Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3695E06/CAD1973AC49411EB9D712251F8AEA228/6B702572C5B611EB874E825FF8AEA228.roa
File: 6B702572C5B611EB874E825FF8AEA228.roa (raw, json)
Hash identifier: TuOEHMyp7ZkGMu80eO/vkZfJHkaFNIwGb2ogLtbprVA=
Subject key identifier: 59:37:DA:C9:A7:00:D6:0C:AF:6A:0F:53:A7:DA:DA:8D:E6:89:5C:77
Certificate issuer: /CN=F3695E06AF/serialNumber=D96F91F502AEB5C20891E17F10FF5E8C9F8673A7
Certificate serial: 0E
Authority key identifier: D9:6F:91:F5:02:AE:B5:C2:08:91:E1:7F:10:FF:5E:8C:9F:86:73:A7
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/2W-R9QKutcIIkeF_EP9ejJ-Gc6c.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3695E06/CAD1973AC49411EB9D712251F8AEA228/6B702572C5B611EB874E825FF8AEA228.roa
Signing time: Sat 05 Jun 2021 04:28:04 +0000
ROA not before: Sat 05 Jun 2021 04:28:00 +0000
ROA not after: Tue 04 Jun 2030 04:28:00 +0000
asID: 328842
IP address blocks: 102.220.223.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3695E06/CAD1973AC49411EB9D712251F8AEA228/2W-R9QKutcIIkeF_EP9ejJ-Gc6c.crl
rsync://rpki.afrinic.net/repository/member_repository/F3695E06/CAD1973AC49411EB9D712251F8AEA228/2W-R9QKutcIIkeF_EP9ejJ-Gc6c.mft
rsync://rpki.afrinic.net/repository/afrinic/2W-R9QKutcIIkeF_EP9ejJ-Gc6c.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 14 (0xe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3695E06AF/serialNumber=D96F91F502AEB5C20891E17F10FF5E8C9F8673A7
Validity
Not Before: Jun 5 04:28:00 2021 GMT
Not After : Jun 4 04:28:00 2030 GMT
Subject: CN=60bafd54-925b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:4d:b1:80:ff:a9:e7:07:be:28:c7:a1:c4:f8:
49:47:a0:94:48:f9:3a:9b:63:dd:93:a6:09:30:2d:
1d:34:91:a4:28:33:4f:ee:0a:4f:68:0c:d2:fd:bc:
47:ac:73:13:94:94:25:2b:fc:6d:7d:b3:92:fd:c4:
c3:9a:49:0d:7f:5f:81:d8:f0:42:1c:cb:37:b8:08:
70:31:3e:44:06:fa:b4:fb:96:69:84:e4:38:a4:b7:
fe:12:48:7c:e4:bf:dc:aa:a7:59:84:69:c2:e5:26:
26:60:f8:91:bd:bd:0d:23:14:4c:35:6f:7f:c2:02:
3e:bf:49:21:3a:37:86:c8:2c:97:d2:90:ee:ea:1d:
a0:9c:e9:ee:93:35:51:ea:37:40:47:98:36:b0:26:
a3:64:95:80:e2:8c:d5:db:e7:5e:d5:ea:b7:2b:0e:
e1:20:f9:70:ae:1e:d1:35:31:e6:d4:a8:93:9f:61:
13:cb:dc:eb:7a:a6:17:ad:8f:ac:25:d7:80:de:61:
0f:14:9f:18:58:8a:35:27:5d:3e:f9:c7:70:ea:3e:
48:56:4d:5a:90:34:1a:72:0d:db:80:59:22:a3:bb:
a6:e0:e8:0b:f0:b4:14:83:76:e8:89:82:ac:2f:8a:
ff:30:59:f6:53:37:15:0b:10:ba:8a:46:28:54:13:
ea:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:37:DA:C9:A7:00:D6:0C:AF:6A:0F:53:A7:DA:DA:8D:E6:89:5C:77
X509v3 Authority Key Identifier:
keyid:D9:6F:91:F5:02:AE:B5:C2:08:91:E1:7F:10:FF:5E:8C:9F:86:73:A7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3695E06/CAD1973AC49411EB9D712251F8AEA228/2W-R9QKutcIIkeF_EP9ejJ-Gc6c.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/2W-R9QKutcIIkeF_EP9ejJ-Gc6c.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3695E06/CAD1973AC49411EB9D712251F8AEA228/6B702572C5B611EB874E825FF8AEA228.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.220.223.0/24
