Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F367FECC/449EE63EEA3E11EB941D9B39D8A014CE/EF13939EEA3E11EBAF73813AD8A014CE.roa
File: EF13939EEA3E11EBAF73813AD8A014CE.roa (raw, json)
Hash identifier: 8Po3zyxjlwyh9BwwxrkrQw/Ky3Lp6GZyHJxMXtGCOnQ=
Subject key identifier: AB:AB:7E:18:C7:2B:66:FA:9F:1A:1E:17:FE:F1:CF:36:F1:A6:07:6D
Certificate issuer: /CN=F367FECCAF/serialNumber=D50B711CD77CF359183D3FDEE58A9954B6CF7708
Certificate serial: 02
Authority key identifier: D5:0B:71:1C:D7:7C:F3:59:18:3D:3F:DE:E5:8A:99:54:B6:CF:77:08
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/1QtxHNd881kYPT_e5YqZVLbPdwg.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F367FECC/449EE63EEA3E11EB941D9B39D8A014CE/EF13939EEA3E11EBAF73813AD8A014CE.roa
Signing time: Wed 21 Jul 2021 16:16:08 +0000
ROA not before: Wed 21 Jul 2021 16:15:57 +0000
ROA not after: Wed 31 Aug 2033 16:15:57 +0000
asID: 328210
IP address blocks: 102.128.144.0/20 maxlen: 20
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F367FECC/449EE63EEA3E11EB941D9B39D8A014CE/1QtxHNd881kYPT_e5YqZVLbPdwg.crl
rsync://rpki.afrinic.net/repository/member_repository/F367FECC/449EE63EEA3E11EB941D9B39D8A014CE/1QtxHNd881kYPT_e5YqZVLbPdwg.mft
rsync://rpki.afrinic.net/repository/afrinic/1QtxHNd881kYPT_e5YqZVLbPdwg.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2 (0x2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F367FECCAF/serialNumber=D50B711CD77CF359183D3FDEE58A9954B6CF7708
Validity
Not Before: Jul 21 16:15:57 2021 GMT
Not After : Aug 31 16:15:57 2033 GMT
Subject: CN=60f84848-cb7a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:84:c6:5a:08:b4:9f:ed:55:c3:60:10:39:96:
40:ea:ce:4b:31:d2:64:4d:9a:41:30:62:c7:fc:2e:
76:71:06:95:a2:ed:0d:3a:83:26:1f:de:00:b3:38:
3e:18:50:3d:36:c2:50:23:dc:16:af:e1:5d:eb:a2:
9f:af:e7:c2:5a:3a:64:86:16:44:00:5c:eb:68:f5:
74:65:75:53:92:81:45:93:4d:a8:84:8b:9f:fb:18:
08:8f:a6:88:b0:b3:49:c4:f6:0a:e8:b6:82:f9:d2:
28:6c:fa:f5:a0:4b:9f:39:f2:17:3b:36:8c:c6:ff:
42:2a:3d:a4:4c:e4:8f:64:a8:b3:97:98:44:62:62:
33:c0:2d:22:9d:d7:e2:4d:03:43:39:44:5c:50:f4:
69:21:06:f7:63:e3:4d:ef:95:8c:75:10:c1:12:0d:
2d:36:29:5e:f1:38:a1:4c:55:1a:86:c3:67:ba:16:
ff:53:f0:57:3a:48:76:ff:03:c0:91:f2:e6:7f:cd:
9d:2f:ca:a6:be:07:bc:50:5d:95:cc:da:5b:12:9d:
af:fb:90:6b:7f:99:7f:e7:41:f1:c5:e0:33:ed:73:
57:eb:b4:72:00:f4:b7:94:f0:d6:a0:2c:ea:46:3d:
45:78:4d:3e:1f:8a:5c:a4:d9:49:ff:45:5e:88:5f:
b4:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:AB:7E:18:C7:2B:66:FA:9F:1A:1E:17:FE:F1:CF:36:F1:A6:07:6D
X509v3 Authority Key Identifier:
keyid:D5:0B:71:1C:D7:7C:F3:59:18:3D:3F:DE:E5:8A:99:54:B6:CF:77:08
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F367FECC/449EE63EEA3E11EB941D9B39D8A014CE/1QtxHNd881kYPT_e5YqZVLbPdwg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/1QtxHNd881kYPT_e5YqZVLbPdwg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F367FECC/449EE63EEA3E11EB941D9B39D8A014CE/EF13939EEA3E11EBAF73813AD8A014CE.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.128.144.0/20
Signature Algorithm: sha256WithRSAEncryption
52:a3:91:3c:e7:8e:c1:c4:d2:22:ef:c0:82:c4:7b:5e:be:c6:
1f:c5:9e:7f:f8:0e:99:21:61:98:c5:d4:30:58:71:6e:a6:03:
31:cc:58:b4:ad:c5:0b:9a:1a:82:d2:92:f6:11:e0:66:91:89:
79:34:da:42:d0:5a:68:44:b5:54:29:9a:c6:1f:a0:9d:69:ad:
4c:7e:d2:8c:0b:31:4a:3d:d0:31:f5:13:48:54:07:83:c9:9e:
e6:e2:96:b4:5e:b9:00:73:75:a6:b7:c1:92:d1:0a:f2:f0:25:
ca:39:26:b4:b3:a6:79:80:da:df:1b:4a:f7:d0:56:70:21:8c:
05:77:74:73:2f:2b:94:45:09:67:27:40:27:18:3d:fe:7a:a2:
9b:f3:4e:a4:21:dd:8f:46:b3:8c:fc:00:de:42:a1:69:e6:9c:
aa:53:03:14:ca:38:cf:ef:99:88:b5:c1:95:9f:57:6f:ac:cb:
7b:db:8b:57:0e:38:91:cc:fa:c2:0b:1b:e6:01:45:c9:e7:38:
15:a6:04:a7:2c:e8:08:47:cf:3f:c1:9d:9b:72:23:40:be:59:
47:d6:06:eb:ba:6c:fb:5b:08:eb:1c:6a:e6:0a:08:f6:5d:b5:
1f:f4:2e:bc:84:f7:a8:01:a8:3d:d9:a2:54:50:b2:7d:53:6c:
24:de:7f:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:44:13 2024 by rpki-client on console-fra.rpki-client.org