Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F365C754/9C2341E8DB9111EDBEBF620C306D8C1D/B2D10BBEEE9711ED894556814AD9E6FC.roa
File: B2D10BBEEE9711ED894556814AD9E6FC.roa (raw, json)
Hash identifier: zNbAe2xA/Ij6zG9VyzzSkdlghaCmGF5y02GKaqBdNzE=
Subject key identifier: 92:E7:BE:1E:28:B8:6D:D3:BC:22:E9:70:17:81:39:42:12:31:B6:EE
Certificate issuer: /CN=F365C754AF/serialNumber=33FBE1DCDE341C649868D416BF3EA00002C4DF20
Certificate serial: 24
Authority key identifier: 33:FB:E1:DC:DE:34:1C:64:98:68:D4:16:BF:3E:A0:00:02:C4:DF:20
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/M_vh3N40HGSYaNQWvz6gAALE3yA.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F365C754/9C2341E8DB9111EDBEBF620C306D8C1D/B2D10BBEEE9711ED894556814AD9E6FC.roa
Signing time: Tue 09 May 2023 18:31:23 +0000
ROA not before: Tue 09 May 2023 18:31:18 +0000
ROA not after: Fri 09 May 2025 18:31:18 +0000
asID: 328442
IP address blocks: 102.213.120.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F365C754/9C2341E8DB9111EDBEBF620C306D8C1D/M_vh3N40HGSYaNQWvz6gAALE3yA.crl
rsync://rpki.afrinic.net/repository/member_repository/F365C754/9C2341E8DB9111EDBEBF620C306D8C1D/M_vh3N40HGSYaNQWvz6gAALE3yA.mft
rsync://rpki.afrinic.net/repository/afrinic/M_vh3N40HGSYaNQWvz6gAALE3yA.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 03 Jun 2024 00:05:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 36 (0x24)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F365C754AF/serialNumber=33FBE1DCDE341C649868D416BF3EA00002C4DF20
Validity
Not Before: May 9 18:31:18 2023 GMT
Not After : May 9 18:31:18 2025 GMT
Subject: CN=645a917a-77d0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:cb:a6:d3:f7:5d:0b:0c:a7:7b:ba:a4:44:93:
c0:4e:47:87:36:37:96:6d:c1:8c:56:dc:14:6a:8d:
46:40:cb:09:98:b1:54:65:a1:07:42:70:c1:7b:d9:
d4:d4:37:25:1f:cd:aa:5b:15:73:2c:f4:dc:bf:29:
1d:c7:06:80:81:cf:f6:f8:68:0b:48:43:c1:c5:ad:
94:bf:3c:af:ad:c8:f0:b9:bb:67:f9:23:23:84:69:
ff:24:da:6a:8b:b0:7e:36:dd:82:e3:cb:93:f3:f6:
2f:62:65:35:a1:f4:4f:e9:bb:36:24:8e:08:2f:1d:
70:d1:37:fb:2d:ef:c0:97:12:2c:fd:f8:b5:2d:39:
24:54:29:72:2b:18:37:0d:22:5d:f1:75:bc:62:d9:
3e:36:0e:e8:78:c8:d4:65:03:37:53:ee:3a:58:ab:
fd:ff:08:ab:13:77:74:66:e1:b7:3a:0b:ef:16:75:
af:d7:15:38:87:42:7f:0d:46:6b:24:ad:7e:68:f6:
36:a0:13:21:7d:9d:70:58:3c:d3:9d:4c:91:61:25:
af:e7:de:c5:86:00:9d:31:33:71:c3:8c:16:cf:40:
cb:92:19:31:00:83:87:31:9a:b6:0c:bb:77:3b:fb:
4a:74:7c:45:6d:ab:3b:8e:86:4b:cf:47:69:81:ff:
00:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:E7:BE:1E:28:B8:6D:D3:BC:22:E9:70:17:81:39:42:12:31:B6:EE
X509v3 Authority Key Identifier:
keyid:33:FB:E1:DC:DE:34:1C:64:98:68:D4:16:BF:3E:A0:00:02:C4:DF:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F365C754/9C2341E8DB9111EDBEBF620C306D8C1D/M_vh3N40HGSYaNQWvz6gAALE3yA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/M_vh3N40HGSYaNQWvz6gAALE3yA.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F365C754/9C2341E8DB9111EDBEBF620C306D8C1D/B2D10BBEEE9711ED894556814AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.213.120.0/22
Signature Algorithm: sha256WithRSAEncryption
8c:5c:ec:c5:3f:de:2c:34:a7:35:20:21:82:75:81:a7:99:af:
b7:0e:01:ce:b4:3c:48:35:37:6b:fe:11:09:a8:fe:92:97:eb:
23:58:75:7d:cc:0a:68:32:7b:88:7d:72:aa:f9:cd:ae:72:a3:
cd:5a:dd:98:f8:74:38:85:1e:74:21:e8:f0:7b:b3:eb:1f:16:
81:16:db:31:a7:5e:04:28:df:24:fd:38:4a:55:09:9e:70:4d:
bb:d0:38:72:bd:c7:64:ff:54:84:37:65:fd:f2:67:be:86:68:
2a:8f:11:d1:88:1f:87:31:6c:27:a7:14:3f:f5:6f:5e:d7:e8:
cf:94:02:1d:67:f3:0e:d8:bd:94:bb:06:ea:8a:c5:29:2e:36:
d9:85:44:41:3c:83:14:d4:91:39:4f:0b:e3:bb:3a:0e:a2:e8:
e3:cd:53:01:25:e3:8d:c3:65:80:c4:e4:92:c6:5a:54:b7:d9:
13:58:b7:7a:48:98:78:cd:d9:d6:0d:9c:d9:9a:72:c9:5f:d1:
68:e4:2c:d4:09:bd:35:dd:08:52:12:b1:66:90:f4:76:b3:1d:
07:27:bc:b3:18:de:da:57:04:56:59:5a:fc:2d:24:21:65:a3:
e6:12:9a:94:7f:56:70:f1:7f:b5:92:0d:2c:d7:cf:b4:be:5b:
98:f1:2e:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 1 04:07:13 2024 by rpki-client on console-ams.rpki-client.org