Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F366A4F1/D2426D5440A811EE8AB736724AD9E6FC/B95E0AD440AB11EEA20CFB7A4AD9E6FC.roa
File: B95E0AD440AB11EEA20CFB7A4AD9E6FC.roa (raw, json)
Hash identifier: Dc7Blsh1nTbhDdB+xxqAt7dASD2CCoKvRCA4opVblYM=
Subject key identifier: CD:C6:6B:20:02:94:DC:16:FF:4C:0A:2B:6E:1F:49:A7:6D:A7:18:57
Certificate issuer: /CN=F366A4F1AF/serialNumber=6E82913AA51669F73BD3CD6F6688F6737B8E5D30
Certificate serial: 02
Authority key identifier: 6E:82:91:3A:A5:16:69:F7:3B:D3:CD:6F:66:88:F6:73:7B:8E:5D:30
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/boKROqUWafc7081vZoj2c3uOXTA.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F366A4F1/D2426D5440A811EE8AB736724AD9E6FC/B95E0AD440AB11EEA20CFB7A4AD9E6FC.roa
Signing time: Tue 22 Aug 2023 05:21:19 +0000
ROA not before: Tue 22 Aug 2023 05:21:15 +0000
ROA not after: Wed 21 Aug 2030 05:21:15 +0000
asID: 329265
IP address blocks: 102.212.10.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F366A4F1/D2426D5440A811EE8AB736724AD9E6FC/boKROqUWafc7081vZoj2c3uOXTA.crl
rsync://rpki.afrinic.net/repository/member_repository/F366A4F1/D2426D5440A811EE8AB736724AD9E6FC/boKROqUWafc7081vZoj2c3uOXTA.mft
rsync://rpki.afrinic.net/repository/afrinic/boKROqUWafc7081vZoj2c3uOXTA.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 04 Jun 2024 00:04:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2 (0x2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F366A4F1AF/serialNumber=6E82913AA51669F73BD3CD6F6688F6737B8E5D30
Validity
Not Before: Aug 22 05:21:15 2023 GMT
Not After : Aug 21 05:21:15 2030 GMT
Subject: CN=64e445cf-3068
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:66:ac:be:a1:f4:87:42:b7:04:32:4f:9c:fc:
0d:0e:56:84:4d:65:ab:67:b1:39:4a:89:ba:d1:5e:
70:a4:9d:57:cd:9a:ca:16:a7:55:4b:7d:45:f6:fa:
d0:49:36:bf:b0:a8:b8:30:4a:58:00:55:7b:a5:e2:
17:d9:d1:2d:fb:18:64:5e:20:31:c1:eb:f8:f2:39:
98:f8:42:d8:69:58:a4:98:79:40:e9:e0:86:6e:00:
90:78:0e:29:52:58:ae:2a:b5:94:83:e6:fe:b1:fd:
1a:cd:f6:dd:d3:cb:7a:46:47:e0:23:3b:04:03:33:
15:41:57:65:36:83:10:59:32:98:0f:db:65:4f:7b:
19:31:8a:d4:62:ba:34:8b:89:db:c1:95:65:f5:81:
91:d9:fb:29:83:08:9a:74:da:13:95:1c:4e:38:67:
5e:84:96:d0:3b:45:cb:bd:c8:06:7f:63:50:3c:10:
7d:f4:d3:3d:4e:54:98:bd:8c:46:8b:04:5e:d9:bb:
97:e1:f7:9d:29:c8:0b:69:83:0c:b3:b2:96:ad:0e:
6d:e3:15:10:92:75:92:fd:e4:ec:ba:2d:d0:9f:04:
42:c0:59:8d:b3:c2:27:c5:18:96:93:3a:10:be:87:
f1:16:a5:b6:59:48:55:dc:5c:fe:77:5e:25:15:dd:
14:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:C6:6B:20:02:94:DC:16:FF:4C:0A:2B:6E:1F:49:A7:6D:A7:18:57
X509v3 Authority Key Identifier:
keyid:6E:82:91:3A:A5:16:69:F7:3B:D3:CD:6F:66:88:F6:73:7B:8E:5D:30
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F366A4F1/D2426D5440A811EE8AB736724AD9E6FC/boKROqUWafc7081vZoj2c3uOXTA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/boKROqUWafc7081vZoj2c3uOXTA.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F366A4F1/D2426D5440A811EE8AB736724AD9E6FC/B95E0AD440AB11EEA20CFB7A4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.212.10.0/24
Signature Algorithm: sha256WithRSAEncryption
7c:0c:a4:06:61:44:5d:00:84:0e:6f:d6:3e:71:79:40:51:5b:
0c:14:c8:0c:b2:f1:b8:4b:ac:9d:fb:63:19:4c:7d:34:b9:33:
5f:87:63:64:f2:e1:42:ea:27:ec:46:59:74:fd:ac:04:38:58:
02:b8:05:f2:fc:7b:22:b7:23:0f:04:9b:35:26:7e:eb:12:bf:
81:3e:47:8d:ee:e3:ae:d3:f1:4f:b5:c7:88:2e:35:e7:53:70:
29:ab:51:ca:5f:09:da:4b:e3:cc:20:84:b2:58:db:cd:bf:b2:
b0:4b:9c:26:29:92:51:e2:f9:88:f2:9d:f1:9c:85:6a:b5:a5:
b2:8b:ca:1b:d8:ad:d7:ca:cc:d2:7c:74:59:0c:af:75:27:22:
bd:b9:9d:59:f8:c6:63:d4:bd:e0:d4:8c:f1:46:73:6d:2e:d0:
45:93:21:9f:ea:d9:c9:c6:10:db:82:57:b3:c0:4a:56:e3:3f:
8f:1c:87:ee:19:87:0f:ec:15:99:5f:62:73:71:01:8d:46:96:
e1:b1:2d:5a:5c:dc:2e:9e:d9:b5:be:29:ae:ff:c3:64:5b:b8:
9a:0b:77:b8:2e:3d:dd:7b:cd:8c:6a:2e:40:05:7e:7c:7c:90:
cf:b1:81:46:b6:54:ef:80:ca:69:d1:54:67:9b:8f:7c:1c:c5:
d5:84:27:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 2 03:39:40 2024 by rpki-client on console-ams.rpki-client.org