Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36A1CEF/7F388DE4F13811EB917FD717D8A014CE/65989AD8BC3311ED9E2B88B5F1222468.roa
File: 65989AD8BC3311ED9E2B88B5F1222468.roa (raw, json)
Hash identifier: xeuVwfGkXyt1z3GydC6wSInWF5cPlZls2ZzQPi+g8P0=
Subject key identifier: E1:14:B1:C2:CC:30:BD:9F:AB:5C:6F:AF:32:10:9E:C5:E8:48:B1:F3
Certificate issuer: /CN=F36A1CEFAF/serialNumber=82F1C6611A3A1467DB3D78A4A5FED50A08A57B13
Certificate serial: 0294
Authority key identifier: 82:F1:C6:61:1A:3A:14:67:DB:3D:78:A4:A5:FE:D5:0A:08:A5:7B:13
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/gvHGYRo6FGfbPXikpf7VCgilexM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36A1CEF/7F388DE4F13811EB917FD717D8A014CE/65989AD8BC3311ED9E2B88B5F1222468.roa
Signing time: Mon 06 Mar 2023 15:27:25 +0000
ROA not before: Mon 06 Mar 2023 15:27:19 +0000
ROA not after: Sun 06 Mar 2033 15:27:19 +0000
asID: 37645
IP address blocks: 102.213.104.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36A1CEF/7F388DE4F13811EB917FD717D8A014CE/gvHGYRo6FGfbPXikpf7VCgilexM.crl
rsync://rpki.afrinic.net/repository/member_repository/F36A1CEF/7F388DE4F13811EB917FD717D8A014CE/gvHGYRo6FGfbPXikpf7VCgilexM.mft
rsync://rpki.afrinic.net/repository/afrinic/gvHGYRo6FGfbPXikpf7VCgilexM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 660 (0x294)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36A1CEFAF/serialNumber=82F1C6611A3A1467DB3D78A4A5FED50A08A57B13
Validity
Not Before: Mar 6 15:27:19 2023 GMT
Not After : Mar 6 15:27:19 2033 GMT
Subject: CN=6406065d-2b02
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:97:06:20:3f:43:b5:a4:ee:dd:2f:e0:c2:3b:
23:26:3c:70:90:a9:b8:5b:b9:1d:20:b0:5b:4e:d2:
c0:de:fd:4b:6a:c9:5d:fe:e5:eb:6a:0a:ff:ca:e6:
c8:65:38:76:ae:3d:bf:ad:c4:7f:48:09:67:26:22:
c1:9d:f6:83:89:aa:ef:f3:70:08:d8:b0:71:a0:07:
99:9b:bb:d1:da:90:c5:42:77:b2:91:92:99:d4:b8:
16:55:80:b6:12:b9:f8:5a:2f:6a:06:8b:f2:28:d1:
95:45:44:34:ad:51:e4:fa:b2:19:b1:52:97:18:8e:
b1:57:35:f1:b5:b8:b3:24:92:6a:6c:1a:7b:69:50:
8f:88:7f:29:0f:43:e7:20:ce:7c:df:91:37:42:ff:
c5:4a:1e:d6:9c:79:23:88:12:b1:e9:b9:7d:1f:af:
a5:4b:b6:c6:6f:92:c2:df:de:e0:56:78:95:2e:aa:
2b:ad:ca:35:1d:05:b8:94:b0:3d:da:d0:b0:93:c8:
f5:0a:af:6f:8e:da:09:fe:58:a9:44:f0:78:b2:e0:
9c:a9:5b:e6:63:95:de:29:8b:02:f6:6e:67:16:33:
7e:03:5e:0b:fd:56:63:92:7f:e5:ef:f0:73:6d:c4:
f1:71:10:a9:d9:08:c0:36:e6:8c:a2:91:31:8b:f4:
f4:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:14:B1:C2:CC:30:BD:9F:AB:5C:6F:AF:32:10:9E:C5:E8:48:B1:F3
X509v3 Authority Key Identifier:
keyid:82:F1:C6:61:1A:3A:14:67:DB:3D:78:A4:A5:FE:D5:0A:08:A5:7B:13
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36A1CEF/7F388DE4F13811EB917FD717D8A014CE/gvHGYRo6FGfbPXikpf7VCgilexM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/gvHGYRo6FGfbPXikpf7VCgilexM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36A1CEF/7F388DE4F13811EB917FD717D8A014CE/65989AD8BC3311ED9E2B88B5F1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.213.104.0/22
Signature Algorithm: sha256WithRSAEncryption
83:cf:dd:98:f1:49:60:0c:5e:76:48:df:1a:e8:51:4b:ef:c6:
d2:d4:4b:df:a7:3e:a9:88:02:22:0c:4e:51:db:18:3e:91:76:
41:03:9e:94:92:ca:95:28:13:47:42:5d:23:04:34:c0:37:6f:
f6:10:60:e8:8c:a4:c1:c8:d5:15:2d:17:94:69:79:dc:1e:09:
0a:c3:9f:5c:6b:62:ef:e1:17:6d:de:cc:76:81:bd:b7:b7:d3:
4f:86:9e:71:c8:76:93:8a:ed:fe:62:2c:12:71:f6:a0:39:41:
61:78:5c:5d:19:39:9e:00:e7:fc:7c:2c:87:c9:f0:2a:24:a3:
a5:d0:28:82:8a:39:1f:33:0f:ce:6f:36:ac:1c:dd:24:62:29:
a0:37:76:1d:c2:aa:f2:57:1d:4e:84:22:5b:e6:30:a1:8e:a1:
8d:fd:e7:c8:d0:5f:34:66:d8:70:2f:fd:bc:f6:59:05:6e:de:
07:a9:a9:9a:64:47:48:17:e3:a4:45:1d:89:3d:ef:eb:ee:09:
2d:c2:e0:eb:50:25:83:6c:d6:a4:39:05:d6:19:a5:c6:e4:8d:
cf:a3:1a:ac:0d:87:73:a4:4b:8e:86:36:1f:13:e7:26:6d:b7:
a9:1a:cb:10:bd:cd:f0:d7:12:52:06:81:0b:1e:42:f1:07:0e:
39:a2:79:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 03:52:57 2024 by rpki-client on console-fra.rpki-client.org