Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3694F05/3F96DAD82AB211EDAE73A79CF1222468/D8E35AAC6CAE11ED8CAEFAC8F1222468.roa
File: D8E35AAC6CAE11ED8CAEFAC8F1222468.roa (raw, json)
Hash identifier: kqrWgEOzDnCn82yozTeD80QmS2hjPuYLw7e7eTjqcVU=
Subject key identifier: E5:AC:16:85:29:62:31:B0:35:CF:E5:AC:31:4E:AC:22:A8:C4:C4:14
Certificate issuer: /CN=F3694F05AF/serialNumber=C8F90C5689F762B36142D92DD6C5257A0261ADDB
Certificate serial: 64
Authority key identifier: C8:F9:0C:56:89:F7:62:B3:61:42:D9:2D:D6:C5:25:7A:02:61:AD:DB
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/yPkMVon3YrNhQtkt1sUlegJhrds.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3694F05/3F96DAD82AB211EDAE73A79CF1222468/D8E35AAC6CAE11ED8CAEFAC8F1222468.roa
Signing time: Fri 25 Nov 2022 10:49:34 +0000
ROA not before: Fri 25 Nov 2022 10:49:29 +0000
ROA not after: Mon 11 Oct 2027 10:49:29 +0000
asID: 328722
IP address blocks: 102.221.236.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3694F05/3F96DAD82AB211EDAE73A79CF1222468/yPkMVon3YrNhQtkt1sUlegJhrds.crl
rsync://rpki.afrinic.net/repository/member_repository/F3694F05/3F96DAD82AB211EDAE73A79CF1222468/yPkMVon3YrNhQtkt1sUlegJhrds.mft
rsync://rpki.afrinic.net/repository/afrinic/yPkMVon3YrNhQtkt1sUlegJhrds.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 27 Nov 2024 00:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 100 (0x64)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3694F05AF/serialNumber=C8F90C5689F762B36142D92DD6C5257A0261ADDB
Validity
Not Before: Nov 25 10:49:29 2022 GMT
Not After : Oct 11 10:49:29 2027 GMT
Subject: CN=63809dbe-a6c0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:e8:27:f8:e5:d1:18:0e:99:b5:5c:90:6d:cf:
87:c0:b8:3a:27:41:36:fc:cb:5b:26:ed:32:90:3c:
fd:ef:4d:b5:bd:dd:05:df:82:ef:a7:3d:6c:da:75:
ea:75:67:c9:51:fc:e0:38:cc:39:1d:64:6e:61:68:
71:04:18:5a:1c:13:65:59:ae:c4:41:5e:59:bf:74:
9e:14:4d:b3:98:e4:b5:26:bc:47:d7:6d:9e:a8:42:
15:e1:51:de:f9:75:0f:37:59:a9:24:fa:a7:2e:ed:
93:9d:17:06:7c:5f:c8:99:0c:ca:2d:95:6a:a2:d7:
6f:e0:62:9a:56:9d:24:ce:22:c7:08:e3:45:31:cb:
6e:1b:a8:6e:ea:a0:da:58:3a:36:14:ff:fa:de:11:
ac:ed:d0:d0:f5:95:e7:59:ac:8e:f6:a8:af:ea:37:
83:4a:a6:46:bb:38:c0:8c:8a:64:a8:f3:84:cb:16:
1b:f8:3d:d1:68:cd:7a:d2:89:f3:91:a4:44:7f:ac:
2a:24:e1:13:fc:6a:18:00:72:8e:6c:cc:21:eb:8a:
f5:bc:87:87:d3:ab:8a:ad:73:c6:e1:57:4a:02:05:
38:8f:f6:85:0b:84:61:df:2c:97:92:16:3a:c9:ed:
e8:83:db:e0:86:3c:4d:d7:21:fc:9a:5a:72:68:e2:
ef:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:AC:16:85:29:62:31:B0:35:CF:E5:AC:31:4E:AC:22:A8:C4:C4:14
X509v3 Authority Key Identifier:
keyid:C8:F9:0C:56:89:F7:62:B3:61:42:D9:2D:D6:C5:25:7A:02:61:AD:DB
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3694F05/3F96DAD82AB211EDAE73A79CF1222468/yPkMVon3YrNhQtkt1sUlegJhrds.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/yPkMVon3YrNhQtkt1sUlegJhrds.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3694F05/3F96DAD82AB211EDAE73A79CF1222468/D8E35AAC6CAE11ED8CAEFAC8F1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.221.236.0/24
Signature Algorithm: sha256WithRSAEncryption
29:e0:2c:0b:ca:fd:98:3f:07:0e:89:6e:84:08:e3:6c:4f:78:
d8:56:51:c0:20:1d:18:dd:55:99:cc:cb:67:61:e1:c6:a9:54:
40:83:6f:a3:d0:81:45:a5:94:ec:82:17:2c:a2:71:60:48:88:
9e:a6:9d:72:f6:3a:43:ea:ac:89:16:82:96:53:41:a9:41:d1:
4f:73:bd:ff:2b:d0:79:f4:0c:fd:1a:3e:b3:c9:d1:1e:2d:2d:
3b:9c:b1:3a:ba:bc:17:7f:43:91:e6:2c:a8:4e:fa:7c:68:ff:
da:e6:1e:de:9f:f0:51:75:aa:6b:f3:97:a7:32:c0:d5:c9:30:
05:43:b5:0f:c9:8e:f7:6b:c0:ee:52:b8:eb:22:ff:38:ec:22:
e6:95:50:57:9e:b5:11:5d:16:98:34:2c:37:5e:81:9f:4b:de:
4c:55:85:13:fc:d4:af:e6:54:f9:47:72:d2:0e:51:76:54:4a:
32:da:e5:ee:a8:b2:84:80:9a:5f:58:b0:e2:84:d0:2e:72:74:
a8:0c:79:13:6a:27:6f:eb:6a:1e:a7:48:e5:8b:53:b3:9a:85:
94:62:ea:1b:ba:34:82:8a:db:9b:fb:35:af:5c:66:2a:6d:12:
5c:79:70:75:dd:ef:0b:b9:45:bf:ac:00:93:e6:c8:98:db:da:
a7:17:0f:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 03:00:07 2024 by rpki-client on console-fra.rpki-client.org