Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F366A61A/7578EB6A386511EFA61FC86B762E951A/9517B0BA386911EF88E32688762E951A.roa
File: 9517B0BA386911EF88E32688762E951A.roa (raw, json)
Hash identifier: bU/9jdaHRtJBgT7zNwNcq7vJZiofL3dCX6DcGkRxfbA=
Subject key identifier: 81:3D:78:0B:0D:1D:9A:FC:9E:19:D0:D3:19:A9:79:92:B8:C8:E1:F5
Certificate issuer: /CN=F366A61AAF/serialNumber=31813322C9B9A2BAFD7C7AF5CE0F4FF874D9CDA1
Certificate serial: 07
Authority key identifier: 31:81:33:22:C9:B9:A2:BA:FD:7C:7A:F5:CE:0F:4F:F8:74:D9:CD:A1
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/MYEzIsm5orr9fHr1zg9P-HTZzaE.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F366A61A/7578EB6A386511EFA61FC86B762E951A/9517B0BA386911EF88E32688762E951A.roa
Signing time: Tue 02 Jul 2024 11:52:40 +0000
ROA not before: Tue 02 Jul 2024 11:52:36 +0000
ROA not after: Sun 02 Jul 2034 11:52:36 +0000
asID: 328943
IP address blocks: 102.214.36.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F366A61A/7578EB6A386511EFA61FC86B762E951A/MYEzIsm5orr9fHr1zg9P-HTZzaE.crl
rsync://rpki.afrinic.net/repository/member_repository/F366A61A/7578EB6A386511EFA61FC86B762E951A/MYEzIsm5orr9fHr1zg9P-HTZzaE.mft
rsync://rpki.afrinic.net/repository/afrinic/MYEzIsm5orr9fHr1zg9P-HTZzaE.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 26 Oct 2024 00:05:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7 (0x7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F366A61AAF/serialNumber=31813322C9B9A2BAFD7C7AF5CE0F4FF874D9CDA1
Validity
Not Before: Jul 2 11:52:36 2024 GMT
Not After : Jul 2 11:52:36 2034 GMT
Subject: CN=6683ea08-69ef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:5e:80:20:69:af:38:c7:7f:3a:41:5e:31:56:
33:08:68:4e:6a:be:7b:26:ac:d9:31:cf:31:11:76:
99:6a:e0:84:28:18:4d:88:b6:8d:87:51:58:3f:5d:
3b:0d:ab:96:c6:95:32:41:c9:b2:67:41:fc:92:2e:
24:a2:cf:25:79:21:8b:50:5c:79:b0:cb:da:b4:c7:
f3:41:e5:0c:9a:cf:af:15:20:fc:30:5b:bf:41:26:
9a:9a:bf:eb:78:68:c2:81:51:98:6c:3b:85:59:d3:
34:5c:15:75:7c:8d:9e:34:de:49:72:c7:38:9e:42:
85:a7:0e:9c:db:90:f0:5e:02:b5:29:4b:09:8e:a4:
14:07:8d:d2:70:d7:76:71:9b:f4:e7:5a:2f:00:64:
9e:c1:f4:0d:5b:5b:8d:ce:de:66:db:41:2d:31:b7:
7c:d5:83:74:5e:8b:f0:e9:3b:13:80:f6:cc:35:83:
71:c1:70:cf:03:00:63:a6:41:7e:cd:71:bf:d7:8c:
a4:50:4f:5b:2d:ec:d5:38:8d:ba:a4:d9:d8:55:a1:
e1:c4:04:87:12:a6:56:34:b6:fd:c3:40:1a:65:fd:
90:d5:bf:77:0f:20:46:b1:71:f7:f6:0a:a5:5c:d4:
32:7c:95:71:d4:80:4f:58:23:c7:d1:eb:38:a6:2c:
56:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:3D:78:0B:0D:1D:9A:FC:9E:19:D0:D3:19:A9:79:92:B8:C8:E1:F5
X509v3 Authority Key Identifier:
keyid:31:81:33:22:C9:B9:A2:BA:FD:7C:7A:F5:CE:0F:4F:F8:74:D9:CD:A1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F366A61A/7578EB6A386511EFA61FC86B762E951A/MYEzIsm5orr9fHr1zg9P-HTZzaE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/MYEzIsm5orr9fHr1zg9P-HTZzaE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F366A61A/7578EB6A386511EFA61FC86B762E951A/9517B0BA386911EF88E32688762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.214.36.0/22
Signature Algorithm: sha256WithRSAEncryption
69:ce:eb:a7:ac:9b:85:be:ee:58:f8:74:d9:9f:4d:b4:c5:7f:
f7:ab:b5:a8:01:64:46:8c:e9:9b:7b:8e:bf:fb:f0:0e:ca:db:
50:f8:1e:61:83:ca:37:6b:1a:1b:79:ed:61:07:57:bd:7e:99:
0a:61:6e:d2:c3:4e:1b:5e:84:90:04:01:7c:e3:a0:21:8c:39:
47:fa:09:cb:64:18:73:d2:48:18:34:aa:7c:a7:1b:64:f4:28:
4e:0e:3f:b2:95:c1:53:cd:43:04:e8:b2:b0:14:d7:61:06:a2:
1c:7c:d6:a5:16:86:cd:15:7d:77:b4:fd:3d:14:26:8a:57:e4:
1d:7e:85:ae:49:3c:74:78:07:69:e5:23:61:c9:73:70:e3:07:
eb:04:25:88:34:d3:5c:15:d6:d6:68:49:1b:92:cc:d1:5f:32:
26:c1:9e:a9:ea:80:eb:d9:e0:ae:45:56:d2:46:8f:ab:2b:21:
70:e5:b2:d4:40:fd:43:89:9c:fa:85:c0:7e:6e:e2:56:eb:9d:
e3:bd:e3:a0:a2:09:40:77:a9:73:0b:46:a1:b4:9b:c3:0b:4f:
e2:bd:78:ef:6d:f6:e6:c4:bf:8f:5c:32:d2:16:05:d6:29:55:
03:81:ff:fa:da:59:2e:59:fc:1c:71:ed:07:68:ca:53:b0:cd:
62:9c:84:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Oct 24 06:47:48 2024 by rpki-client on console-fra.rpki-client.org