Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F367972F/6110705C901011ED9475399BF1222468/6CF9C04E902411EDAA6A30D1F1222468.roa
File: 6CF9C04E902411EDAA6A30D1F1222468.roa (raw, json)
Hash identifier: RCJ3vAgRCxwx9M4Vjn0jNM+D+vokpMLIZ09HERtg3jU=
Subject key identifier: D3:55:4D:47:58:FE:98:7E:72:DB:2F:EE:15:04:B5:F7:CC:F0:3C:02
Certificate issuer: /CN=F367972FAF/serialNumber=922D26C66B0F4EF852358E3BD9E1A6F1B55D7B87
Certificate serial: 0E
Authority key identifier: 92:2D:26:C6:6B:0F:4E:F8:52:35:8E:3B:D9:E1:A6:F1:B5:5D:7B:87
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/ki0mxmsPTvhSNY472eGm8bVde4c.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F367972F/6110705C901011ED9475399BF1222468/6CF9C04E902411EDAA6A30D1F1222468.roa
Signing time: Mon 09 Jan 2023 13:49:24 +0000
ROA not before: Mon 09 Jan 2023 13:49:20 +0000
ROA not after: Sat 01 Jan 2033 13:49:20 +0000
asID: 24757
IP address blocks: 102.218.0.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F367972F/6110705C901011ED9475399BF1222468/ki0mxmsPTvhSNY472eGm8bVde4c.crl
rsync://rpki.afrinic.net/repository/member_repository/F367972F/6110705C901011ED9475399BF1222468/ki0mxmsPTvhSNY472eGm8bVde4c.mft
rsync://rpki.afrinic.net/repository/afrinic/ki0mxmsPTvhSNY472eGm8bVde4c.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 14 (0xe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F367972FAF/serialNumber=922D26C66B0F4EF852358E3BD9E1A6F1B55D7B87
Validity
Not Before: Jan 9 13:49:20 2023 GMT
Not After : Jan 1 13:49:20 2033 GMT
Subject: CN=63bc1b64-2f10
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:b0:30:59:c4:ad:a2:65:a7:c9:c3:a9:95:28:
9a:27:a1:80:65:b2:af:df:04:e0:e1:1f:a8:d6:f1:
f3:9a:ad:ce:4f:00:76:1f:16:67:65:dd:73:32:9a:
50:41:af:aa:49:6a:b2:03:d4:a9:c8:8d:31:b9:59:
b8:01:6a:4b:82:21:0b:4f:57:86:07:6c:ed:0c:e4:
e6:7d:80:32:d6:87:71:80:5e:5d:9c:67:d6:32:79:
19:2d:24:3c:22:be:88:d2:49:10:2d:54:f5:89:6e:
40:00:e1:a6:d8:69:29:6a:be:3b:9f:78:93:ba:93:
0a:52:9b:73:54:09:cb:14:5c:cc:9b:d1:3f:98:99:
f4:70:18:c3:b6:03:5d:86:dd:8d:e6:1b:c0:5b:a7:
c7:6a:4a:bf:d5:1d:fc:e8:73:0e:67:35:43:0d:0d:
39:39:54:4c:56:b2:05:68:77:8a:e4:19:d2:69:28:
a8:34:fd:be:9a:51:e6:f7:ec:70:45:de:bf:b1:74:
ad:3a:c0:d5:f4:7b:20:9b:6a:f1:57:8f:23:97:f6:
e4:22:c1:e3:53:8a:51:54:63:c6:d6:43:8a:15:da:
b8:53:e7:46:d3:57:73:f6:a9:11:17:05:bf:f3:30:
fd:1c:b2:c8:68:2a:24:a5:01:fd:3c:d2:cc:47:e4:
42:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:55:4D:47:58:FE:98:7E:72:DB:2F:EE:15:04:B5:F7:CC:F0:3C:02
X509v3 Authority Key Identifier:
keyid:92:2D:26:C6:6B:0F:4E:F8:52:35:8E:3B:D9:E1:A6:F1:B5:5D:7B:87
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F367972F/6110705C901011ED9475399BF1222468/ki0mxmsPTvhSNY472eGm8bVde4c.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/ki0mxmsPTvhSNY472eGm8bVde4c.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F367972F/6110705C901011ED9475399BF1222468/6CF9C04E902411EDAA6A30D1F1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.218.0.0/22
Signature Algorithm: sha256WithRSAEncryption
9b:24:19:67:76:5e:7d:5c:ea:1a:90:63:f2:8b:80:76:b4:9e:
55:a5:97:5c:60:38:73:ce:04:29:5d:56:38:13:b1:fe:3c:e0:
c2:11:db:36:4f:36:7a:94:93:9d:9b:08:bf:c0:5b:00:f3:ee:
1b:79:30:d8:4f:d9:6a:c5:85:35:45:7f:3d:9e:3d:2e:be:b8:
6f:5e:f1:37:f6:92:38:51:c5:89:3e:3c:69:b6:8c:da:03:2f:
d3:27:10:dc:e9:55:7d:cd:59:3c:16:01:2b:ec:9c:4c:30:9a:
4f:16:95:f0:d9:37:51:04:d1:74:d8:0f:b3:21:d8:62:fe:81:
e1:15:c1:8f:db:21:36:0c:f1:78:61:d1:fa:86:39:00:16:83:
ac:5d:f2:45:50:55:9f:af:c7:b4:68:f7:eb:c9:8f:e9:30:43:
13:32:33:a5:d8:83:f5:4e:d5:2c:d4:a3:20:1f:d9:03:eb:d9:
87:c6:49:09:6c:15:b1:74:9a:bc:95:8c:0c:a1:8c:38:6f:99:
13:8b:54:f1:e5:ec:2e:58:80:cc:03:d2:da:5b:e9:83:69:d9:
30:01:69:af:28:8f:2b:4a:c4:a7:a4:ba:10:ae:e7:b9:fe:86:
75:c5:c0:3f:f7:3d:7d:9a:20:96:bd:60:f9:13:78:7c:45:8c:
4d:74:a7:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:03:44 2024 by rpki-client on console-ams.rpki-client.org