Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36A05AB/98015F36DBF311EBAE6FAD33F8AEA228/4E6BBD02DBF411EBBD1CB334F8AEA228.roa
File: 4E6BBD02DBF411EBBD1CB334F8AEA228.roa (raw, json)
Hash identifier: /m66F8lyHu8eSfVoSMkwDMFHVEqCkE2FHy0314I43Lc=
Subject key identifier: 47:10:E5:F1:B1:65:CD:84:3F:BD:D8:EE:1E:F3:C3:F3:4F:E3:F3:39
Certificate issuer: /CN=F36A05ABAF/serialNumber=9D674DAA1D31E6B7123C649481D114FA93BDED1F
Certificate serial: 02
Authority key identifier: 9D:67:4D:AA:1D:31:E6:B7:12:3C:64:94:81:D1:14:FA:93:BD:ED:1F
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/nWdNqh0x5rcSPGSUgdEU-pO97R8.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36A05AB/98015F36DBF311EBAE6FAD33F8AEA228/4E6BBD02DBF411EBBD1CB334F8AEA228.roa
Signing time: Sat 03 Jul 2021 11:46:30 +0000
ROA not before: Sat 03 Jul 2021 11:46:23 +0000
ROA not after: Thu 31 Jul 2031 11:46:23 +0000
asID: 328870
IP address blocks: 102.219.108.0/22 maxlen: 24
2c0f:4900::/32 maxlen: 48
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36A05AB/98015F36DBF311EBAE6FAD33F8AEA228/nWdNqh0x5rcSPGSUgdEU-pO97R8.crl
rsync://rpki.afrinic.net/repository/member_repository/F36A05AB/98015F36DBF311EBAE6FAD33F8AEA228/nWdNqh0x5rcSPGSUgdEU-pO97R8.mft
rsync://rpki.afrinic.net/repository/afrinic/nWdNqh0x5rcSPGSUgdEU-pO97R8.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 04 May 2024 00:58:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2 (0x2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36A05ABAF/serialNumber=9D674DAA1D31E6B7123C649481D114FA93BDED1F
Validity
Not Before: Jul 3 11:46:23 2021 GMT
Not After : Jul 31 11:46:23 2031 GMT
Subject: CN=60e04e16-0653
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:f7:f5:52:1d:d7:b0:62:c6:73:33:5c:8e:8f:
98:15:c6:af:75:89:0b:b4:94:1c:27:9e:44:6e:a6:
ab:0d:86:03:c4:08:d6:90:d4:6e:b8:d2:9e:65:8f:
c0:35:81:b7:41:0b:c6:c5:e2:c6:21:05:07:ff:f1:
b2:3f:9c:01:f4:5c:2c:87:78:62:59:c6:ad:8e:87:
88:9e:43:90:f6:bf:fd:0d:7c:fa:72:d4:8e:3e:e7:
d8:2e:62:29:df:fd:2e:6e:6b:53:d1:ca:21:09:b1:
49:20:cd:ea:7b:52:a4:e0:be:38:23:68:7b:35:80:
78:f2:d9:87:a3:fe:f6:aa:aa:66:f7:d0:0c:dc:3a:
c8:2d:e0:84:c1:aa:d2:82:06:c1:95:0a:9e:2a:e0:
f8:26:40:ce:3d:fc:3e:e4:a5:41:d4:f6:06:30:4b:
9e:b9:6d:a6:9e:6b:a9:fb:65:0e:63:b1:20:1d:71:
6b:7b:01:78:2e:bc:f1:c9:28:69:38:52:f0:7b:eb:
f7:94:46:2d:a2:8a:f7:51:58:2c:3c:fc:64:e8:c6:
ef:ff:b2:a1:a6:25:bd:3b:3a:be:34:22:e1:4b:9b:
ac:b2:7d:48:e9:ad:9b:80:2a:53:80:e6:44:a4:d4:
2f:f1:59:be:0b:0f:6c:78:16:dc:a3:79:3c:56:e6:
53:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:10:E5:F1:B1:65:CD:84:3F:BD:D8:EE:1E:F3:C3:F3:4F:E3:F3:39
X509v3 Authority Key Identifier:
keyid:9D:67:4D:AA:1D:31:E6:B7:12:3C:64:94:81:D1:14:FA:93:BD:ED:1F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36A05AB/98015F36DBF311EBAE6FAD33F8AEA228/nWdNqh0x5rcSPGSUgdEU-pO97R8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/nWdNqh0x5rcSPGSUgdEU-pO97R8.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36A05AB/98015F36DBF311EBAE6FAD33F8AEA228/4E6BBD02DBF411EBBD1CB334F8AEA228.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.219.108.0/22
IPv6:
2c0f:4900::/32
Signature Algorithm: sha256WithRSAEncryption
2c:2d:f2:a4:db:64:93:d4:77:30:37:61:79:73:a1:ed:01:00:
b3:2f:52:5e:e3:95:2b:16:01:11:a6:01:e5:b8:5a:67:24:a9:
cc:27:fe:37:1b:80:6a:1f:6a:5c:ec:25:f4:04:b4:7b:60:23:
c5:e8:9c:4a:e4:8e:e4:a1:61:51:4c:65:2c:c0:e2:15:e7:72:
ce:b8:a2:bd:69:71:df:2b:a5:b5:3a:47:56:08:54:36:8f:8d:
2a:07:c4:8a:20:8e:3c:48:3a:ab:c4:8a:e8:0c:17:51:ce:6f:
b2:71:ec:32:00:5b:b5:51:88:dc:80:85:ee:72:39:61:64:e8:
74:91:48:0e:2d:c0:63:a2:b6:e8:e3:05:1f:a3:83:9c:3e:bb:
7a:51:a7:6d:86:6a:e1:8c:19:83:5c:60:cc:4b:0f:b3:99:40:
83:a7:16:b3:64:c4:b1:b4:4d:cc:23:a3:87:b9:fa:3d:fc:a2:
be:2e:b8:5a:da:b0:47:32:be:29:d2:bb:94:4b:a1:76:4a:85:
21:c9:c8:a1:7a:de:22:06:e2:19:68:2b:c4:28:38:d4:72:d8:
6b:20:94:84:45:61:51:d9:bb:21:37:96:0c:cb:23:a0:56:50:
8b:ef:b9:c0:9c:82:c7:b6:2f:a0:0a:dd:08:9a:98:05:bd:9e:
f2:c3:ca:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 2 04:04:24 2024 by rpki-client on console-fra.rpki-client.org