Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F367C1FC/802083BCB56411EAAC13465EF8AEA228/1F09D8DCD05011EB91841862F8AEA228.roa
File: 1F09D8DCD05011EB91841862F8AEA228.roa (raw, json)
Hash identifier: KRGqHZQevGoIR7+2zlTr66DWwG+/zfsZ71a0yXIjOog=
Subject key identifier: 44:02:CF:8B:44:07:80:72:8D:6C:92:B4:76:5D:D6:37:42:25:39:18
Certificate issuer: /CN=F367C1FCAF/serialNumber=0BC2EE66136228036D3360299B4A83195EAD87C5
Certificate serial: 0170
Authority key identifier: 0B:C2:EE:66:13:62:28:03:6D:33:60:29:9B:4A:83:19:5E:AD:87:C5
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/C8LuZhNiKANtM2Apm0qDGV6th8U.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F367C1FC/802083BCB56411EAAC13465EF8AEA228/1F09D8DCD05011EB91841862F8AEA228.roa
Signing time: Fri 18 Jun 2021 16:13:30 +0000
ROA not before: Fri 18 Jun 2021 16:13:24 +0000
ROA not after: Wed 18 Jun 2025 16:13:24 +0000
asID: 328160
IP address blocks: 102.220.188.0/22 maxlen: 22
102.220.188.0/23 maxlen: 23
102.220.188.0/24 maxlen: 24
102.220.189.0/24 maxlen: 24
102.220.190.0/23 maxlen: 23
102.220.190.0/24 maxlen: 24
102.220.191.0/24 maxlen: 24
2c0f:e888::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F367C1FC/802083BCB56411EAAC13465EF8AEA228/C8LuZhNiKANtM2Apm0qDGV6th8U.crl
rsync://rpki.afrinic.net/repository/member_repository/F367C1FC/802083BCB56411EAAC13465EF8AEA228/C8LuZhNiKANtM2Apm0qDGV6th8U.mft
rsync://rpki.afrinic.net/repository/afrinic/C8LuZhNiKANtM2Apm0qDGV6th8U.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 27 Nov 2024 00:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 368 (0x170)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F367C1FCAF/serialNumber=0BC2EE66136228036D3360299B4A83195EAD87C5
Validity
Not Before: Jun 18 16:13:24 2021 GMT
Not After : Jun 18 16:13:24 2025 GMT
Subject: CN=60ccc62a-271e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:d1:dc:62:f7:7e:a0:95:44:d0:44:e1:84:34:
31:97:40:c4:c8:ba:f9:10:14:28:ce:9d:50:f2:2c:
8e:5f:9e:43:0f:3b:68:80:c3:f9:4c:69:6e:be:1f:
bc:3a:78:2d:63:c6:11:6c:66:bb:59:33:e6:63:b2:
b3:28:85:b1:a9:e1:66:fd:23:81:60:3d:f5:d4:c0:
94:cd:7e:6b:b9:a7:f9:04:e0:9b:48:ef:7e:0c:74:
4c:da:8a:d3:aa:a9:e5:c6:d7:19:e5:12:3a:c7:90:
51:11:24:10:66:06:1b:43:ca:f3:b2:c2:5e:9b:e2:
73:1b:40:6a:dc:45:8b:c3:a7:2c:a4:16:dd:27:d7:
04:92:04:fd:09:d8:c4:f5:c7:ef:d7:d2:dd:77:99:
4c:e0:93:7e:5d:76:06:65:76:1d:0c:fb:3f:77:65:
06:1c:6c:37:3b:7a:7b:49:6e:f8:12:e2:90:6a:1e:
5a:b5:c1:92:61:c4:3f:13:17:01:25:5d:1c:5a:bf:
f1:b9:dc:08:b8:29:52:92:bb:15:7b:38:35:50:fb:
7f:b9:dd:2d:3d:9c:a4:5a:9a:75:e1:20:2f:6a:5c:
d8:1d:ba:5d:84:fe:f5:98:ed:24:a1:10:17:cf:65:
65:dc:b9:b0:55:31:f4:57:58:5d:08:90:55:8d:d6:
6a:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:02:CF:8B:44:07:80:72:8D:6C:92:B4:76:5D:D6:37:42:25:39:18
X509v3 Authority Key Identifier:
keyid:0B:C2:EE:66:13:62:28:03:6D:33:60:29:9B:4A:83:19:5E:AD:87:C5
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F367C1FC/802083BCB56411EAAC13465EF8AEA228/C8LuZhNiKANtM2Apm0qDGV6th8U.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/C8LuZhNiKANtM2Apm0qDGV6th8U.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F367C1FC/802083BCB56411EAAC13465EF8AEA228/1F09D8DCD05011EB91841862F8AEA228.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.220.188.0/22
IPv6:
2c0f:e888::/32
Signature Algorithm: sha256WithRSAEncryption
7d:fc:20:45:ae:95:da:c5:44:27:6c:f2:62:42:b5:41:15:43:
70:a0:41:b9:80:61:78:52:d5:80:bb:f7:8a:42:18:e2:02:54:
c3:2f:32:e9:7a:96:0a:16:ee:25:bd:bf:43:5b:99:d8:c2:9c:
94:49:a3:67:1a:c1:48:cf:ad:e7:c2:da:9e:43:71:40:10:99:
d0:e1:55:3b:fd:41:b8:76:3f:0b:43:a6:b5:96:4d:4f:44:85:
82:a9:d4:69:c4:f1:52:33:96:31:21:8a:68:c9:2f:c9:f8:70:
a1:19:70:87:72:40:97:96:19:21:eb:b8:29:e6:0d:e4:b9:7c:
f2:fc:18:fe:15:27:39:2c:e8:37:d5:06:62:41:fb:ff:32:b3:
57:3f:57:30:ed:a4:44:77:73:b9:cc:d9:07:72:4f:f9:3f:68:
de:c8:c3:d4:2b:4c:68:7c:cc:36:61:c2:1b:dc:a5:32:a7:02:
bf:1f:f6:ae:1d:1a:a8:ce:40:43:17:51:d1:24:bb:9d:c6:b9:
79:9c:91:5e:7a:ac:b2:2e:82:6c:2e:f0:72:46:37:e6:00:92:
26:1e:4e:a4:94:9d:67:01:1e:7b:44:37:68:45:b5:4c:ec:30:
83:cb:26:1c:4d:d4:d9:e4:8e:39:54:7f:71:35:6e:ce:df:eb:
f3:a3:7c:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 02:47:22 2024 by rpki-client on console-ams.rpki-client.org