Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F366DC11/8A879878967811EAA493725AF8AEA228/341C8B76E6A811EAB16AE924F8AEA228.roa
File: 341C8B76E6A811EAB16AE924F8AEA228.roa (raw, json)
Hash identifier: n6dIOaYQglTdS7hxNkLDiY5bWezfODiv8ADCJeufuHM=
Subject key identifier: BF:A0:5E:1B:EB:EA:89:BD:85:90:B4:6D:3B:B9:2D:61:B4:7A:CD:CB
Certificate issuer: /CN=F366DC11AF/serialNumber=EC2A86368822A47F1397D8DCE5734C530272C965
Certificate serial: 6C
Authority key identifier: EC:2A:86:36:88:22:A4:7F:13:97:D8:DC:E5:73:4C:53:02:72:C9:65
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/7CqGNogipH8Tl9jc5XNMUwJyyWU.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F366DC11/8A879878967811EAA493725AF8AEA228/341C8B76E6A811EAB16AE924F8AEA228.roa
Signing time: Tue 25 Aug 2020 07:54:32 +0000
ROA not before: Tue 25 Aug 2020 07:54:18 +0000
ROA not after: Sat 31 Aug 2030 07:54:18 +0000
asID: 328638
IP address blocks: 102.221.220.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F366DC11/8A879878967811EAA493725AF8AEA228/7CqGNogipH8Tl9jc5XNMUwJyyWU.crl
rsync://rpki.afrinic.net/repository/member_repository/F366DC11/8A879878967811EAA493725AF8AEA228/7CqGNogipH8Tl9jc5XNMUwJyyWU.mft
rsync://rpki.afrinic.net/repository/afrinic/7CqGNogipH8Tl9jc5XNMUwJyyWU.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 26 Apr 2024 00:05:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 108 (0x6c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F366DC11AF/serialNumber=EC2A86368822A47F1397D8DCE5734C530272C965
Validity
Not Before: Aug 25 07:54:18 2020 GMT
Not After : Aug 31 07:54:18 2030 GMT
Subject: CN=5f44c3b6-f3ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:50:8c:b2:6a:10:cb:70:e7:3c:c8:10:be:21:
94:1a:34:aa:d9:a5:66:cc:92:75:b9:5e:2a:5d:de:
f6:32:52:b1:60:23:96:65:23:aa:10:8d:84:0b:3a:
b0:4e:51:73:57:49:81:12:4a:80:d2:4f:15:57:bb:
9f:39:87:80:54:ff:f6:e5:12:e8:66:47:9b:85:e6:
bc:b7:75:be:b1:e9:7b:e0:4b:a9:07:34:49:cf:f0:
0b:cf:b0:fd:3c:26:f3:f1:12:db:7f:6c:92:f3:f4:
f2:a8:97:be:a7:e9:d5:b7:88:b9:65:5b:28:78:e5:
f8:82:2c:ed:9b:da:f2:cc:31:a9:6d:bf:8d:03:12:
0f:88:5e:a6:26:19:a6:5f:8f:a5:99:de:fd:4f:1c:
ef:58:ab:6a:9f:64:b3:a9:66:5c:92:2d:28:b7:e2:
aa:66:c8:cf:18:53:4f:14:27:24:48:50:e1:15:29:
ef:fb:d7:6c:b2:f9:a8:b8:1d:fc:fe:ba:53:ea:22:
3b:0c:57:fc:fc:9d:1b:60:33:d8:6b:b8:00:65:bd:
e0:36:16:78:14:36:be:09:95:55:39:74:4f:ee:4c:
f4:2c:9a:f8:7e:21:f2:ee:9b:56:fc:07:18:dc:7a:
5e:87:fe:ec:26:c4:2a:87:a0:93:44:1d:06:1d:62:
10:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:A0:5E:1B:EB:EA:89:BD:85:90:B4:6D:3B:B9:2D:61:B4:7A:CD:CB
X509v3 Authority Key Identifier:
keyid:EC:2A:86:36:88:22:A4:7F:13:97:D8:DC:E5:73:4C:53:02:72:C9:65
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F366DC11/8A879878967811EAA493725AF8AEA228/7CqGNogipH8Tl9jc5XNMUwJyyWU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/7CqGNogipH8Tl9jc5XNMUwJyyWU.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F366DC11/8A879878967811EAA493725AF8AEA228/341C8B76E6A811EAB16AE924F8AEA228.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.221.220.0/22
Signature Algorithm: sha256WithRSAEncryption
a1:54:b6:93:e2:34:eb:81:55:30:ca:7e:c9:87:df:c4:39:1d:
4a:8a:71:5a:3d:a2:22:bd:85:5b:82:9a:98:89:7c:20:79:fd:
90:27:bf:54:27:b1:f2:7d:66:22:48:a6:f4:db:2f:d0:24:17:
b8:30:de:9e:0a:39:7d:46:5b:76:69:70:44:d8:99:ec:de:08:
8c:fc:13:fa:a1:17:fc:4f:21:d1:93:c8:5d:f6:ff:68:c0:05:
4c:30:9a:b6:a3:58:81:8b:60:76:b6:c8:10:7f:1a:a6:26:08:
93:ce:34:e2:d1:a2:b7:61:f1:a2:58:fb:38:39:c4:d2:66:0b:
c7:5a:d0:cf:12:6f:24:1a:7d:2c:d1:e0:d1:10:a7:b6:27:80:
47:92:8c:88:bb:6b:d2:e3:b4:cf:b0:db:fb:1a:d4:a3:b6:62:
7c:3b:8c:30:9a:e4:25:f6:23:e6:81:a7:c6:6b:4b:4d:b8:63:
26:a4:57:2b:b3:49:fa:42:54:66:18:95:52:94:d2:6a:ab:dc:
30:2a:ac:74:36:70:29:d8:5b:c1:cd:95:c0:07:41:c2:b3:ae:
5a:e9:36:19:d2:1f:37:c0:1a:3e:d0:98:58:10:fa:fb:72:ff:
f1:d1:08:60:2b:b6:83:f2:d6:1c:e3:75:80:5c:b7:aa:1f:75:
d8:b1:6f:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 24 01:55:54 2024 by rpki-client on console-ams.rpki-client.org