Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F365F2BD/552C6D641A6B11EEA55ACF204AD9E6FC/18B139E01A6C11EEB82038234AD9E6FC.roa
File: 18B139E01A6C11EEB82038234AD9E6FC.roa (raw, json)
Hash identifier: QZI9+tcf9X7Id7jhedesNdG7DqJ+gZXRuNoQDCxDg+0=
Subject key identifier: A6:04:21:FD:7D:3C:4D:67:09:C8:B6:52:1C:D6:2B:DE:07:6B:1E:CD
Certificate issuer: /CN=F365F2BDAF/serialNumber=1321AB35E317A1C601B244FEC976E58BDA0BB333
Certificate serial: 02
Authority key identifier: 13:21:AB:35:E3:17:A1:C6:01:B2:44:FE:C9:76:E5:8B:DA:0B:B3:33
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/EyGrNeMXocYBskT-yXbli9oLszM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F365F2BD/552C6D641A6B11EEA55ACF204AD9E6FC/18B139E01A6C11EEB82038234AD9E6FC.roa
Signing time: Tue 04 Jul 2023 13:10:07 +0000
ROA not before: Tue 04 Jul 2023 13:10:01 +0000
ROA not after: Mon 04 Jul 2033 13:10:01 +0000
asID: 329153
IP address blocks: 102.134.92.0/22 maxlen: 24
102.217.88.0/22 maxlen: 24
102.222.192.0/22 maxlen: 24
2c0f:f80::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F365F2BD/552C6D641A6B11EEA55ACF204AD9E6FC/EyGrNeMXocYBskT-yXbli9oLszM.crl
rsync://rpki.afrinic.net/repository/member_repository/F365F2BD/552C6D641A6B11EEA55ACF204AD9E6FC/EyGrNeMXocYBskT-yXbli9oLszM.mft
rsync://rpki.afrinic.net/repository/afrinic/EyGrNeMXocYBskT-yXbli9oLszM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 18 Jun 2024 00:04:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2 (0x2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F365F2BDAF/serialNumber=1321AB35E317A1C601B244FEC976E58BDA0BB333
Validity
Not Before: Jul 4 13:10:01 2023 GMT
Not After : Jul 4 13:10:01 2033 GMT
Subject: CN=64a41a2f-a5dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:eb:14:ee:f6:67:2e:eb:42:2e:46:d0:91:aa:
87:2b:1e:6f:1d:7f:d8:54:89:9b:8f:11:c6:e6:40:
e6:de:20:5a:37:5a:26:8a:46:86:e4:e0:ac:dd:c6:
df:45:6f:05:97:10:d0:a4:50:e7:7e:1e:d5:e0:3c:
77:45:dd:58:21:b7:75:86:a1:d7:92:1b:43:84:3d:
19:fa:c5:02:aa:33:d3:d1:ab:0f:b7:06:78:bc:f0:
f4:e5:ff:7b:45:9f:5a:48:88:c8:40:f6:90:66:b2:
63:5a:b7:70:a2:d3:50:8a:ea:0b:8d:f1:26:0f:b3:
7b:46:49:13:0f:bd:00:5a:47:2e:41:2d:2b:4a:0b:
34:1f:09:44:c8:2f:9c:80:76:77:a2:19:82:7a:fa:
f1:18:b7:37:b2:bf:e4:fb:c6:11:24:d4:4c:1c:8e:
5d:8f:8c:af:ba:0c:0b:b4:b3:60:50:f0:91:9a:b2:
5c:8f:03:43:e4:1e:af:49:f0:80:c7:7a:79:f3:f9:
ba:8e:d5:84:fe:45:09:6a:6c:df:07:2b:d2:a7:3c:
b8:d0:47:b0:7e:ee:87:00:d8:9b:fa:9c:c2:78:7f:
f8:6a:39:db:8f:29:c2:2a:6c:c1:25:9c:bf:0c:c7:
10:8b:ba:8d:2a:9f:a9:43:9a:09:7c:40:01:4f:5d:
94:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:04:21:FD:7D:3C:4D:67:09:C8:B6:52:1C:D6:2B:DE:07:6B:1E:CD
X509v3 Authority Key Identifier:
keyid:13:21:AB:35:E3:17:A1:C6:01:B2:44:FE:C9:76:E5:8B:DA:0B:B3:33
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F365F2BD/552C6D641A6B11EEA55ACF204AD9E6FC/EyGrNeMXocYBskT-yXbli9oLszM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/EyGrNeMXocYBskT-yXbli9oLszM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F365F2BD/552C6D641A6B11EEA55ACF204AD9E6FC/18B139E01A6C11EEB82038234AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.134.92.0/22
102.217.88.0/22
102.222.192.0/22
IPv6:
2c0f:f80::/32
Signature Algorithm: sha256WithRSAEncryption
bf:80:b4:11:55:4b:3b:85:6e:8b:e8:4a:f3:97:33:80:88:82:
e5:a7:45:f2:a7:77:32:69:2d:eb:12:fa:e0:76:6f:a2:26:98:
4c:1b:ca:02:44:be:b7:55:61:f1:10:1f:8a:1b:21:46:93:05:
fe:05:44:a4:68:c7:ae:6a:ef:d5:75:99:54:19:e2:51:66:1e:
18:71:26:d8:cf:1f:20:10:35:e1:02:55:e5:49:56:3b:9a:da:
3d:a7:db:1d:e9:4a:1b:8c:b0:91:cc:b9:16:1f:a0:cb:35:b3:
8b:65:78:f5:bf:81:74:53:8e:a0:b4:e9:1d:8f:b4:d9:4c:51:
89:9c:6c:5f:1f:48:d8:fe:f3:c3:3b:fb:a4:74:5b:c5:f3:7d:
24:4e:6b:93:2a:e6:92:84:24:08:00:38:d3:83:b8:25:99:90:
da:10:52:a3:66:b8:4c:5f:db:27:37:ed:ea:0a:f9:d6:aa:1e:
5f:71:5b:5a:4d:a5:9f:ef:b7:7c:4a:9c:b3:06:26:f5:e0:c6:
59:34:43:d3:a0:8b:bb:ef:3a:fc:e4:8e:3e:1f:34:1f:40:4d:
74:6c:90:09:39:41:eb:c6:7b:0c:af:05:8c:58:0f:44:49:5e:
cf:1b:64:df:ed:9e:97:31:f5:8e:1d:de:05:66:ca:47:af:2c:
32:57:f6:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 16 03:31:04 2024 by rpki-client on console-ams.rpki-client.org