Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36A1CEF/7F388DE4F13811EB917FD717D8A014CE/3D6F6E96F37711EBAC8D9D1AD8A014CE.roa
File: 3D6F6E96F37711EBAC8D9D1AD8A014CE.roa (raw, json)
Hash identifier: 9VXniEQa7EvwyuNK+E+0ZuAUlWwrOJps+Bu2VlcENpI=
Subject key identifier: 95:A5:3A:79:E9:D4:79:28:63:B9:12:0B:AD:41:99:58:B8:3F:4F:27
Certificate issuer: /CN=F36A1CEFAF/serialNumber=82F1C6611A3A1467DB3D78A4A5FED50A08A57B13
Certificate serial: 0B
Authority key identifier: 82:F1:C6:61:1A:3A:14:67:DB:3D:78:A4:A5:FE:D5:0A:08:A5:7B:13
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/gvHGYRo6FGfbPXikpf7VCgilexM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36A1CEF/7F388DE4F13811EB917FD717D8A014CE/3D6F6E96F37711EBAC8D9D1AD8A014CE.roa
Signing time: Mon 02 Aug 2021 09:52:09 +0000
ROA not before: Mon 02 Aug 2021 09:52:04 +0000
ROA not after: Sat 02 Aug 2031 09:52:04 +0000
asID: 37645
IP address blocks: 102.219.184.0/22 maxlen: 22
102.220.192.0/22 maxlen: 22
102.221.108.0/22 maxlen: 22
102.221.172.0/22 maxlen: 22
154.66.104.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36A1CEF/7F388DE4F13811EB917FD717D8A014CE/gvHGYRo6FGfbPXikpf7VCgilexM.crl
rsync://rpki.afrinic.net/repository/member_repository/F36A1CEF/7F388DE4F13811EB917FD717D8A014CE/gvHGYRo6FGfbPXikpf7VCgilexM.mft
rsync://rpki.afrinic.net/repository/afrinic/gvHGYRo6FGfbPXikpf7VCgilexM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 21 May 2024 00:04:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 11 (0xb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36A1CEFAF/serialNumber=82F1C6611A3A1467DB3D78A4A5FED50A08A57B13
Validity
Not Before: Aug 2 09:52:04 2021 GMT
Not After : Aug 2 09:52:04 2031 GMT
Subject: CN=6107c049-2b30
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:da:6e:67:77:2d:17:17:c4:f6:e0:89:dc:02:
3a:ea:79:ab:cf:e2:06:46:b9:7a:26:89:b3:a4:2d:
6f:eb:a8:c8:f5:7b:41:c2:37:a5:77:9c:ff:a1:05:
67:8b:aa:82:8e:a8:29:19:ed:30:93:9b:47:7e:93:
85:13:68:11:4f:c8:69:4e:fa:b7:3a:97:ae:ea:de:
3b:89:b3:f9:b6:f2:fb:3e:c6:98:9f:f2:20:10:45:
6c:39:71:ea:94:7c:4b:30:a3:6f:f9:da:ad:cb:19:
da:43:d9:fb:d5:93:86:33:88:8d:d8:5c:6e:2f:1c:
7b:0a:40:bc:d9:fc:47:49:be:6b:aa:32:0b:aa:d2:
f3:58:37:cb:c1:c4:f9:9a:0d:63:bc:96:28:75:b2:
e8:96:b1:10:b4:f7:85:5e:ea:b6:47:79:2c:9e:9d:
28:de:b0:2b:2f:64:a9:7e:a7:89:ca:c1:55:26:1c:
df:b5:1c:0a:0c:62:d2:65:58:94:d0:fa:c3:03:79:
46:22:7e:ed:d1:8e:f6:15:19:97:48:f7:2e:6e:fe:
86:0a:dd:34:c1:08:59:fa:27:dc:78:c1:b6:33:5d:
2b:e4:e0:44:b5:38:e3:51:4a:c7:fc:ea:33:83:d9:
ea:61:48:98:10:f6:ae:bc:1a:a0:6a:fd:c6:c6:ef:
d1:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:A5:3A:79:E9:D4:79:28:63:B9:12:0B:AD:41:99:58:B8:3F:4F:27
X509v3 Authority Key Identifier:
keyid:82:F1:C6:61:1A:3A:14:67:DB:3D:78:A4:A5:FE:D5:0A:08:A5:7B:13
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36A1CEF/7F388DE4F13811EB917FD717D8A014CE/gvHGYRo6FGfbPXikpf7VCgilexM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/gvHGYRo6FGfbPXikpf7VCgilexM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36A1CEF/7F388DE4F13811EB917FD717D8A014CE/3D6F6E96F37711EBAC8D9D1AD8A014CE.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.219.184.0/22
102.220.192.0/22
102.221.108.0/22
102.221.172.0/22
154.66.104.0/22
Signature Algorithm: sha256WithRSAEncryption
0b:12:d0:59:5a:2b:4e:a5:8c:f6:b3:95:55:69:02:08:83:b6:
1c:a6:65:ff:62:af:61:41:1e:82:3d:71:26:c7:a5:ce:3c:26:
39:5a:03:99:76:04:6b:b0:6e:e7:e1:e6:dd:be:25:a0:9b:d3:
80:0b:06:a9:74:a7:89:86:83:b8:63:2e:1e:5d:c2:ab:b5:58:
5e:68:1a:70:01:94:31:81:70:60:03:74:6d:32:80:ab:0b:67:
4e:a7:e5:b5:66:18:ac:f2:4e:87:ea:8d:5f:80:79:de:c5:9c:
e8:12:5a:7f:1d:9f:91:cb:62:04:76:e0:05:7c:c6:74:b3:7d:
18:9f:d7:65:5e:15:88:b2:12:da:20:91:8b:85:b1:17:49:7f:
39:27:d5:e3:0c:88:9c:07:fb:8b:31:8b:29:f5:9c:c3:b8:a7:
bd:6e:f5:9e:62:cc:a7:73:20:c3:2d:5f:3f:7b:84:24:1d:d8:
4c:af:55:71:c0:54:47:fe:49:2e:79:ea:67:5c:d5:28:27:bf:
33:e4:14:52:52:4b:57:3d:04:9e:f6:ec:32:66:60:14:fa:52:
b6:47:13:46:8b:eb:e2:68:5e:28:e2:5d:1d:3e:33:6f:07:e8:
90:c7:b3:c8:f4:af:38:ff:d6:00:49:34:1b:4e:14:f9:7f:6d:
0d:63:21:bb
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Sun May 19 02:58:59 2024 by rpki-client on console-ams.rpki-client.org