Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F366F2B5/A9C06A8C741111EF8B0A9DA8762E951A/132CDF5C741511EFA9C5BABD762E951A.roa
File: 132CDF5C741511EFA9C5BABD762E951A.roa (raw, json)
Hash identifier: 02xv9vPnDrOOLcJupKl7YdL1bTFmoSlfefstM9Glp04=
Subject key identifier: 16:F3:2F:0A:48:99:0E:8D:9E:02:66:FA:67:19:11:8D:0D:9A:1A:3B
Certificate issuer: /CN=F366F2B5AF/serialNumber=9093645F56187261E65B708274DBD52C00DF250D
Certificate serial: 03
Authority key identifier: 90:93:64:5F:56:18:72:61:E6:5B:70:82:74:DB:D5:2C:00:DF:25:0D
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/kJNkX1YYcmHmW3CCdNvVLADfJQ0.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F366F2B5/A9C06A8C741111EF8B0A9DA8762E951A/132CDF5C741511EFA9C5BABD762E951A.roa
Signing time: Mon 16 Sep 2024 10:18:54 +0000
ROA not before: Mon 16 Sep 2024 10:18:50 +0000
ROA not after: Sun 30 Sep 2029 10:18:50 +0000
asID: 328744
IP address blocks: 102.221.168.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F366F2B5/A9C06A8C741111EF8B0A9DA8762E951A/kJNkX1YYcmHmW3CCdNvVLADfJQ0.crl
rsync://rpki.afrinic.net/repository/member_repository/F366F2B5/A9C06A8C741111EF8B0A9DA8762E951A/kJNkX1YYcmHmW3CCdNvVLADfJQ0.mft
rsync://rpki.afrinic.net/repository/afrinic/kJNkX1YYcmHmW3CCdNvVLADfJQ0.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3 (0x3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F366F2B5AF/serialNumber=9093645F56187261E65B708274DBD52C00DF250D
Validity
Not Before: Sep 16 10:18:50 2024 GMT
Not After : Sep 30 10:18:50 2029 GMT
Subject: CN=66e8060e-01c0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:53:a1:da:c3:23:c7:24:10:45:40:a5:38:b3:
16:bc:72:cf:e5:15:04:3e:e3:00:21:a1:d2:03:96:
8e:b0:b9:ec:51:ef:69:49:5b:34:f5:df:33:92:18:
c5:4a:8e:df:09:8c:d5:58:1a:a5:00:c1:d5:4d:0f:
73:ad:4a:28:62:b7:02:d4:35:3e:7c:a0:e7:a2:4f:
df:52:85:cc:2c:35:b1:d1:71:38:4a:50:97:60:aa:
a0:59:f0:42:a4:87:0b:4a:2a:ae:3a:ca:b6:3c:04:
c8:2c:3f:be:68:70:66:77:fe:16:f5:6b:96:8b:13:
09:5d:7e:3c:36:bc:93:68:11:f1:5a:45:ed:bf:91:
f6:d5:e7:ea:1a:62:58:7b:24:6c:76:4a:05:24:26:
19:22:89:e1:23:50:db:78:d8:6d:8a:ca:1a:69:e3:
83:d3:89:57:8d:ca:bc:2c:92:53:85:1f:e2:f7:36:
85:83:ea:10:bf:3b:05:db:3a:6e:be:e9:e9:5e:df:
01:3f:c3:d0:23:94:84:b3:5a:d6:ca:f0:06:54:13:
ae:ad:58:b9:7f:9e:12:9a:a2:e8:34:fc:73:c8:25:
ce:e7:80:86:95:94:bf:35:e8:f6:35:83:21:49:3a:
6c:9f:bf:c8:68:88:65:52:4a:7c:b3:92:4b:2f:05:
5b:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:F3:2F:0A:48:99:0E:8D:9E:02:66:FA:67:19:11:8D:0D:9A:1A:3B
X509v3 Authority Key Identifier:
keyid:90:93:64:5F:56:18:72:61:E6:5B:70:82:74:DB:D5:2C:00:DF:25:0D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F366F2B5/A9C06A8C741111EF8B0A9DA8762E951A/kJNkX1YYcmHmW3CCdNvVLADfJQ0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/kJNkX1YYcmHmW3CCdNvVLADfJQ0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F366F2B5/A9C06A8C741111EF8B0A9DA8762E951A/132CDF5C741511EFA9C5BABD762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.221.168.0/22
Signature Algorithm: sha256WithRSAEncryption
98:d2:94:63:d5:25:a8:ee:6f:8a:21:42:ce:df:a4:d1:78:63:
ed:d5:2e:58:70:8c:44:c2:c5:27:80:17:91:70:46:9a:aa:86:
b6:63:11:b5:1e:a9:d7:45:9f:84:06:cc:e6:ba:c5:bc:b6:7d:
66:2e:00:49:37:ac:93:84:97:bd:c7:cb:f8:7b:1d:16:38:a3:
88:75:3a:ed:0c:32:be:b3:11:b2:af:ce:88:0a:e3:31:5b:62:
3d:51:b9:ed:9d:11:aa:f7:3e:06:fa:a6:6d:56:65:84:84:24:
74:22:4e:b7:79:8e:2c:59:0f:1d:89:48:3b:43:2d:9d:6c:81:
be:63:11:34:40:31:02:d8:0b:7d:6e:5b:c7:a2:0d:aa:c4:f7:
29:6c:60:c5:e0:30:0b:fb:d4:f0:f2:cc:8b:b9:fc:90:a8:c8:
15:50:b2:0c:26:c3:ec:2f:7a:e7:41:7f:af:6e:47:fe:de:2c:
a0:85:09:ee:36:ba:8c:d3:60:a7:42:4b:bd:71:8f:46:0a:43:
7b:bf:5a:7c:0f:f9:72:60:8f:c1:08:64:f3:27:3c:ab:0f:ef:
da:b4:b9:3a:5a:0a:70:49:cc:ca:95:fc:0f:a5:e4:39:bc:57:
07:6e:14:0f:30:65:d6:66:17:ee:45:2b:e2:a5:2e:62:17:53:
65:36:d1:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:03:43 2024 by rpki-client on console-ams.rpki-client.org