Signature Algorithm: sha256WithRSAEncryption
9c:76:a2:96:79:d0:95:1a:dd:36:3f:33:2d:7c:14:a1:b0:30:
a2:55:cd:fe:df:c0:93:24:a8:c4:b8:42:ee:da:0d:63:de:4d:
39:c2:cd:33:fb:54:45:d4:c7:02:6d:6b:02:44:d8:db:d5:c2:
ef:11:d6:10:60:0c:65:d8:9e:0e:83:7b:ab:15:b9:5e:61:02:
a6:b4:dc:81:d6:6f:77:03:bd:71:33:d7:6c:28:ec:0c:64:36:
c5:dc:58:10:e0:04:95:78:a9:58:67:2f:24:21:f2:8d:f2:2f:
ef:a7:2a:eb:ea:4e:c4:a2:ad:38:6a:00:8d:80:93:59:9b:86:
76:08:85:7c:4c:62:98:d0:f3:0f:05:d4:4c:7c:a7:6a:40:37:
24:ea:ea:97:08:8a:e3:77:a1:86:b6:05:1b:7f:db:f8:11:a0:
12:b2:a6:b7:62:55:6e:e5:13:34:1c:89:f5:e4:21:56:7c:91:
cb:c1:2e:cf:2c:d2:4d:52:40:e0:39:15:36:64:aa:9b:cc:40:
01:af:bc:bd:0e:72:77:a7:a3:2a:8e:f8:99:98:3d:49:09:64:
c2:d4:30:ee:e4:45:bc:d2:46:13:1c:11:af:28:f5:ac:83:6e:
76:8c:31:14:a8:00:83:39:6b:81:dc:0d:da:56:26:93:b2:c1:
22:ae:e5:40
-----BEGIN CERTIFICATE-----
MIIFgjCCBGqgAwIBAgIBDjANBgkqhkiG9w0BAQsFADBIMRMwEQYDVQQDEwpGMzY5
NUUwNkFGMTEwLwYDVQQFEyhEOTZGOTFGNTAyQUVCNUMyMDg5MUUxN0YxMEZGNUU4
QzlGODY3M0E3MB4XDTIxMDYwNTA0MjgwMFoXDTMwMDYwNDA0MjgwMFowGDEWMBQG
A1UEAxMNNjBiYWZkNTQtOTI1YjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBAMNNsYD/qecHvijHocT4SUeglEj5Optj3ZOmCTAtHTSRpCgzT+4KT2gM0v28
R6xzE5SUJSv8bX2zkv3Ew5pJDX9fgdjwQhzLN7gIcDE+RAb6tPuWaYTkOKS3/hJI
fOS/3KqnWYRpwuUmJmD4kb29DSMUTDVvf8ICPr9JITo3hsgsl9KQ7uodoJzp7pM1
Ueo3QEeYNrAmo2SVgOKM1dvnXtXqtysO4SD5cK4e0TUx5tSok59hE8vc63qmF62P
rCXXgN5hDxSfGFiKNSddPvnHcOo+SFZNWpA0GnIN24BZIqO7puDoC/C0FIN26ImC
rC+K/zBZ9lM3FQsQuopGKFQT6g0CAwEAAaOCAqUwggKhMB0GA1UdDgQWBBRZN9rJ
pwDWDK9qD1On2tqN5olcdzAfBgNVHSMEGDAWgBTZb5H1Aq61wgiR4X8Q/16Mn4Zz
pzAOBgNVHQ8BAf8EBAMCB4AwgZUGA1UdHwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6
Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVyX3JlcG9zaXRvcnkv
RjM2OTVFMDYvQ0FEMTk3M0FDNDk0MTFFQjlENzEyMjUxRjhBRUEyMjgvMlctUjlR
S3V0Y0lJa2VGX0VQOWVqSi1HYzZjLmNybDBnBggrBgEFBQcBAQRbMFkwVwYIKwYB
BQUHMAKGS3JzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L2Fmcmlu
aWMvMlctUjlRS3V0Y0lJa2VGX0VQOWVqSi1HYzZjLmNlcjBPBgNVHSABAf8ERTBD
MEEGCCsGAQUFBw4CMDUwMwYIKwYBBQUHAgEWJ2h0dHBzOi8vcnBraS5hZnJpbmlj
Lm5ldC9wb2xpY3kvQ1BTLnBkZjCB2wYIKwYBBQUHAQsEgc4wgcswgZEGCCsGAQUF
BzALhoGEcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVy
X3JlcG9zaXRvcnkvRjM2OTVFMDYvQ0FEMTk3M0FDNDk0MTFFQjlENzEyMjUxRjhB
RUEyMjgvNkI3MDI1NzJDNUI2MTFFQjg3NEU4MjVGRjhBRUEyMjgucm9hMDUGCCsG
AQUFBzANhilodHRwczovL3JyZHAuYWZyaW5pYy5uZXQvbm90aWZpY2F0aW9uLnht
bDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGbc3zANBgkqhkiG9w0BAQsF
AAOCAQEAnHailnnQlRrdNj8zLXwUobAwolXN/t/AkySoxLhC7toNY95NOcLNM/tU
RdTHAm1rAkTY29XC7xHWEGAMZdieDoN7qxW5XmECprTcgdZvdwO9cTPXbCjsDGQ2
xdxYEOAElXipWGcvJCHyjfIv76cq6+pOxKKtOGoAjYCTWZuGdgiFfEximNDzDwXU
THynakA3JOrqlwiK43ehhrYFG3/b+BGgErKmt2JVbuUTNByJ9eQhVnyRy8EuzyzS
TVJA4DkVNmSqm8xAAa+8vQ5yd6ejKo74mZg9SQlkwtQw7uRFvNJGExwRryj1rINu
dowxFKgAgzlrgdwN2lYmk7LBIq7lQA==
-----END CERTIFICATE-----
Generated at Fri Nov 22 04:05:14 2024 by rpki-client on console-ams.rpki-client.org