Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3694F05/3F96DAD82AB211EDAE73A79CF1222468/AE443020498E11EDA2B1F8E7F1222468.roa
File: AE443020498E11EDA2B1F8E7F1222468.roa (raw, json)
Hash identifier: AHhgL0rZvCxvAyYSEc5OQFHil4XndoOT9Znv4QX+e+c=
Subject key identifier: F1:74:75:B3:51:68:E5:DE:B8:67:5A:FA:B4:80:A7:F4:42:E1:D2:17
Certificate issuer: /CN=F3694F05AF/serialNumber=C8F90C5689F762B36142D92DD6C5257A0261ADDB
Certificate serial: 31
Authority key identifier: C8:F9:0C:56:89:F7:62:B3:61:42:D9:2D:D6:C5:25:7A:02:61:AD:DB
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/yPkMVon3YrNhQtkt1sUlegJhrds.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3694F05/3F96DAD82AB211EDAE73A79CF1222468/AE443020498E11EDA2B1F8E7F1222468.roa
Signing time: Tue 11 Oct 2022 18:01:08 +0000
ROA not before: Tue 11 Oct 2022 18:01:02 +0000
ROA not after: Mon 11 Oct 2027 18:01:02 +0000
asID: 328722
IP address blocks: 102.221.237.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3694F05/3F96DAD82AB211EDAE73A79CF1222468/yPkMVon3YrNhQtkt1sUlegJhrds.crl
rsync://rpki.afrinic.net/repository/member_repository/F3694F05/3F96DAD82AB211EDAE73A79CF1222468/yPkMVon3YrNhQtkt1sUlegJhrds.mft
rsync://rpki.afrinic.net/repository/afrinic/yPkMVon3YrNhQtkt1sUlegJhrds.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 27 Nov 2024 00:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 49 (0x31)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3694F05AF/serialNumber=C8F90C5689F762B36142D92DD6C5257A0261ADDB
Validity
Not Before: Oct 11 18:01:02 2022 GMT
Not After : Oct 11 18:01:02 2027 GMT
Subject: CN=6345af63-344d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:f5:c7:74:3d:9c:2a:58:20:28:d5:70:3c:f2:
a9:2b:9d:9d:da:7e:90:4c:41:a1:02:a6:e9:59:31:
29:85:e9:bb:82:60:9b:c1:8e:24:04:99:e0:8d:36:
a5:40:99:11:3e:2c:ad:41:6e:8c:0a:e2:2a:b8:21:
52:99:55:27:4b:c1:99:3f:32:16:46:ae:e2:e9:e3:
84:33:8a:a1:1c:59:34:e8:b7:5b:c0:c4:bb:98:e8:
fb:cb:09:c5:59:7b:9b:45:8f:1d:bf:3b:ce:97:63:
e6:28:9e:46:28:b6:56:56:10:6a:22:cd:ca:7f:87:
44:52:11:67:6b:89:46:66:41:d7:9f:5f:6f:23:c0:
f1:4c:df:ac:67:34:c2:33:36:35:5b:91:e2:74:ce:
a7:38:4f:d1:8a:02:09:3c:43:33:88:c6:40:a7:46:
2e:ba:35:d7:87:fd:e4:d8:04:1f:56:5a:8a:5f:22:
ad:de:b1:b2:26:64:c9:b8:8f:89:06:41:73:bc:02:
3c:1e:2e:bc:e2:9b:23:ed:1a:cd:f2:d2:b5:ec:58:
4a:1a:8e:23:e3:f4:3a:00:0e:7e:a7:b1:ea:95:ca:
e8:d1:11:33:2c:4e:44:07:86:8e:1d:de:2b:ef:2e:
f1:c2:da:01:d2:e0:57:62:ea:6b:50:59:85:b6:b5:
6b:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:74:75:B3:51:68:E5:DE:B8:67:5A:FA:B4:80:A7:F4:42:E1:D2:17
X509v3 Authority Key Identifier:
keyid:C8:F9:0C:56:89:F7:62:B3:61:42:D9:2D:D6:C5:25:7A:02:61:AD:DB
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3694F05/3F96DAD82AB211EDAE73A79CF1222468/yPkMVon3YrNhQtkt1sUlegJhrds.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/yPkMVon3YrNhQtkt1sUlegJhrds.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3694F05/3F96DAD82AB211EDAE73A79CF1222468/AE443020498E11EDA2B1F8E7F1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.221.237.0/24
