Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3694F05/3F96DAD82AB211EDAE73A79CF1222468/A151A4662ACF11EDA1204EE7F1222468.roa
File: A151A4662ACF11EDA1204EE7F1222468.roa (raw, json)
Hash identifier: qoPnGPjM6gW9jZ+S12ZaxBTKQE06UsPi3piDTRaCbeA=
Subject key identifier: 60:FC:35:DE:99:B5:80:76:AC:61:1E:18:5F:1E:3B:6D:D0:7E:46:BB
Certificate issuer: /CN=F3694F05AF/serialNumber=C8F90C5689F762B36142D92DD6C5257A0261ADDB
Certificate serial: 05
Authority key identifier: C8:F9:0C:56:89:F7:62:B3:61:42:D9:2D:D6:C5:25:7A:02:61:AD:DB
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/yPkMVon3YrNhQtkt1sUlegJhrds.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3694F05/3F96DAD82AB211EDAE73A79CF1222468/A151A4662ACF11EDA1204EE7F1222468.roa
Signing time: Fri 02 Sep 2022 14:57:57 +0000
ROA not before: Fri 02 Sep 2022 14:57:54 +0000
ROA not after: Thu 02 Sep 2027 14:57:54 +0000
asID: 328722
IP address blocks: 102.221.239.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3694F05/3F96DAD82AB211EDAE73A79CF1222468/yPkMVon3YrNhQtkt1sUlegJhrds.crl
rsync://rpki.afrinic.net/repository/member_repository/F3694F05/3F96DAD82AB211EDAE73A79CF1222468/yPkMVon3YrNhQtkt1sUlegJhrds.mft
rsync://rpki.afrinic.net/repository/afrinic/yPkMVon3YrNhQtkt1sUlegJhrds.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 27 Nov 2024 00:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5 (0x5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3694F05AF/serialNumber=C8F90C5689F762B36142D92DD6C5257A0261ADDB
Validity
Not Before: Sep 2 14:57:54 2022 GMT
Not After : Sep 2 14:57:54 2027 GMT
Subject: CN=631219f5-7da7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:fe:88:aa:7e:90:a3:c6:90:5b:d9:37:cd:7d:
a7:c8:a7:97:1e:ac:d0:6a:12:eb:50:1a:e1:5c:33:
26:9f:79:55:b6:65:b4:53:d5:6a:2c:01:27:e8:a2:
a4:22:a2:3e:2f:1a:df:8f:16:83:7c:c7:87:a1:3a:
87:6d:3d:e4:c9:83:62:6f:70:5a:e0:47:7e:46:2a:
5d:21:de:99:36:6b:ed:65:af:91:11:03:8e:46:04:
a9:75:48:3f:40:2a:90:2a:80:06:24:f4:16:c3:e5:
30:83:13:de:3f:12:c9:0c:f9:36:c1:54:f2:18:7f:
61:d0:e6:1a:22:df:68:f6:84:cc:67:c0:90:fc:2d:
30:93:63:05:ce:f9:24:10:bf:90:2a:ef:28:e9:aa:
7b:2d:ff:55:3b:2d:80:4c:30:74:98:3d:0b:ce:5e:
1a:d5:7f:ea:df:2b:c2:a5:9f:3c:8b:bd:8a:cd:a2:
ce:f8:92:89:31:79:32:f8:03:57:99:fd:68:7a:4f:
fb:92:e7:e9:09:0f:ed:2b:22:8c:56:18:7b:2f:7b:
07:68:8f:c1:9c:17:da:21:b7:70:c3:4b:63:b3:f3:
41:21:bc:1a:4f:06:c3:31:9c:1f:0f:70:ec:f0:80:
c5:10:82:e8:d7:fd:d4:af:ea:9a:70:08:68:75:1c:
8e:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:FC:35:DE:99:B5:80:76:AC:61:1E:18:5F:1E:3B:6D:D0:7E:46:BB
X509v3 Authority Key Identifier:
keyid:C8:F9:0C:56:89:F7:62:B3:61:42:D9:2D:D6:C5:25:7A:02:61:AD:DB
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3694F05/3F96DAD82AB211EDAE73A79CF1222468/yPkMVon3YrNhQtkt1sUlegJhrds.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/yPkMVon3YrNhQtkt1sUlegJhrds.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3694F05/3F96DAD82AB211EDAE73A79CF1222468/A151A4662ACF11EDA1204EE7F1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.221.239.0/24
Signature Algorithm: sha256WithRSAEncryption
25:cc:25:f1:62:87:b9:6b:c5:aa:13:5d:e1:32:fe:8c:b7:34:
e2:fe:e6:b7:c0:36:01:58:29:52:92:61:19:f8:34:10:00:88:
fb:2b:6a:c4:ac:7c:5d:99:f1:89:60:d7:0f:31:b4:7a:70:24:
6d:34:0c:07:75:50:da:b9:68:2e:55:0c:ec:f0:ae:18:c5:7f:
9d:db:25:90:d2:64:b3:ae:70:f2:7f:9e:72:d1:ea:bd:5c:86:
2c:19:65:d7:30:9f:7f:53:ea:77:9d:e5:cb:ab:2e:5d:41:8f:
53:b9:ff:cd:f6:4b:04:f4:e5:58:ec:e6:24:91:bc:41:bc:7f:
4b:57:23:3d:58:10:2b:57:95:63:dc:bc:6a:ab:27:22:d2:1b:
be:00:32:e2:66:6d:09:a8:d7:72:7d:d5:0d:89:7e:a2:6b:c5:
3e:d5:9d:2e:77:a2:b9:c5:47:af:b5:c8:b4:4e:e6:f1:68:a5:
17:c6:cd:1a:3e:b6:f8:3c:3f:3a:25:e8:ca:cf:bc:63:ff:bb:
1b:a7:1a:96:69:a7:ff:54:33:c6:16:70:53:16:f8:ce:9a:88:
a1:3b:d7:1b:bb:f1:b0:58:43:34:74:92:5d:cd:7d:73:e9:23:
f2:79:b0:d9:a1:ed:2c:1d:09:bd:e3:af:fe:31:d7:b4:ae:8f:
0d:2d:66:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 03:00:07 2024 by rpki-client on console-fra.rpki-client.org