Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3694F05/3F96DAD82AB211EDAE73A79CF1222468/6ECEC2DC6C0911EDBFB8DA80F1222468.roa
File: 6ECEC2DC6C0911EDBFB8DA80F1222468.roa (raw, json)
Hash identifier: Qd6bY+8iuvDaqKzd/WcuiQUwTCse/+zVhf0U8LadsWg=
Subject key identifier: 2C:31:D3:09:86:3A:7D:5A:52:87:9A:C4:4E:D7:0C:9C:9A:2C:6D:9C
Certificate issuer: /CN=F3694F05AF/serialNumber=C8F90C5689F762B36142D92DD6C5257A0261ADDB
Certificate serial: 61
Authority key identifier: C8:F9:0C:56:89:F7:62:B3:61:42:D9:2D:D6:C5:25:7A:02:61:AD:DB
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/yPkMVon3YrNhQtkt1sUlegJhrds.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3694F05/3F96DAD82AB211EDAE73A79CF1222468/6ECEC2DC6C0911EDBFB8DA80F1222468.roa
Signing time: Thu 24 Nov 2022 15:05:29 +0000
ROA not before: Thu 24 Nov 2022 15:05:25 +0000
ROA not after: Thu 02 Sep 2027 15:05:25 +0000
asID: 328722
IP address blocks: 102.221.236.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3694F05/3F96DAD82AB211EDAE73A79CF1222468/yPkMVon3YrNhQtkt1sUlegJhrds.crl
rsync://rpki.afrinic.net/repository/member_repository/F3694F05/3F96DAD82AB211EDAE73A79CF1222468/yPkMVon3YrNhQtkt1sUlegJhrds.mft
rsync://rpki.afrinic.net/repository/afrinic/yPkMVon3YrNhQtkt1sUlegJhrds.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 19 May 2024 00:04:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 97 (0x61)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3694F05AF/serialNumber=C8F90C5689F762B36142D92DD6C5257A0261ADDB
Validity
Not Before: Nov 24 15:05:25 2022 GMT
Not After : Sep 2 15:05:25 2027 GMT
Subject: CN=637f8839-95c1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:72:3e:2c:e5:c3:21:8c:8b:0f:9e:43:3c:ff:
ed:70:5d:4a:1f:d5:6d:4c:40:52:61:64:24:f7:05:
d5:57:46:5d:df:3c:f9:b8:87:10:1c:21:f8:92:81:
4b:c0:fd:ed:b0:15:ea:c0:6a:c2:e0:2c:8f:90:5a:
37:6d:84:cc:1b:01:79:60:ee:58:4a:bd:83:bd:eb:
29:5d:ef:dc:f8:1e:c8:0a:e0:ee:71:c6:4d:27:e1:
f2:29:85:45:a7:53:32:79:5a:f4:51:c3:e7:8c:18:
df:21:c3:77:c1:e5:ac:ba:5a:0b:b2:e3:01:29:f9:
c1:e7:ee:b0:ad:d4:0a:c6:28:2b:9b:d5:5c:1e:7f:
49:4c:e5:d5:df:6f:2d:12:5f:82:1f:53:da:9a:94:
47:eb:ac:52:6a:c2:10:3f:e8:ac:60:a1:24:00:a9:
ee:b9:58:a8:2b:2a:93:35:e1:8e:27:3c:3c:b5:1e:
15:a7:31:28:89:31:71:75:f7:12:46:27:82:f5:dd:
d7:9d:99:6a:e3:be:f8:4d:18:f2:7c:b2:6e:15:77:
20:2c:b4:78:a6:dc:56:9a:fb:3a:3f:da:9c:ca:d0:
f3:3d:58:63:9e:01:ed:80:f8:3f:9a:26:05:f9:47:
dc:15:ea:aa:9b:ce:e0:e3:92:73:44:92:24:e6:ea:
c0:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:31:D3:09:86:3A:7D:5A:52:87:9A:C4:4E:D7:0C:9C:9A:2C:6D:9C
X509v3 Authority Key Identifier:
keyid:C8:F9:0C:56:89:F7:62:B3:61:42:D9:2D:D6:C5:25:7A:02:61:AD:DB
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3694F05/3F96DAD82AB211EDAE73A79CF1222468/yPkMVon3YrNhQtkt1sUlegJhrds.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/yPkMVon3YrNhQtkt1sUlegJhrds.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3694F05/3F96DAD82AB211EDAE73A79CF1222468/6ECEC2DC6C0911EDBFB8DA80F1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.221.236.0/23
Signature Algorithm: sha256WithRSAEncryption
8d:02:d2:56:9b:2c:18:47:7a:5b:a8:13:fa:43:1d:75:9b:1a:
cf:92:f9:bc:a8:08:61:92:d2:6d:1b:6c:2e:45:71:ac:0b:51:
5d:4a:f7:08:1e:0a:e5:28:87:c0:82:61:5e:af:6e:fe:dc:93:
1b:d2:4e:da:3c:2e:43:ba:16:9f:9c:e0:76:ac:9b:e6:d3:05:
4c:57:f1:ee:52:00:c6:e8:08:55:e8:1b:34:f9:5e:4a:ab:2b:
e7:9e:58:39:b1:4d:cd:0c:63:79:a1:1f:66:f2:4f:7f:79:2c:
95:b7:28:7e:fd:75:a1:77:5b:ac:98:94:b0:c7:83:48:48:8d:
ec:53:b7:f7:cc:7c:af:5e:ce:e7:c8:17:9e:92:a6:50:ec:2d:
28:b7:db:ed:ce:ab:b1:89:93:f2:c2:2a:34:f6:5d:ad:1a:44:
4a:a1:8e:54:4b:3b:77:c5:98:7a:84:5d:23:6e:be:76:4d:17:
d3:22:df:c4:c6:6a:35:84:79:90:78:a4:9c:f7:df:09:39:1e:
a8:9f:99:af:14:af:e2:18:1a:6d:32:1c:43:7d:0d:bd:d5:98:
7a:f8:cb:e7:33:45:c2:eb:3b:d5:ce:13:5f:8c:03:d0:56:67:
c4:ba:dc:76:be:ec:17:22:53:94:e8:37:61:06:92:03:73:7b:
60:85:1b:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 17 03:06:27 2024 by rpki-client on console-ams.rpki-client.org