Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F369A625/8A38274078B811E98298434FF8AEA228/DAE322F878B811E9B3438C4FF8AEA228.roa
File: DAE322F878B811E9B3438C4FF8AEA228.roa (raw, json)
Hash identifier: mgZGE3Ll5Dgo3ictgLL7xWBnmw8xHss4MqSU6nvfKqI=
Subject key identifier: CF:34:D6:ED:54:60:34:19:BE:A5:6D:FA:4C:F6:A3:BB:4F:8F:4F:0B
Certificate issuer: /CN=F369A625AF/serialNumber=7039D5A31FF1F32BB15D478C10978697B6222657
Certificate serial: 02
Authority key identifier: 70:39:D5:A3:1F:F1:F3:2B:B1:5D:47:8C:10:97:86:97:B6:22:26:57
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/cDnVox_x8yuxXUeMEJeGl7YiJlc.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F369A625/8A38274078B811E98298434FF8AEA228/DAE322F878B811E9B3438C4FF8AEA228.roa
Signing time: Fri 17 May 2019 15:31:36 +0000
ROA not before: Fri 17 May 2019 15:31:29 +0000
ROA not after: Sat 31 May 2025 15:31:29 +0000
asID: 328285
IP address blocks: 102.164.64.0/20 maxlen: 24
2c0f:ee88::/32 maxlen: 54
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F369A625/8A38274078B811E98298434FF8AEA228/cDnVox_x8yuxXUeMEJeGl7YiJlc.crl
rsync://rpki.afrinic.net/repository/member_repository/F369A625/8A38274078B811E98298434FF8AEA228/cDnVox_x8yuxXUeMEJeGl7YiJlc.mft
rsync://rpki.afrinic.net/repository/afrinic/cDnVox_x8yuxXUeMEJeGl7YiJlc.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 27 May 2024 00:04:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2 (0x2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F369A625AF/serialNumber=7039D5A31FF1F32BB15D478C10978697B6222657
Validity
Not Before: May 17 15:31:29 2019 GMT
Not After : May 31 15:31:29 2025 GMT
Subject: CN=5cded3d7-0aca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:c8:1d:c3:a6:cb:4d:e4:4b:3f:ff:cd:d2:76:
c7:c4:4c:a7:96:f5:53:fe:c3:5f:72:cc:78:ac:d0:
d9:98:74:9f:73:c3:cd:65:27:e3:63:bd:18:a0:e3:
34:8a:14:db:57:c1:74:d8:5e:a2:4b:eb:ea:41:a3:
40:91:97:45:ca:ef:39:fa:a5:6a:85:c5:5d:bb:cc:
c6:b1:36:b9:aa:cd:f5:8d:28:87:e4:5f:0c:0c:9e:
cc:11:81:6c:50:17:3e:82:22:d3:94:9e:0c:51:a6:
70:ae:18:3c:d6:66:aa:20:e6:31:5b:de:c6:4a:58:
0b:e5:7c:7c:5a:d4:bf:c8:25:6e:1e:4a:77:31:cf:
2e:f4:3c:e3:38:5f:13:99:73:41:51:0d:c5:68:ba:
3c:e5:1e:fd:6c:f5:82:b7:05:21:15:f3:90:79:eb:
c7:6a:73:e4:6d:dd:a1:19:58:17:48:ed:a9:f0:6f:
9c:7d:2c:1e:66:e5:44:fd:8a:36:55:f1:fc:f2:06:
e5:3d:53:87:2a:24:98:52:da:7f:5c:c0:6b:91:7f:
ba:06:2e:c8:44:28:a5:01:77:f4:8b:54:32:4a:54:
71:72:7d:fa:67:fa:30:b0:55:ce:09:46:74:1f:83:
5a:d5:76:7b:cb:02:e7:e2:28:36:da:be:df:3f:e7:
e4:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:34:D6:ED:54:60:34:19:BE:A5:6D:FA:4C:F6:A3:BB:4F:8F:4F:0B
X509v3 Authority Key Identifier:
keyid:70:39:D5:A3:1F:F1:F3:2B:B1:5D:47:8C:10:97:86:97:B6:22:26:57
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F369A625/8A38274078B811E98298434FF8AEA228/cDnVox_x8yuxXUeMEJeGl7YiJlc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/cDnVox_x8yuxXUeMEJeGl7YiJlc.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F369A625/8A38274078B811E98298434FF8AEA228/DAE322F878B811E9B3438C4FF8AEA228.roa
sbgp-ipAddrBlock: critical
IPv4:
102.164.64.0/20
IPv6:
2c0f:ee88::/32
Signature Algorithm: sha256WithRSAEncryption
73:1f:65:65:43:fa:37:ea:07:71:61:29:e1:ad:45:f9:c3:3e:
d1:37:55:09:7f:b8:c8:dc:c1:62:b0:2a:a7:a4:cd:e5:78:ca:
66:46:4a:1d:cd:59:4f:f9:24:21:59:12:8f:e3:f8:21:22:58:
22:16:37:70:f8:15:33:96:f6:ee:67:ee:a4:18:ca:cd:5c:24:
58:fb:06:04:68:85:54:d4:79:ae:8e:1f:54:fa:82:37:94:7b:
4c:9a:de:38:33:00:b3:99:c6:38:d4:94:95:59:3d:7f:bf:29:
3c:f6:88:8f:73:c1:f4:ca:15:19:e0:23:e1:49:79:ef:10:d9:
bc:72:19:37:71:6c:ed:87:c7:f8:7c:47:b0:82:ab:18:a6:8b:
f2:72:64:5e:1c:90:13:0f:09:08:c4:4a:ec:2c:eb:9f:ae:90:
de:fb:52:98:25:0f:5e:3f:ac:d9:98:2b:be:c0:bb:5c:67:c7:
59:88:1a:ef:3b:42:3f:2f:ee:c5:c3:7d:ef:39:11:5d:3e:ae:
48:85:04:32:ba:5f:ad:4a:44:45:a8:a5:4b:6e:cb:6e:49:8f:
7b:c4:52:2b:35:90:f3:a1:5e:5e:48:87:a2:a3:33:3b:91:c9:
6b:bd:58:83:ec:18:e6:7f:9b:67:3d:3c:3d:fa:ba:c7:4a:e1:
81:96:ee:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 25 01:24:45 2024 by rpki-client on console-fra.rpki-client.org