Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3693944/16AA8A44207611ECB3060925D8A014CE/2CA2D93A038811EF9019CA30017001B1.roa
File: 2CA2D93A038811EF9019CA30017001B1.roa (raw, json)
Hash identifier: Be78PaUHhsuszKdQPF/EsSUZ0AmEaz6Xf0Gf8dw0Abs=
Subject key identifier: 9F:1D:79:1A:BD:C4:7F:1E:90:2C:09:3C:68:08:7A:BB:68:40:E1:AA
Certificate issuer: /CN=F3693944AF/serialNumber=D181E91ED173F64D7BF82D8E0BEF994D5986DF52
Certificate serial: 03D2
Authority key identifier: D1:81:E9:1E:D1:73:F6:4D:7B:F8:2D:8E:0B:EF:99:4D:59:86:DF:52
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/0YHpHtFz9k17-C2OC--ZTVmG31I.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3693944/16AA8A44207611ECB3060925D8A014CE/2CA2D93A038811EF9019CA30017001B1.roa
Signing time: Fri 26 Apr 2024 04:48:07 +0000
ROA not before: Fri 26 Apr 2024 04:48:04 +0000
ROA not after: Wed 30 Apr 2031 04:48:04 +0000
asID: 329181
IP address blocks: 102.217.136.0/22 maxlen: 24
102.219.12.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3693944/16AA8A44207611ECB3060925D8A014CE/0YHpHtFz9k17-C2OC--ZTVmG31I.crl
rsync://rpki.afrinic.net/repository/member_repository/F3693944/16AA8A44207611ECB3060925D8A014CE/0YHpHtFz9k17-C2OC--ZTVmG31I.mft
rsync://rpki.afrinic.net/repository/afrinic/0YHpHtFz9k17-C2OC--ZTVmG31I.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 978 (0x3d2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3693944AF/serialNumber=D181E91ED173F64D7BF82D8E0BEF994D5986DF52
Validity
Not Before: Apr 26 04:48:04 2024 GMT
Not After : Apr 30 04:48:04 2031 GMT
Subject: CN=662b3207-b6c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:74:50:15:b3:fb:4c:bc:c0:0a:ea:02:17:ec:
a2:fa:ca:18:9f:e3:72:4b:16:54:74:1c:d2:de:1c:
39:20:2e:b1:ef:6a:d1:ec:0e:56:a7:67:aa:e8:b8:
94:fd:ba:d7:18:d6:ec:6b:b7:06:6b:c0:ad:18:b6:
83:3c:98:fc:4a:56:18:2c:3a:40:3a:b5:a1:3a:4f:
d2:c4:aa:d4:29:7d:9b:a3:86:35:6a:04:4d:fc:3d:
29:87:a3:f7:a7:07:00:db:9f:d2:32:72:a8:07:fb:
73:11:37:c2:d3:0e:0f:d2:d3:69:5a:d6:8b:45:b1:
7b:c0:1a:cf:4f:07:e7:48:d8:fe:b4:35:00:ce:bd:
52:25:97:50:0a:a5:a3:32:4a:c1:2a:45:8a:49:55:
d2:46:c0:d8:73:1e:ba:61:f3:cb:78:71:18:4a:54:
9e:2e:fc:0e:22:73:58:c7:f5:9a:c8:54:44:e6:99:
f7:f3:6a:6b:a6:0b:2f:71:f9:88:2e:bc:6d:3f:b2:
46:19:41:33:43:94:b9:12:84:6b:fa:01:24:5e:40:
10:2e:9e:e1:d2:99:af:45:bc:39:bc:99:c8:7a:b1:
86:ea:c1:f8:3a:a4:f5:88:13:ab:dd:84:1d:03:2a:
72:41:9c:0c:25:21:16:5d:a6:d9:ba:46:81:39:dc:
67:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:1D:79:1A:BD:C4:7F:1E:90:2C:09:3C:68:08:7A:BB:68:40:E1:AA
X509v3 Authority Key Identifier:
keyid:D1:81:E9:1E:D1:73:F6:4D:7B:F8:2D:8E:0B:EF:99:4D:59:86:DF:52
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3693944/16AA8A44207611ECB3060925D8A014CE/0YHpHtFz9k17-C2OC--ZTVmG31I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/0YHpHtFz9k17-C2OC--ZTVmG31I.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3693944/16AA8A44207611ECB3060925D8A014CE/2CA2D93A038811EF9019CA30017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.217.136.0/22
102.219.12.0/22
Signature Algorithm: sha256WithRSAEncryption
74:20:62:07:70:4e:4c:5e:23:75:af:96:fc:c6:f8:79:7b:d1:
28:63:b3:db:a9:68:09:1b:56:a3:7f:99:8d:70:2c:23:66:a3:
bb:ad:72:5e:0f:2e:cc:02:ea:fa:10:82:46:b8:a9:cc:2c:22:
f8:06:d1:d8:ea:5b:7d:55:1a:3a:3f:a7:22:8d:44:b6:37:30:
0e:04:25:47:71:8f:dd:fd:f5:e1:78:2f:d3:42:8f:60:44:ab:
9c:8d:53:25:3f:21:88:71:e1:20:14:8f:50:23:b3:dc:b6:ff:
b5:3a:ee:14:78:62:cf:bc:b4:85:83:83:d1:86:5f:87:32:b4:
e0:c7:8c:15:0e:6c:d1:2e:89:8c:10:b4:ec:c7:e0:a5:03:38:
45:9c:eb:7d:44:bc:66:23:fd:01:ed:cf:f7:12:f1:4f:df:d5:
51:48:5d:12:2b:3d:1a:47:a8:c8:8a:68:20:84:82:0f:c0:3b:
9c:93:6c:2a:01:15:1a:01:b4:a9:e1:dc:49:24:2d:f3:ee:ac:
f0:6f:43:b5:55:ad:aa:f6:98:1c:23:f0:f8:fb:38:4f:84:58:
2d:cb:bc:58:f2:c4:b5:88:10:b3:96:8e:f3:93:d4:07:87:1c:
05:f5:68:07:75:cb:32:4b:e3:ab:85:de:4e:93:f4:63:5e:2b:
88:df:23:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 03:52:57 2024 by rpki-client on console-fra.rpki-client.org