Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36AA788/ACDA0636301D11ED92C97595F1222468/E3F54648303711ED9A084DD9F1222468.roa
File: E3F54648303711ED9A084DD9F1222468.roa (raw, json)
Hash identifier: gFeaumPVCdd6tZ5UsCnpNw/LwtGf891vKHW1FGcYpBY=
Subject key identifier: BB:85:AD:F0:0B:C5:1B:E6:D2:E6:44:5A:C0:54:BD:E9:31:1E:B3:BE
Certificate issuer: /CN=F36AA788AF/serialNumber=67C82EB3A2B1DAB73991FA23A128A251752F3352
Certificate serial: 02
Authority key identifier: 67:C8:2E:B3:A2:B1:DA:B7:39:91:FA:23:A1:28:A2:51:75:2F:33:52
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/Z8gus6Kx2rc5kfojoSiiUXUvM1I.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36AA788/ACDA0636301D11ED92C97595F1222468/E3F54648303711ED9A084DD9F1222468.roa
Signing time: Fri 09 Sep 2022 12:06:53 +0000
ROA not before: Fri 09 Sep 2022 12:06:48 +0000
ROA not after: Tue 01 Sep 2026 12:06:48 +0000
asID: 328730
IP address blocks: 102.221.196.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36AA788/ACDA0636301D11ED92C97595F1222468/Z8gus6Kx2rc5kfojoSiiUXUvM1I.crl
rsync://rpki.afrinic.net/repository/member_repository/F36AA788/ACDA0636301D11ED92C97595F1222468/Z8gus6Kx2rc5kfojoSiiUXUvM1I.mft
rsync://rpki.afrinic.net/repository/afrinic/Z8gus6Kx2rc5kfojoSiiUXUvM1I.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 20 Jun 2024 00:05:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2 (0x2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36AA788AF/serialNumber=67C82EB3A2B1DAB73991FA23A128A251752F3352
Validity
Not Before: Sep 9 12:06:48 2022 GMT
Not After : Sep 1 12:06:48 2026 GMT
Subject: CN=631b2c5c-4707
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:cb:d0:7a:c3:5b:76:4f:0a:63:14:43:ee:56:
b3:ea:02:65:5a:8f:5d:23:41:a3:ef:36:df:ae:51:
dd:a0:c0:4c:03:42:f9:0e:52:0a:0c:9e:0c:0b:39:
dc:ab:9b:d0:8e:04:04:98:93:5d:2a:1b:a0:a3:50:
b2:7d:a4:59:e5:d8:c4:15:22:91:12:6e:d7:4b:18:
9c:ef:77:4c:ab:7e:d3:9a:67:78:06:b5:03:8c:7c:
66:f4:31:6f:7c:8f:29:8a:0a:66:a9:48:bb:6d:f6:
69:89:8e:f7:b1:07:cd:99:87:f2:bc:83:31:e9:2d:
81:d6:55:e2:46:c2:a8:81:7a:04:26:f4:bd:f4:25:
99:a6:74:ed:c3:fe:fc:ee:62:96:b6:b4:23:a2:c2:
83:9b:ef:a7:fa:c4:8a:59:8a:83:06:8b:0f:c4:fe:
f3:37:51:90:fd:03:20:9d:8e:4a:35:7b:e5:92:d7:
b9:de:b5:de:bc:90:40:00:2d:e7:53:39:e6:51:14:
23:44:24:e6:48:1a:10:b3:b6:f8:69:fa:22:12:a0:
46:75:a7:26:00:da:dc:af:24:b9:ae:9d:9e:fa:4e:
c4:02:66:7e:ab:09:de:cd:78:e8:d5:6c:b6:05:19:
92:1d:06:f0:1d:22:36:18:6c:e8:cd:65:73:3e:57:
08:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:85:AD:F0:0B:C5:1B:E6:D2:E6:44:5A:C0:54:BD:E9:31:1E:B3:BE
X509v3 Authority Key Identifier:
keyid:67:C8:2E:B3:A2:B1:DA:B7:39:91:FA:23:A1:28:A2:51:75:2F:33:52
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36AA788/ACDA0636301D11ED92C97595F1222468/Z8gus6Kx2rc5kfojoSiiUXUvM1I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/Z8gus6Kx2rc5kfojoSiiUXUvM1I.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36AA788/ACDA0636301D11ED92C97595F1222468/E3F54648303711ED9A084DD9F1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.221.196.0/22
Signature Algorithm: sha256WithRSAEncryption
4f:e6:e7:c6:57:8b:1e:e7:7c:89:cd:b5:a2:a4:8d:13:52:a4:
4d:52:33:81:1f:72:11:00:d8:33:ee:95:af:31:e1:a4:89:5c:
d3:6b:d2:02:ed:4d:25:60:2f:2d:2f:bf:48:08:d6:de:73:b6:
8e:a1:e2:47:77:ae:89:04:9f:8e:18:8d:c4:c9:48:1d:0e:b2:
68:4f:ef:c4:f3:cf:d5:2a:f3:61:90:8c:d9:71:95:49:0b:f8:
0d:11:e7:86:0a:ee:c8:d9:22:73:d7:e5:4a:7b:a1:d0:43:50:
1c:bb:82:02:a9:e8:58:7c:fb:c4:57:99:5f:d0:d7:b3:a7:28:
f0:70:61:74:41:cc:8f:e5:68:ec:a6:2d:f8:89:6f:a6:4f:81:
91:db:33:fe:9e:d5:55:1e:79:ff:89:73:d3:82:04:65:81:b5:
bf:95:ce:02:d7:68:05:16:11:cb:6a:c1:f3:93:cb:76:5f:67:
48:3c:82:17:64:f0:fb:4b:df:5f:a8:7a:4c:44:3b:92:56:af:
5f:60:07:e5:04:49:9c:f2:d5:36:6d:29:b5:f2:60:39:6c:20:
aa:47:14:9e:4a:bc:d3:53:72:56:f4:88:65:f6:ac:dc:0d:47:
1f:43:cf:f6:09:d6:43:36:22:3d:3e:e3:86:c0:b5:ce:04:2d:
8b:16:86:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 18 03:16:23 2024 by rpki-client on console-ams.rpki-client.org