Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F366DC11/8A879878967811EAA493725AF8AEA228/B3756F46494411ECB309476BD8A014CE.roa
File: B3756F46494411ECB309476BD8A014CE.roa (raw, json)
Hash identifier: pwXFXI0Ve6Oh1nxVVXJj4o5RJ7SP6H1X/OgBsWABOQc=
Subject key identifier: 91:A0:69:2B:A7:EA:F2:2C:8E:7F:56:AA:C5:61:5D:E0:8A:BB:27:3F
Certificate issuer: /CN=F366DC11AF/serialNumber=EC2A86368822A47F1397D8DCE5734C530272C965
Certificate serial: 023A
Authority key identifier: EC:2A:86:36:88:22:A4:7F:13:97:D8:DC:E5:73:4C:53:02:72:C9:65
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/7CqGNogipH8Tl9jc5XNMUwJyyWU.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F366DC11/8A879878967811EAA493725AF8AEA228/B3756F46494411ECB309476BD8A014CE.roa
Signing time: Fri 19 Nov 2021 14:26:36 +0000
ROA not before: Fri 19 Nov 2021 14:26:19 +0000
ROA not after: Wed 31 Dec 2031 14:26:19 +0000
asID: 328638
IP address blocks: 102.141.64.0/19 maxlen: 24
102.221.220.0/22 maxlen: 24
154.65.112.0/20 maxlen: 24
196.6.112.0/21 maxlen: 24
2c0f:f0a0::/32 maxlen: 48
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F366DC11/8A879878967811EAA493725AF8AEA228/7CqGNogipH8Tl9jc5XNMUwJyyWU.crl
rsync://rpki.afrinic.net/repository/member_repository/F366DC11/8A879878967811EAA493725AF8AEA228/7CqGNogipH8Tl9jc5XNMUwJyyWU.mft
rsync://rpki.afrinic.net/repository/afrinic/7CqGNogipH8Tl9jc5XNMUwJyyWU.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 27 Nov 2024 00:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 570 (0x23a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F366DC11AF/serialNumber=EC2A86368822A47F1397D8DCE5734C530272C965
Validity
Not Before: Nov 19 14:26:19 2021 GMT
Not After : Dec 31 14:26:19 2031 GMT
Subject: CN=6197b41c-72df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:70:74:37:74:89:fb:0f:2c:c9:d7:9e:cf:9c:
6a:3c:7f:32:e4:05:d6:24:42:c6:ad:6c:2e:54:eb:
0c:cf:70:81:e1:79:8c:39:32:a9:a4:82:ee:24:93:
e2:9b:52:88:ce:c6:b0:fd:4a:53:a3:39:44:49:21:
10:53:89:55:db:18:80:59:e0:62:78:ef:7a:1f:76:
79:86:e5:e4:60:06:da:3d:70:2f:10:2b:c2:ec:c8:
94:f8:b1:dd:46:8e:ef:f2:5f:e5:05:06:cf:18:e0:
54:09:40:c9:ef:4c:84:87:12:7d:f2:e4:a4:c6:cc:
f5:95:5a:41:d3:a7:d6:ea:1e:1d:61:e9:50:9a:76:
61:24:6b:39:8d:36:a4:c9:53:50:26:7a:34:d5:2e:
90:81:0d:67:8f:5a:3d:66:fd:90:22:12:1f:e6:f0:
c1:54:2d:c1:61:26:7c:a1:3d:89:b9:1f:ea:8a:90:
f5:ce:1a:3b:f5:ef:dd:57:28:80:f0:dd:8e:50:63:
67:d6:7a:9e:e5:72:16:50:fe:b6:29:8d:f5:f9:72:
83:6f:a2:c8:9c:21:c1:14:ee:de:d8:e8:86:01:f7:
b9:46:78:cb:e4:5a:bb:2d:e4:54:d2:b4:07:b4:ca:
d7:1c:99:6b:de:25:a2:d8:1a:dc:dd:d8:39:f0:94:
c6:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:A0:69:2B:A7:EA:F2:2C:8E:7F:56:AA:C5:61:5D:E0:8A:BB:27:3F
X509v3 Authority Key Identifier:
keyid:EC:2A:86:36:88:22:A4:7F:13:97:D8:DC:E5:73:4C:53:02:72:C9:65
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F366DC11/8A879878967811EAA493725AF8AEA228/7CqGNogipH8Tl9jc5XNMUwJyyWU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/7CqGNogipH8Tl9jc5XNMUwJyyWU.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F366DC11/8A879878967811EAA493725AF8AEA228/B3756F46494411ECB309476BD8A014CE.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.141.64.0/19
102.221.220.0/22
154.65.112.0/20
196.6.112.0/21
IPv6:
2c0f:f0a0::/32
Signature Algorithm: sha256WithRSAEncryption
68:a9:cd:c6:19:8b:e3:29:29:49:d3:88:1d:15:47:cc:9b:58:
87:da:48:57:33:d0:1e:4d:63:f6:74:62:97:ed:bf:ec:70:55:
d9:73:f6:0b:39:a2:49:a0:a0:05:ab:b3:2d:c8:e5:d9:e0:2a:
0b:47:5c:51:aa:82:96:6f:0c:74:e8:67:01:18:4c:ff:64:2f:
d9:ad:94:9d:dd:1b:09:a6:62:50:cf:66:af:34:b9:6a:93:0b:
1f:0e:4c:14:0c:1f:15:b0:68:d5:27:51:f5:37:d6:98:b9:39:
a6:36:f7:c6:e1:ac:8e:f6:dc:0b:ae:d5:3e:58:a4:76:e0:46:
11:09:e5:24:f6:2e:67:15:6f:77:8f:d2:b4:5e:90:35:7d:34:
26:f2:42:5b:5e:2b:11:ef:aa:bd:af:35:c8:55:77:75:e7:4f:
ee:38:62:d6:be:29:49:c3:fd:b7:9c:7f:34:75:37:c5:50:72:
40:98:22:ee:92:e9:cd:81:69:19:56:6f:73:ce:9e:c2:ac:e2:
92:01:a9:32:67:04:10:c1:81:af:53:e9:24:73:31:c2:87:b4:
0f:79:9d:00:20:e9:86:70:c7:b7:30:00:12:ae:1e:dd:26:d5:
31:99:36:b5:7c:82:82:3c:33:32:67:8a:69:5b:a3:8b:f1:94:
3b:4a:d9:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 02:58:28 2024 by rpki-client on console-fra.rpki-client.org