Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F369C3F1/F4BE55A06C3F11EF95D9E89B762E951A/730CF53E6F7811EFB7469458762E951A.roa
File: 730CF53E6F7811EFB7469458762E951A.roa (raw, json)
Hash identifier: 4Xr+HaCJbqAah+5S3H7APXwnc3AnA1LsHigd1Wadgok=
Subject key identifier: BF:6B:74:E9:22:2A:10:D9:E9:98:EB:88:65:9A:73:62:1F:22:DB:79
Certificate issuer: /CN=F369C3F1AF/serialNumber=2062AC1C1857EE2C57F7166B9800ED1F8F79D971
Certificate serial: 0A
Authority key identifier: 20:62:AC:1C:18:57:EE:2C:57:F7:16:6B:98:00:ED:1F:8F:79:D9:71
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/IGKsHBhX7ixX9xZrmADtH4952XE.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F369C3F1/F4BE55A06C3F11EF95D9E89B762E951A/730CF53E6F7811EFB7469458762E951A.roa
Signing time: Tue 10 Sep 2024 13:27:39 +0000
ROA not before: Tue 10 Sep 2024 13:27:35 +0000
ROA not after: Tue 31 Dec 2030 13:27:35 +0000
asID: 328310
IP address blocks: 102.164.244.0/22 maxlen: 22
102.164.244.0/23 maxlen: 23
102.164.244.0/24 maxlen: 24
102.164.245.0/24 maxlen: 24
102.164.246.0/23 maxlen: 23
102.164.246.0/24 maxlen: 24
102.164.247.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F369C3F1/F4BE55A06C3F11EF95D9E89B762E951A/IGKsHBhX7ixX9xZrmADtH4952XE.crl
rsync://rpki.afrinic.net/repository/member_repository/F369C3F1/F4BE55A06C3F11EF95D9E89B762E951A/IGKsHBhX7ixX9xZrmADtH4952XE.mft
rsync://rpki.afrinic.net/repository/afrinic/IGKsHBhX7ixX9xZrmADtH4952XE.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 26 Oct 2024 00:05:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10 (0xa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F369C3F1AF/serialNumber=2062AC1C1857EE2C57F7166B9800ED1F8F79D971
Validity
Not Before: Sep 10 13:27:35 2024 GMT
Not After : Dec 31 13:27:35 2030 GMT
Subject: CN=66e0494b-5612
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:08:3c:c3:9f:8d:c1:e8:8f:12:d1:b7:59:fb:
59:d4:de:cc:8b:4a:24:2e:26:62:c3:5e:8f:81:63:
61:fc:d2:73:1e:d2:79:53:d3:33:18:d9:58:6a:24:
44:bc:50:95:36:11:7b:61:b6:87:26:8c:f5:13:c6:
91:9f:f9:b0:06:3b:27:83:a8:e0:c3:a6:9c:4b:68:
28:65:39:8d:da:e8:1d:39:78:a1:59:bb:89:e2:87:
0a:b7:44:fe:b9:08:7a:dc:93:d9:5a:22:22:cb:3e:
ce:98:95:cf:0c:95:ed:2c:ba:d7:e0:15:b9:bb:b3:
d1:58:3d:72:1a:d0:fd:b6:11:44:32:09:c6:d4:b3:
69:22:6d:92:3c:44:c7:8b:58:11:71:44:df:46:af:
ba:63:3b:81:a1:e0:5b:d2:a8:09:41:45:6a:03:59:
78:91:b0:e9:e5:57:50:e1:0e:76:5e:de:a1:61:32:
16:ff:a0:d7:50:f4:e9:91:ba:74:a5:c5:0b:48:eb:
31:cd:21:d3:44:7b:dd:16:22:e5:23:45:f9:f1:9e:
79:7c:36:0d:d4:7f:b0:e7:13:94:b4:7f:4e:1b:5a:
85:d6:c5:55:2b:73:36:5d:bf:c3:87:4c:55:48:b8:
b5:d2:23:e8:6e:c0:b1:48:cf:f1:71:9c:d9:61:17:
4d:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:6B:74:E9:22:2A:10:D9:E9:98:EB:88:65:9A:73:62:1F:22:DB:79
X509v3 Authority Key Identifier:
keyid:20:62:AC:1C:18:57:EE:2C:57:F7:16:6B:98:00:ED:1F:8F:79:D9:71
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F369C3F1/F4BE55A06C3F11EF95D9E89B762E951A/IGKsHBhX7ixX9xZrmADtH4952XE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/IGKsHBhX7ixX9xZrmADtH4952XE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F369C3F1/F4BE55A06C3F11EF95D9E89B762E951A/730CF53E6F7811EFB7469458762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.164.244.0/22
Signature Algorithm: sha256WithRSAEncryption
75:ec:0f:c3:ae:1e:18:5b:39:fb:a7:59:56:73:a9:f8:d5:24:
ff:c7:3f:80:fe:b2:77:20:ac:38:ff:bb:95:da:29:6a:a5:7f:
11:1f:4b:d5:c4:a8:5a:8b:0d:4a:43:c6:1b:0a:cc:8d:3a:db:
b8:ab:34:8d:39:c0:41:e0:7c:8a:ad:c6:d6:b6:1b:e9:3e:37:
f7:0f:5f:c3:b8:02:3f:e0:48:5f:03:c8:a2:c0:9c:bd:bf:25:
fc:d6:56:11:81:aa:d1:e3:f0:5e:f8:15:07:d2:b7:af:e1:2c:
00:44:a6:9b:cf:df:9f:b6:1a:09:e7:2d:81:a0:47:e9:bc:e0:
f8:8c:af:27:1c:00:d4:df:56:81:f5:af:ba:a3:3b:df:69:20:
69:4b:e6:78:95:b8:85:e0:8e:40:f3:91:8b:53:a8:fd:f5:91:
89:62:1b:dc:28:81:c0:9f:4c:6e:de:2f:92:38:75:06:77:57:
52:14:00:b9:c1:d8:cd:89:3d:c6:3f:e4:a8:1c:4e:b6:69:ae:
ca:3a:2c:b2:6f:7b:65:67:b1:64:66:f2:33:02:87:19:62:31:
c7:ab:d5:21:44:e8:4d:d4:60:e0:12:1c:b5:23:31:b2:3d:29:
d7:92:23:71:ce:9e:34:cb:7e:3a:07:1a:f9:b9:83:a1:fd:df:
9c:08:7b:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Oct 24 07:10:23 2024 by rpki-client on console-ams.rpki-client.org