Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36A1CEF/7F388DE4F13811EB917FD717D8A014CE/A398E3A0F13D11EBB63B911FD8A014CE.roa
File: A398E3A0F13D11EBB63B911FD8A014CE.roa (raw, json)
Hash identifier: v/uCWtn5mJZb+o9+Q5aNz15BP+IXm6kUIIRfortJmRE=
Subject key identifier: 5E:EC:74:F3:ED:F2:5D:52:E3:E0:EC:7E:76:B4:2B:6D:A9:F5:2E:6E
Certificate issuer: /CN=F36A1CEFAF/serialNumber=82F1C6611A3A1467DB3D78A4A5FED50A08A57B13
Certificate serial: 05
Authority key identifier: 82:F1:C6:61:1A:3A:14:67:DB:3D:78:A4:A5:FE:D5:0A:08:A5:7B:13
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/gvHGYRo6FGfbPXikpf7VCgilexM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36A1CEF/7F388DE4F13811EB917FD717D8A014CE/A398E3A0F13D11EBB63B911FD8A014CE.roa
Signing time: Fri 30 Jul 2021 13:54:43 +0000
ROA not before: Fri 30 Jul 2021 13:54:38 +0000
ROA not after: Thu 31 Jul 2031 13:54:38 +0000
asID: 37645
IP address blocks: 102.130.192.0/19 maxlen: 21
154.118.192.0/19 maxlen: 21
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36A1CEF/7F388DE4F13811EB917FD717D8A014CE/gvHGYRo6FGfbPXikpf7VCgilexM.crl
rsync://rpki.afrinic.net/repository/member_repository/F36A1CEF/7F388DE4F13811EB917FD717D8A014CE/gvHGYRo6FGfbPXikpf7VCgilexM.mft
rsync://rpki.afrinic.net/repository/afrinic/gvHGYRo6FGfbPXikpf7VCgilexM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5 (0x5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36A1CEFAF/serialNumber=82F1C6611A3A1467DB3D78A4A5FED50A08A57B13
Validity
Not Before: Jul 30 13:54:38 2021 GMT
Not After : Jul 31 13:54:38 2031 GMT
Subject: CN=610404a3-9d5e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:d2:12:61:88:7e:73:ee:3d:f1:f9:44:58:12:
95:ff:fc:d8:a9:d2:40:d2:0c:15:25:90:16:97:95:
0d:02:61:03:a0:4c:0d:5f:3b:b6:07:ed:70:ab:f7:
45:9e:e4:a1:68:7b:7b:5d:ad:b9:45:df:d7:6e:91:
9c:35:e1:62:5b:33:71:22:f9:b2:47:c6:23:da:e9:
0a:6c:22:78:dc:76:cf:2a:0f:57:b0:43:ad:09:1e:
4e:a2:61:17:fd:44:9d:cf:56:c7:97:ab:5e:cf:04:
7f:fc:eb:75:49:5e:1a:06:db:ab:b1:87:73:53:d4:
ff:fa:61:38:df:20:e8:25:c6:fd:05:ba:f7:bd:07:
4d:40:ed:5e:41:bf:b4:6a:57:4a:56:39:49:6e:fc:
49:c8:a7:cb:58:49:9a:c3:b3:f2:a9:97:cd:61:27:
fe:37:e7:f0:1c:a3:45:89:fc:59:ff:00:39:9a:c2:
36:83:60:0b:f1:1d:28:b0:2f:ba:21:10:37:ad:c2:
64:b3:80:34:15:a9:0b:cd:af:e6:e7:e6:2a:a6:e1:
88:b5:e5:a1:fe:b9:9f:ca:7f:66:aa:a0:81:08:20:
3a:81:2e:73:b5:16:5c:20:07:78:a8:47:82:87:41:
f0:e0:f1:09:79:4a:89:9b:6e:5c:2b:c7:39:81:19:
be:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:EC:74:F3:ED:F2:5D:52:E3:E0:EC:7E:76:B4:2B:6D:A9:F5:2E:6E
X509v3 Authority Key Identifier:
keyid:82:F1:C6:61:1A:3A:14:67:DB:3D:78:A4:A5:FE:D5:0A:08:A5:7B:13
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36A1CEF/7F388DE4F13811EB917FD717D8A014CE/gvHGYRo6FGfbPXikpf7VCgilexM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/gvHGYRo6FGfbPXikpf7VCgilexM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36A1CEF/7F388DE4F13811EB917FD717D8A014CE/A398E3A0F13D11EBB63B911FD8A014CE.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.130.192.0/19
154.118.192.0/19
Signature Algorithm: sha256WithRSAEncryption
65:4d:06:36:8e:5c:19:3c:9f:96:a2:01:c8:a2:3c:84:1b:46:
48:23:22:12:2c:bd:1f:6b:af:02:6c:10:ab:e1:4e:c2:c0:ff:
8a:34:cb:35:9f:4a:8d:19:15:1a:40:00:9d:02:af:86:4a:93:
00:2a:1c:8f:96:63:48:7b:08:fa:64:90:70:34:56:e8:fa:a1:
78:ff:44:69:f6:ff:ed:fd:a1:bf:aa:1c:cf:a6:97:e8:10:53:
31:67:f1:eb:40:47:4e:33:54:98:a8:c4:5d:23:06:d0:4c:c5:
82:a6:46:ca:d0:e6:d0:93:4b:db:c1:e7:28:23:9b:67:59:4a:
07:eb:2b:da:fd:4d:4a:f9:d9:8c:99:4b:d0:f0:60:5d:f8:d6:
e5:c7:3a:b4:f0:11:e3:ca:80:51:9f:ab:f4:4b:eb:b9:8b:48:
41:e0:b0:8a:e2:76:7a:e9:e9:3d:65:22:91:f0:01:2a:e3:cf:
7e:6b:c2:c8:26:52:ed:a2:28:17:57:40:ce:f5:6c:36:40:78:
9f:7e:bd:73:7d:11:dc:e4:c6:26:85:41:af:40:99:13:b5:e6:
51:3c:7e:64:2c:e3:e4:7f:c7:36:26:d3:00:6a:13:aa:30:80:
b3:77:41:f1:22:84:9e:e6:1e:3f:f5:5a:14:31:f0:b0:a3:2f:
e7:e5:4d:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 03:52:57 2024 by rpki-client on console-fra.rpki-client.org