Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F366E94B/61E32A7E27B411EE92E3412B4AD9E6FC/08DE664027B511EEB049EC2C4AD9E6FC.roa
File: 08DE664027B511EEB049EC2C4AD9E6FC.roa (raw, json)
Hash identifier: EQivvDfxuPAnMotBNccsTCPfCGl2KvQDxer+FPgTbPM=
Subject key identifier: 96:C9:89:0E:B7:92:9A:E0:04:64:C3:E8:AF:4D:2E:F6:48:E9:F4:DB
Certificate issuer: /CN=F366E94BAF/serialNumber=57508CDF49523A38133E97BC0C1BF4A7A35F67A4
Certificate serial: 02
Authority key identifier: 57:50:8C:DF:49:52:3A:38:13:3E:97:BC:0C:1B:F4:A7:A3:5F:67:A4
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/V1CM30lSOjgTPpe8DBv0p6NfZ6Q.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F366E94B/61E32A7E27B411EE92E3412B4AD9E6FC/08DE664027B511EEB049EC2C4AD9E6FC.roa
Signing time: Fri 21 Jul 2023 10:54:59 +0000
ROA not before: Fri 21 Jul 2023 10:54:55 +0000
ROA not after: Tue 31 Dec 2030 10:54:55 +0000
asID: 329247
IP address blocks: 102.212.24.0/22 maxlen: 22
2c0f:4340::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F366E94B/61E32A7E27B411EE92E3412B4AD9E6FC/V1CM30lSOjgTPpe8DBv0p6NfZ6Q.crl
rsync://rpki.afrinic.net/repository/member_repository/F366E94B/61E32A7E27B411EE92E3412B4AD9E6FC/V1CM30lSOjgTPpe8DBv0p6NfZ6Q.mft
rsync://rpki.afrinic.net/repository/afrinic/V1CM30lSOjgTPpe8DBv0p6NfZ6Q.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 26 Nov 2024 00:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2 (0x2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F366E94BAF/serialNumber=57508CDF49523A38133E97BC0C1BF4A7A35F67A4
Validity
Not Before: Jul 21 10:54:55 2023 GMT
Not After : Dec 31 10:54:55 2030 GMT
Subject: CN=64ba6403-4699
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:54:f4:ac:6f:56:18:e5:fd:8c:5a:71:e0:e0:
3f:eb:ac:7c:8d:02:a6:79:fe:99:f5:ce:3e:78:5b:
d8:a2:94:57:a8:85:66:f7:a3:01:66:5c:7d:5a:9a:
a4:2e:c0:68:0d:16:cf:86:45:c5:8b:cf:45:aa:64:
0a:5a:eb:42:b9:aa:19:74:c9:2b:86:c6:87:30:e3:
3a:ab:54:fa:67:e6:b9:fd:cd:e3:23:95:29:4e:19:
6b:62:a5:59:b7:2c:2f:bb:e5:3c:1d:f0:64:ea:81:
b1:93:ef:31:0d:1a:8e:bc:4e:8d:16:ba:8d:63:43:
90:17:43:17:f1:03:e7:ec:38:17:ff:ec:84:d8:1e:
a7:a7:79:b2:88:3a:c7:af:00:39:16:58:53:fe:10:
47:6c:93:56:d7:ef:11:c9:9b:9b:dc:6d:9c:bd:90:
7c:64:84:e2:33:ce:5a:8f:b5:2f:f8:47:e8:30:74:
fe:5d:ff:5e:15:db:b9:8a:89:ad:7a:d4:32:17:15:
40:ec:7d:8b:58:6a:50:e9:9b:95:71:85:17:32:2d:
ef:6f:a8:aa:3b:90:c7:57:27:6f:d2:42:ce:53:9d:
b2:11:56:e8:cd:ae:ae:1d:a9:51:7a:7f:9b:84:f4:
9a:7d:59:44:aa:aa:c4:a2:81:05:4b:99:67:2b:7b:
b5:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:C9:89:0E:B7:92:9A:E0:04:64:C3:E8:AF:4D:2E:F6:48:E9:F4:DB
X509v3 Authority Key Identifier:
keyid:57:50:8C:DF:49:52:3A:38:13:3E:97:BC:0C:1B:F4:A7:A3:5F:67:A4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F366E94B/61E32A7E27B411EE92E3412B4AD9E6FC/V1CM30lSOjgTPpe8DBv0p6NfZ6Q.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/V1CM30lSOjgTPpe8DBv0p6NfZ6Q.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F366E94B/61E32A7E27B411EE92E3412B4AD9E6FC/08DE664027B511EEB049EC2C4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.212.24.0/22
IPv6:
2c0f:4340::/32
Signature Algorithm: sha256WithRSAEncryption
91:e2:93:de:23:57:c2:da:8c:44:b6:77:69:67:97:97:24:36:
60:48:9a:9b:89:35:f1:ae:6d:8b:8c:f2:c2:cf:86:af:82:07:
e5:8f:d2:04:9b:2e:f4:de:53:3e:25:e8:5e:55:4c:d9:8a:86:
44:2b:05:70:9d:30:a8:11:8d:ee:99:5a:27:41:3c:19:db:8b:
63:47:f6:f3:88:49:03:ef:67:ac:23:62:68:ac:b7:99:e6:9c:
56:10:d2:44:dd:18:5e:f9:11:e7:1b:aa:31:bf:0a:9c:38:ef:
2b:8e:61:4f:73:62:e4:40:25:07:8d:04:19:07:e7:b2:37:e4:
c1:81:62:bb:2d:f4:5b:00:ea:60:7d:be:6e:94:ec:b6:6d:cf:
1c:30:cf:5e:51:11:73:64:b4:dc:6f:87:0b:e2:97:80:da:ed:
d6:ac:4e:8b:b2:30:35:1b:aa:68:2d:ff:b0:f8:b5:1d:50:e9:
ab:d3:e2:4d:28:ac:ca:2e:6c:75:75:70:de:d1:ac:ee:ed:3e:
5e:39:c5:f0:10:34:0a:ba:88:45:d6:06:27:a1:4a:28:be:ad:
55:05:16:b1:5d:c9:5a:bf:82:e1:5e:c3:dc:69:d2:b5:e9:89:
8c:c2:74:ab:76:50:b7:4b:65:c0:70:99:f2:ff:3c:dc:13:9d:
fd:fe:4d:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Nov 24 04:29:37 2024 by rpki-client on console-fra.rpki-client.org