Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F365C604/340A4E06624511ECAA933A9B5A40D577/1D67AFF2625611ECA76FC9CA5A40D577.roa
File: 1D67AFF2625611ECA76FC9CA5A40D577.roa (raw, json)
Hash identifier: CNS1KVY0r8ItJ0ckVkQJIJksTHYbUnhyhKUcL2W+Qw0=
Subject key identifier: 01:0E:9F:92:C1:BB:75:A5:A0:B9:38:1D:D1:79:3A:3F:FB:13:CB:EF
Certificate issuer: /CN=F365C604AF/serialNumber=83035995DE18C9D6AD4BCBB9CD95A1504D9FCA1F
Certificate serial: 04
Authority key identifier: 83:03:59:95:DE:18:C9:D6:AD:4B:CB:B9:CD:95:A1:50:4D:9F:CA:1F
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/gwNZld4YydatS8u5zZWhUE2fyh8.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F365C604/340A4E06624511ECAA933A9B5A40D577/1D67AFF2625611ECA76FC9CA5A40D577.roa
Signing time: Tue 21 Dec 2021 12:04:15 +0000
ROA not before: Tue 21 Dec 2021 12:04:11 +0000
ROA not after: Sun 21 Dec 2031 12:04:11 +0000
asID: 328826
IP address blocks: 102.220.76.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F365C604/340A4E06624511ECAA933A9B5A40D577/gwNZld4YydatS8u5zZWhUE2fyh8.crl
rsync://rpki.afrinic.net/repository/member_repository/F365C604/340A4E06624511ECAA933A9B5A40D577/gwNZld4YydatS8u5zZWhUE2fyh8.mft
rsync://rpki.afrinic.net/repository/afrinic/gwNZld4YydatS8u5zZWhUE2fyh8.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4 (0x4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F365C604AF/serialNumber=83035995DE18C9D6AD4BCBB9CD95A1504D9FCA1F
Validity
Not Before: Dec 21 12:04:11 2021 GMT
Not After : Dec 21 12:04:11 2031 GMT
Subject: CN=61c1c2be-ba0d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:37:4b:ae:33:4c:4e:5e:e1:0a:ba:a2:36:21:
14:2d:26:48:30:7f:32:54:8c:6f:50:a4:7c:98:2f:
19:e9:7e:72:e5:63:44:4e:59:bc:75:6f:0c:ac:b9:
19:3e:f1:87:d7:33:8a:8b:66:bb:d4:13:02:ab:57:
5b:a3:18:ca:d5:58:53:79:d6:fa:3f:a5:dd:6a:6c:
54:e5:ae:ae:13:7b:4f:1f:a6:02:0d:e1:8b:79:bf:
28:de:ab:e9:2b:15:fe:95:7d:6a:46:87:54:2d:02:
ee:4c:91:8d:34:06:d5:1c:e6:a9:6a:2b:36:98:3e:
b9:93:4c:27:78:63:9f:90:82:ab:81:0b:7d:64:af:
c0:99:4a:f9:b8:e7:08:47:91:00:53:7e:1f:26:fe:
2f:17:54:f9:86:c6:0f:ca:6e:ca:7f:59:25:29:59:
38:f6:c0:c3:67:2d:ae:41:69:0c:38:8b:08:7f:aa:
66:ea:37:c7:f0:8b:8f:d9:23:64:39:0e:71:e3:f7:
e4:7f:a9:4a:a3:71:d8:70:9b:3a:28:bb:6e:7c:08:
fc:5b:42:ed:08:45:52:49:43:dc:9b:5a:e6:49:aa:
7a:34:e8:03:57:b9:78:ef:5e:ff:3e:b3:05:91:9e:
6c:6f:f5:ca:75:4d:50:d4:f8:0d:29:df:1e:50:6b:
2a:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:0E:9F:92:C1:BB:75:A5:A0:B9:38:1D:D1:79:3A:3F:FB:13:CB:EF
X509v3 Authority Key Identifier:
keyid:83:03:59:95:DE:18:C9:D6:AD:4B:CB:B9:CD:95:A1:50:4D:9F:CA:1F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F365C604/340A4E06624511ECAA933A9B5A40D577/gwNZld4YydatS8u5zZWhUE2fyh8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/gwNZld4YydatS8u5zZWhUE2fyh8.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F365C604/340A4E06624511ECAA933A9B5A40D577/1D67AFF2625611ECA76FC9CA5A40D577.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.220.76.0/22
Signature Algorithm: sha256WithRSAEncryption
66:ff:6d:90:bb:62:7e:6d:b6:3a:bc:49:a2:2f:d3:e8:e0:0a:
d2:68:cf:f3:2d:13:3d:30:03:dd:3b:68:53:b8:fd:d0:de:82:
e8:e6:72:5c:be:d9:d3:34:c4:42:a1:b6:49:93:71:f9:db:3e:
ec:68:ec:0a:53:7e:7f:a1:7f:f4:94:79:08:be:3e:ab:2e:b6:
6a:a1:bb:67:70:a4:66:3c:24:ca:47:b6:bc:6f:f5:bb:f0:e9:
ec:7b:2a:6e:5e:9b:ec:5e:8b:fd:67:a8:5d:3e:2b:fc:ef:f7:
d5:84:2e:d5:83:c5:57:82:6c:5d:35:35:25:ab:51:fd:99:5a:
ff:55:0c:35:af:55:70:31:d5:cb:25:72:98:75:18:64:54:6f:
0c:48:64:7e:58:08:b4:9e:9e:a5:c3:93:b2:d4:0d:0d:33:26:
31:77:45:a2:9a:a8:ef:c5:39:dc:63:f9:4a:6a:a9:45:dd:b3:
49:3a:70:5e:a7:1e:1f:e2:f2:67:26:9c:4f:9f:d1:25:35:9f:
b0:f0:8a:c2:ab:97:49:ce:a0:ef:01:bc:3f:df:2e:95:7c:c4:
d6:48:34:6e:b4:a1:fa:ab:63:84:e7:2e:40:ee:c2:48:04:16:
99:ba:f2:87:45:36:5c:da:d0:16:8b:4c:59:d5:1a:35:38:65:
b0:66:5a:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:03:35 2024 by rpki-client on console-ams.rpki-client.org