Signature Algorithm: sha256WithRSAEncryption
b9:fe:42:ee:38:a2:51:04:2d:c7:97:a0:20:8e:cd:a0:38:df:
f9:f2:2b:8f:2d:d2:79:db:f5:9c:be:a3:21:f2:0e:a6:57:88:
49:b5:a6:db:f0:d5:78:57:3e:7f:bb:21:af:d8:06:0e:92:64:
4a:34:65:ab:ac:8b:5a:fd:9f:19:1a:c5:13:c5:05:69:6e:c7:
15:48:d8:f4:72:43:49:84:d3:16:25:fa:74:02:9d:d8:a7:b8:
25:e6:16:f8:5b:bd:12:3f:88:52:03:9e:41:84:45:b1:96:15:
74:e6:a8:84:a0:90:a5:2e:63:73:00:e2:fa:bb:90:05:4c:cc:
0d:29:6c:24:24:c9:4f:c3:f9:ca:0d:bd:4b:5b:b1:9c:d7:37:
9c:ed:0a:80:b5:b1:d2:11:8d:91:dd:89:0d:33:2f:5c:12:a1:
4b:c9:40:d1:49:86:89:5e:0a:42:46:f3:a0:d6:72:40:69:70:
55:c6:53:0c:56:48:92:76:b6:31:b0:a2:79:2b:6c:55:0d:42:
8e:7f:4b:d2:26:c2:e8:3c:ed:62:73:4e:5a:6a:93:7d:09:b9:
95:b2:69:a5:d4:45:b5:64:86:d8:98:cf:cf:b6:6b:5c:79:37:
88:74:a0:68:e1:ef:0c:da:c4:44:73:35:9f:90:48:58:d1:b0:
d6:69:65:aa
-----BEGIN CERTIFICATE-----
MIIFgjCCBGqgAwIBAgIBMTANBgkqhkiG9w0BAQsFADBIMRMwEQYDVQQDDApGMzY5
NEYwNUFGMTEwLwYDVQQFEyhDOEY5MEM1Njg5Rjc2MkIzNjE0MkQ5MkRENkM1MjU3
QTAyNjFBRERCMB4XDTIyMTAxMTE4MDEwMloXDTI3MTAxMTE4MDEwMlowGDEWMBQG
A1UEAwwNNjM0NWFmNjMtMzQ0ZDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBAND1x3Q9nCpYICjVcDzyqSudndp+kExBoQKm6VkxKYXpu4Jgm8GOJASZ4I02
pUCZET4srUFujAriKrghUplVJ0vBmT8yFkau4unjhDOKoRxZNOi3W8DEu5jo+8sJ
xVl7m0WPHb87zpdj5iieRii2VlYQaiLNyn+HRFIRZ2uJRmZB159fbyPA8UzfrGc0
wjM2NVuR4nTOpzhP0YoCCTxDM4jGQKdGLro114f95NgEH1Zail8ird6xsiZkybiP
iQZBc7wCPB4uvOKbI+0azfLStexYShqOI+P0OgAOfqex6pXK6NERMyxORAeGjh3e
K+8u8cLaAdLgV2Lqa1BZhba1a1sCAwEAAaOCAqUwggKhMB0GA1UdDgQWBBTxdHWz
UWjl3rhnWvq0gKf0QuHSFzAfBgNVHSMEGDAWgBTI+QxWifdis2FC2S3WxSV6AmGt
2zAOBgNVHQ8BAf8EBAMCB4AwgZUGA1UdHwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6
Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVyX3JlcG9zaXRvcnkv
RjM2OTRGMDUvM0Y5NkRBRDgyQUIyMTFFREFFNzNBNzlDRjEyMjI0NjgveVBrTVZv
bjNZck5oUXRrdDFzVWxlZ0pocmRzLmNybDBnBggrBgEFBQcBAQRbMFkwVwYIKwYB
BQUHMAKGS3JzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L2Fmcmlu
aWMveVBrTVZvbjNZck5oUXRrdDFzVWxlZ0pocmRzLmNlcjBPBgNVHSABAf8ERTBD
MEEGCCsGAQUFBw4CMDUwMwYIKwYBBQUHAgEWJ2h0dHBzOi8vcnBraS5hZnJpbmlj
Lm5ldC9wb2xpY3kvQ1BTLnBkZjCB2wYIKwYBBQUHAQsEgc4wgcswgZEGCCsGAQUF
BzALhoGEcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVy
X3JlcG9zaXRvcnkvRjM2OTRGMDUvM0Y5NkRBRDgyQUIyMTFFREFFNzNBNzlDRjEy
MjI0NjgvQUU0NDMwMjA0OThFMTFFREEyQjFGOEU3RjEyMjI0Njgucm9hMDUGCCsG
AQUFBzANhilodHRwczovL3JyZHAuYWZyaW5pYy5uZXQvbm90aWZpY2F0aW9uLnht
bDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGbd7TANBgkqhkiG9w0BAQsF
AAOCAQEAuf5C7jiiUQQtx5egII7NoDjf+fIrjy3Sedv1nL6jIfIOpleISbWm2/DV
eFc+f7shr9gGDpJkSjRlq6yLWv2fGRrFE8UFaW7HFUjY9HJDSYTTFiX6dAKd2Ke4
JeYW+Fu9Ej+IUgOeQYRFsZYVdOaohKCQpS5jcwDi+ruQBUzMDSlsJCTJT8P5yg29
S1uxnNc3nO0KgLWx0hGNkd2JDTMvXBKhS8lA0UmGiV4KQkbzoNZyQGlwVcZTDFZI
kna2MbCieStsVQ1Cjn9L0ibC6DztYnNOWmqTfQm5lbJppdRFtWSG2JjPz7ZrXHk3
iHSgaOHvDNrERHM1n5BIWNGw1mllqg==
-----END CERTIFICATE-----
Generated at Mon Nov 25 02:48:39 2024 by rpki-client on console-ams.rpki-client.org