:85:94:96:26:38:0c:23:
6b:26:79:85:c8:c1:8a:d5:a9:69:32:65:ec:ac:47:
74:4b:30:f2:33:d5:2b:e9:22:ac:99:5f:2b:48:8a:
aa:38:b3:70:9f:12:0a:0c:61:2b:37:db:c3:ad:15:
70:15:83:26:85:40:a7:e4:9e:2b:2b:f3:ee:11:46:
4c:67:54:59:8a:71:1b:93:75:e0:85:78:a5:40:ca:
9f:55:d5:5c:69:f2:2f:da:84:99:47:23:d2:a5:d8:
07:4a:d6:5e:51:9a:08:67:8f:6d:d4:26:e5:54:97:
dd:55:ed:89:92:f5:67:8b:81:70:a4:b8:db:4a:23:
20:cd:78:a1:45:d0:aa:9f:9d:e3:73:0b:54:83:fb:
4c:05:97:da:91:82:0c:73:8d:de:5f:40:0b:2a:f1:
d2:0a:4d:07:d9:77:4b:c7:00:03:0b:d4:cd:15:19:
e9:f1:78:9a:e2:03:b1:13:da:e2:d9:d1:0e:71:9c:
96:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:E6:72:FE:66:FE:0A:0E:08:5A:E3:EA:B2:00:D2:9A:AB:47:DF:67
X509v3 Authority Key Identifier:
keyid:2D:00:15:4E:60:0A:64:0A:C3:2A:32:85:D9:CE:9F:C5:0A:94:1A:B3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F365BC44/892D49C6F61811ECBE1B38AFF1222468/LQAVTmAKZArDKjKF2c6fxQqUGrM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/LQAVTmAKZArDKjKF2c6fxQqUGrM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F365BC44/892D49C6F61811ECBE1B38AFF1222468/AEB3FD70F61811ECA343ACAFF1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.218.204.0/22
Signature Algorithm: sha256WithRSAEncryption
7f:1c:d6:a5:97:66:89:ad:ab:25:94:a2:bd:cd:81:79:dc:dd:
05:7f:61:5f:b7:c9:c2:c5:ad:f8:88:c2:14:b6:6c:1c:da:c1:
90:d7:7e:05:27:75:1c:32:0d:5f:86:f2:50:d3:d8:86:c1:9f:
7e:78:a8:f6:b5:1a:b7:16:69:9f:b4:f9:f7:23:8c:9a:57:24:
70:e4:fe:92:39:e1:b8:1b:b5:b6:35:f8:31:71:3f:e6:c3:65:
15:e2:2a:ab:10:2c:a3:b5:05:45:df:71:ef:75:73:92:bd:6e:
c8:8b:39:11:45:59:6a:89:08:f5:ba:93:db:ea:9b:15:a2:23:
0a:ab:19:13:ae:fb:21:b4:db:8e:e3:33:34:92:43:e8:01:bb:
70:a9:4c:5f:28:74:a3:12:67:91:8f:e7:e5:bb:52:e3:8d:10:
c4:4c:90:0f:65:14:ce:7d:a9:91:61:e0:87:d1:cb:68:34:85:
82:9d:9c:f6:95:cb:45:34:26:56:a6:9b:3b:e9:2a:02:76:2c:
61:8e:fc:bc:7a:97:66:22:1f:4c:a9:ed:cd:d4:33:f7:37:2e:
4b:e0:86:79:c4:39:05:b5:db:49:d6:cf:fd:2f:82:23:ad:69:
4e:34:fa:41:54:27:aa:70:83:8a:68:92:f6:2a:38:ae:d6:c6:
89:f5:6d:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 26 02:15:12 2024 by rpki-client on console-fra.rpki-client.org