Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F365C439/D1F340D819C111EFB2C7384F017001B1/21A1087C19C211EFB818BD53017001B1.roa
File: 21A1087C19C211EFB818BD53017001B1.roa (raw, json)
Hash identifier: zqwaVPZuU0bamDmOPHw2hVNIZ8LHafl72E8Nv5M3OgI=
Subject key identifier: B5:E6:56:8E:FF:68:22:3C:F9:21:AB:66:55:61:FA:31:67:72:6D:40
Certificate issuer: /CN=F365C439AF/serialNumber=585E307C207009640377F2C67A797B6180587305
Certificate serial: 02
Authority key identifier: 58:5E:30:7C:20:70:09:64:03:77:F2:C6:7A:79:7B:61:80:58:73:05
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/WF4wfCBwCWQDd_LGenl7YYBYcwU.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F365C439/D1F340D819C111EFB2C7384F017001B1/21A1087C19C211EFB818BD53017001B1.roa
Signing time: Fri 24 May 2024 11:38:25 +0000
ROA not before: Fri 24 May 2024 11:38:20 +0000
ROA not after: Fri 31 Dec 2049 11:38:20 +0000
asID: 37282
IP address blocks: 102.130.224.0/21 maxlen: 24
2c0f:ec60::/32 maxlen: 64
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F365C439/D1F340D819C111EFB2C7384F017001B1/WF4wfCBwCWQDd_LGenl7YYBYcwU.crl
rsync://rpki.afrinic.net/repository/member_repository/F365C439/D1F340D819C111EFB2C7384F017001B1/WF4wfCBwCWQDd_LGenl7YYBYcwU.mft
rsync://rpki.afrinic.net/repository/afrinic/WF4wfCBwCWQDd_LGenl7YYBYcwU.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 26 Oct 2024 00:05:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2 (0x2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F365C439AF/serialNumber=585E307C207009640377F2C67A797B6180587305
Validity
Not Before: May 24 11:38:20 2024 GMT
Not After : Dec 31 11:38:20 2049 GMT
Subject: CN=66507c31-1d98
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:11:a9:37:2e:b3:fb:a9:45:af:04:f8:5b:da:
0c:d1:75:61:af:be:56:07:b3:5e:a2:bc:77:af:5b:
5b:a8:0d:e0:50:43:b9:3e:62:3d:96:5e:59:1e:5f:
a8:87:d7:9a:73:ec:50:bd:e8:b2:db:e4:45:78:ac:
aa:07:b2:81:d9:39:c5:31:de:e0:9d:c1:dd:0e:6c:
80:a2:ae:ba:e0:8e:e5:d1:4b:d9:8a:fe:0c:74:e8:
a5:02:b1:7e:b5:23:c6:f0:ce:3d:1d:b9:95:52:38:
54:a0:dd:e1:64:65:95:5e:73:3c:0f:61:96:0b:93:
4c:7a:83:18:86:7a:72:0b:f1:ef:24:e8:1b:63:b3:
e6:70:3b:91:35:f8:1b:a8:5d:60:cb:93:ac:90:5a:
bc:91:cb:26:36:f2:7c:79:12:ab:10:66:24:bf:f8:
7e:49:4e:38:a7:e0:dd:f6:66:77:d8:e8:e3:cc:ab:
14:d9:52:63:62:20:b3:40:4e:bc:c8:ba:53:3c:05:
f3:a0:6b:93:6d:04:63:a8:90:7b:df:6d:0b:18:c0:
16:81:8c:a9:2c:6e:08:e1:96:f3:b9:50:fa:56:50:
91:87:c9:5c:20:17:32:d0:0a:28:b3:6f:a8:53:63:
86:ff:ad:5c:3a:15:28:9d:7a:8a:99:a3:35:8d:73:
24:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:E6:56:8E:FF:68:22:3C:F9:21:AB:66:55:61:FA:31:67:72:6D:40
X509v3 Authority Key Identifier:
keyid:58:5E:30:7C:20:70:09:64:03:77:F2:C6:7A:79:7B:61:80:58:73:05
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F365C439/D1F340D819C111EFB2C7384F017001B1/WF4wfCBwCWQDd_LGenl7YYBYcwU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/WF4wfCBwCWQDd_LGenl7YYBYcwU.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F365C439/D1F340D819C111EFB2C7384F017001B1/21A1087C19C211EFB818BD53017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.130.224.0/21
IPv6:
2c0f:ec60::/32
Signature Algorithm: sha256WithRSAEncryption
99:79:0f:c5:df:de:e0:46:1f:0c:70:84:d7:e9:ca:70:27:85:
4f:44:a7:de:4b:03:aa:b4:6e:8a:31:a5:6b:ab:25:b9:75:4b:
72:0f:5b:b0:7e:7b:70:14:15:90:cc:4d:44:f9:0f:fd:5a:c1:
d4:d2:e2:d3:9b:5b:3c:2b:6c:c5:00:2f:92:98:54:66:f6:7c:
49:d4:83:11:27:b4:f9:71:9e:60:f7:ad:af:be:86:e0:cc:bb:
e5:59:6e:3b:08:76:73:84:f8:83:03:7f:a6:2b:54:cb:54:8a:
47:f2:18:40:ad:53:a3:52:06:dc:fa:d9:cd:71:59:c1:90:55:
a7:46:51:fc:76:68:71:ac:f5:e8:b5:4d:80:67:7b:a1:80:38:
e0:44:11:68:5b:56:cd:97:7c:98:df:fd:fc:b6:a3:c3:a2:cb:
ef:be:2d:93:53:49:2e:02:0f:de:1b:dd:54:c7:29:0e:65:8d:
28:b8:1d:c1:e5:fd:b4:15:36:77:29:40:5d:2b:8c:92:40:6d:
28:e3:4a:d7:89:7c:fa:55:ea:f9:2c:93:25:98:f8:68:cf:32:
1d:b4:b4:18:7c:be:fe:95:3a:e8:f6:8d:f9:f7:e6:ba:eb:33:
ac:f7:9f:f4:60:bf:03:89:23:ce:e2:5a:b4:e4:bb:d9:ab:23:
7d:c9:91:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Oct 24 06:47:47 2024 by rpki-client on console-fra.rpki-client.org