Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368A3D1/73732E56702811EBB2F96825F8AEA228/1C83F7F2CCA011ED9FBDAF90F1222468.roa
File: 1C83F7F2CCA011ED9FBDAF90F1222468.roa (raw, json)
Hash identifier: 34j16EfLKBboBdu4W8orVCqv2BpWRoneipEfOF9Vyhs=
Subject key identifier: DB:83:45:8F:5A:08:34:2A:68:FD:08:1B:42:31:51:9C:39:E7:57:50
Certificate issuer: /CN=F368A3D1AF/serialNumber=AE51D25716DDB4CCA31B2E985E0A7525F7F4B9C6
Certificate serial: 0319
Authority key identifier: AE:51:D2:57:16:DD:B4:CC:A3:1B:2E:98:5E:0A:75:25:F7:F4:B9:C6
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/rlHSVxbdtMyjGy6YXgp1Jff0ucY.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368A3D1/73732E56702811EBB2F96825F8AEA228/1C83F7F2CCA011ED9FBDAF90F1222468.roa
Signing time: Mon 27 Mar 2023 13:05:56 +0000
ROA not before: Mon 27 Mar 2023 13:05:53 +0000
ROA not after: Wed 31 Oct 2029 13:05:53 +0000
asID: 328795
IP address blocks: 102.220.254.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368A3D1/73732E56702811EBB2F96825F8AEA228/rlHSVxbdtMyjGy6YXgp1Jff0ucY.crl
rsync://rpki.afrinic.net/repository/member_repository/F368A3D1/73732E56702811EBB2F96825F8AEA228/rlHSVxbdtMyjGy6YXgp1Jff0ucY.mft
rsync://rpki.afrinic.net/repository/afrinic/rlHSVxbdtMyjGy6YXgp1Jff0ucY.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 793 (0x319)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368A3D1AF/serialNumber=AE51D25716DDB4CCA31B2E985E0A7525F7F4B9C6
Validity
Not Before: Mar 27 13:05:53 2023 GMT
Not After : Oct 31 13:05:53 2029 GMT
Subject: CN=642194b4-ce1e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:57:93:48:2f:17:e8:06:ec:e4:6a:c0:b6:a7:
36:b1:0c:eb:de:8f:22:a3:fe:5f:2a:5a:42:c4:70:
17:2b:36:c3:6d:ca:1b:55:b4:b9:9c:10:44:5a:a4:
c0:72:b7:58:a0:7a:05:49:1f:4c:f7:0e:6a:32:77:
6b:b5:35:ca:4a:4c:1a:eb:8f:c8:9d:3c:a1:5d:4f:
14:7f:17:2d:b2:3a:c0:cf:c4:8c:a0:a2:3e:e4:b4:
1e:29:e4:4b:61:f9:05:b4:61:b6:88:0a:73:6a:51:
10:32:db:b3:e9:38:41:fb:05:c2:c5:94:a2:52:2c:
dc:04:fd:f8:56:d5:62:a5:dd:42:1d:3a:23:55:b3:
30:8c:ea:7e:cb:65:e4:fd:ec:f6:49:2e:da:b0:43:
b2:f1:19:ec:68:ef:ec:4b:a4:5b:7a:e2:f8:22:09:
dc:2d:33:fe:07:c2:41:77:91:0e:91:5b:8e:9a:3e:
fe:39:b7:d4:54:b9:7e:ab:9a:21:27:45:c5:76:2f:
3a:95:79:ed:35:4a:4a:7d:a4:8a:21:df:8a:8b:d4:
44:f8:44:f2:1a:00:ea:f9:35:d0:9c:03:a8:5b:4c:
6e:7f:40:11:15:6b:fd:65:23:fc:d1:7c:8d:36:a4:
50:ad:88:85:50:15:5a:a4:e7:39:ab:e6:eb:0a:4f:
3d:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:83:45:8F:5A:08:34:2A:68:FD:08:1B:42:31:51:9C:39:E7:57:50
X509v3 Authority Key Identifier:
keyid:AE:51:D2:57:16:DD:B4:CC:A3:1B:2E:98:5E:0A:75:25:F7:F4:B9:C6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368A3D1/73732E56702811EBB2F96825F8AEA228/rlHSVxbdtMyjGy6YXgp1Jff0ucY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/rlHSVxbdtMyjGy6YXgp1Jff0ucY.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368A3D1/73732E56702811EBB2F96825F8AEA228/1C83F7F2CCA011ED9FBDAF90F1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.220.254.0/24
Signature Algorithm: sha256WithRSAEncryption
79:1a:33:5a:c5:bf:8c:27:05:d5:23:42:f5:65:33:ba:00:62:
8a:fc:c9:1f:58:0f:73:a9:31:13:3d:43:cf:ae:f5:dc:0d:38:
ff:fd:9c:7b:e8:bf:e8:55:42:ff:f7:00:c8:6b:31:34:7e:d7:
27:ad:4d:dc:86:be:b1:52:28:ed:82:09:f1:f7:0b:2a:ed:6d:
03:a1:20:f1:30:57:f3:a3:d6:9c:aa:4c:b6:12:f2:d1:9a:43:
d2:a1:3a:1f:66:ee:24:a5:25:f4:3f:d1:a5:9f:86:33:63:e1:
32:e6:78:a9:d6:cb:b4:a4:47:c1:55:96:be:62:b4:99:18:d2:
5f:62:83:e3:1e:28:0f:61:77:62:13:b7:12:34:99:cb:16:09:
a0:1c:6a:a2:f8:6c:a7:9f:06:ac:49:65:62:b3:b2:32:9f:8a:
ff:67:80:bf:4c:1a:16:a0:13:50:13:fe:1b:ad:d1:c1:83:da:
89:e0:b9:c7:2f:54:fa:a4:41:0b:07:97:81:2a:12:45:bf:cc:
6e:4a:8e:fd:38:fc:fe:33:d6:fa:40:45:83:65:49:31:d8:ce:
c6:65:fc:e3:3b:06:9e:a2:94:1d:0c:96:36:94:13:da:14:74:
a4:e9:64:28:87:fa:21:8c:26:26:b1:f6:0d:91:4d:f3:aa:fc:
65:8a:a9:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:08:57 2024 by rpki-client on console-fra.rpki-client.org