Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36A1CEF/7F388DE4F13811EB917FD717D8A014CE/09FAFAEA4FE911EFAC30AC4F762E951A.roa
File: 09FAFAEA4FE911EFAC30AC4F762E951A.roa (raw, json)
Hash identifier: xrcP6Mtrc5qzAh2bF+djzR18bQ7En6DPKHoIPS7kqyo=
Subject key identifier: E4:B2:B2:E7:97:21:94:BD:5E:5F:86:04:41:BC:1C:02:B4:70:BE:34
Certificate issuer: /CN=F36A1CEFAF/serialNumber=82F1C6611A3A1467DB3D78A4A5FED50A08A57B13
Certificate serial: 04C9
Authority key identifier: 82:F1:C6:61:1A:3A:14:67:DB:3D:78:A4:A5:FE:D5:0A:08:A5:7B:13
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/gvHGYRo6FGfbPXikpf7VCgilexM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36A1CEF/7F388DE4F13811EB917FD717D8A014CE/09FAFAEA4FE911EFAC30AC4F762E951A.roa
Signing time: Thu 01 Aug 2024 09:32:59 +0000
ROA not before: Thu 01 Aug 2024 09:32:55 +0000
ROA not after: Mon 01 Aug 2033 09:32:55 +0000
asID: 37645
IP address blocks: 102.208.92.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36A1CEF/7F388DE4F13811EB917FD717D8A014CE/gvHGYRo6FGfbPXikpf7VCgilexM.crl
rsync://rpki.afrinic.net/repository/member_repository/F36A1CEF/7F388DE4F13811EB917FD717D8A014CE/gvHGYRo6FGfbPXikpf7VCgilexM.mft
rsync://rpki.afrinic.net/repository/afrinic/gvHGYRo6FGfbPXikpf7VCgilexM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1225 (0x4c9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36A1CEFAF/serialNumber=82F1C6611A3A1467DB3D78A4A5FED50A08A57B13
Validity
Not Before: Aug 1 09:32:55 2024 GMT
Not After : Aug 1 09:32:55 2033 GMT
Subject: CN=66ab564a-0077
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:44:52:2d:69:f5:33:8f:98:5e:dd:b9:58:1d:
24:e2:d3:92:91:b4:a5:b1:9f:7d:57:ce:02:3f:bf:
db:1c:69:93:45:3d:f9:5f:c3:9a:5b:f5:76:be:ed:
de:cc:0c:25:4a:74:f9:b7:6f:53:99:ec:a8:e7:8f:
3a:fe:34:4f:7b:33:54:6d:6d:2e:a2:73:bc:f9:00:
74:2a:7f:39:6a:85:45:30:57:ca:5f:ea:6f:0e:d2:
c6:98:f3:31:ad:b5:03:c9:47:4d:1d:e4:2d:96:1d:
6e:3b:ab:f7:c0:ba:04:8f:ed:55:89:70:18:12:6c:
41:66:c6:e8:89:c9:a4:5a:be:a7:92:15:13:d3:bf:
fa:5c:a7:44:72:63:80:09:66:b4:28:31:e2:97:4e:
ed:69:4e:2f:51:2c:c4:4b:69:d1:28:4d:a6:33:10:
b1:78:ea:b5:51:14:c0:4e:c9:b0:e9:f6:c7:75:ae:
08:29:4f:13:c6:9a:4e:46:2c:87:96:14:bb:47:ea:
16:e3:d5:82:52:07:4d:66:75:45:46:3a:7d:c0:45:
3f:d4:75:58:41:fb:98:51:d0:df:96:a5:90:60:5b:
f4:86:5b:0b:ff:63:f6:2f:d0:eb:d7:6f:86:76:ca:
31:bd:54:72:e5:4f:d8:eb:75:00:84:d5:47:dd:d1:
35:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:B2:B2:E7:97:21:94:BD:5E:5F:86:04:41:BC:1C:02:B4:70:BE:34
X509v3 Authority Key Identifier:
keyid:82:F1:C6:61:1A:3A:14:67:DB:3D:78:A4:A5:FE:D5:0A:08:A5:7B:13
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36A1CEF/7F388DE4F13811EB917FD717D8A014CE/gvHGYRo6FGfbPXikpf7VCgilexM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/gvHGYRo6FGfbPXikpf7VCgilexM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36A1CEF/7F388DE4F13811EB917FD717D8A014CE/09FAFAEA4FE911EFAC30AC4F762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.208.92.0/22
Signature Algorithm: sha256WithRSAEncryption
09:e3:7a:71:e1:68:3f:76:28:77:97:53:2b:2a:9a:57:b1:7b:
21:f9:b7:d8:4a:7d:45:35:db:7c:46:71:5e:e3:a1:f2:c3:b4:
a8:e4:c7:b6:ca:e7:e0:15:89:a5:fc:46:d3:49:a4:84:20:e7:
a4:5b:e9:29:61:9f:bd:04:9f:07:5a:af:a7:f2:15:73:a0:a2:
64:52:5c:0f:11:49:bb:d8:dc:58:57:6a:0e:b9:67:ec:af:b6:
41:83:1f:96:17:14:77:ab:65:b0:7d:9f:87:f5:62:50:d9:15:
a3:9f:8c:84:fa:6c:a8:de:45:5f:73:fa:87:61:fc:4d:f2:d5:
61:68:cf:7e:94:bd:e9:97:35:da:a5:9b:a6:2e:e7:ce:6e:02:
44:7d:6e:e7:2d:9d:81:8a:a7:fd:da:a5:48:6f:33:c9:8f:b5:
a3:33:14:25:99:08:b7:56:de:a3:f5:25:ad:ba:5c:2d:8e:51:
4e:c9:f4:ff:03:f7:01:23:fa:93:25:84:a5:ee:87:d2:29:52:
2b:d8:4c:8f:b4:27:f5:4e:c1:e5:82:70:65:55:54:3e:dc:81:
ac:86:d4:4f:7c:66:10:84:0f:d0:e3:cd:4a:af:b5:9c:4f:ee:
83:f2:ea:bd:6c:f1:b8:8c:cb:11:e6:ef:91:42:ad:02:ca:ed:
ba:b9:79:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:05:18 2024 by rpki-client on console-ams.rpki-client.org