Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36B6125/644C95C4B42111EB9E897D5FF8AEA228/7F4B6F3A584D11EEA686024F4AD9E6FC.roa
File: 7F4B6F3A584D11EEA686024F4AD9E6FC.roa (raw, json)
Hash identifier: gBNHhgUjU4LCVHRXmohrMyDf+FfyKvFmbeum44PBlv0=
Subject key identifier: 45:29:4F:77:4D:FF:29:7F:F8:E4:B5:C3:0B:AA:1A:94:6A:9D:7E:FA
Certificate issuer: /CN=F36B6125AF/serialNumber=C2EBCC98F3E8E3290A9AF32F9EA8D82AC7AF1FCA
Certificate serial: 038D
Authority key identifier: C2:EB:CC:98:F3:E8:E3:29:0A:9A:F3:2F:9E:A8:D8:2A:C7:AF:1F:CA
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/wuvMmPPo4ykKmvMvnqjYKsevH8o.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36B6125/644C95C4B42111EB9E897D5FF8AEA228/7F4B6F3A584D11EEA686024F4AD9E6FC.roa
Signing time: Thu 21 Sep 2023 07:07:17 +0000
ROA not before: Thu 21 Sep 2023 07:07:13 +0000
ROA not after: Sat 21 Sep 2030 07:07:13 +0000
asID: 328576
IP address blocks: 102.22.240.0/21 maxlen: 24
102.218.156.0/22 maxlen: 24
102.219.60.0/22 maxlen: 24
102.220.60.0/23 maxlen: 24
102.221.200.0/22 maxlen: 24
2c0f:eb48::/32 maxlen: 64
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36B6125/644C95C4B42111EB9E897D5FF8AEA228/wuvMmPPo4ykKmvMvnqjYKsevH8o.crl
rsync://rpki.afrinic.net/repository/member_repository/F36B6125/644C95C4B42111EB9E897D5FF8AEA228/wuvMmPPo4ykKmvMvnqjYKsevH8o.mft
rsync://rpki.afrinic.net/repository/afrinic/wuvMmPPo4ykKmvMvnqjYKsevH8o.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 909 (0x38d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36B6125AF/serialNumber=C2EBCC98F3E8E3290A9AF32F9EA8D82AC7AF1FCA
Validity
Not Before: Sep 21 07:07:13 2023 GMT
Not After : Sep 21 07:07:13 2030 GMT
Subject: CN=650beba5-d4a7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:17:8e:b2:cd:3a:35:21:71:88:ce:c1:9f:98:
76:82:39:d2:44:79:02:c6:35:9a:a2:55:87:14:3e:
ad:b8:9f:e4:61:f8:d7:ea:84:1f:e0:d3:d9:e3:65:
e8:de:bc:2b:6f:9e:50:78:1c:64:fd:36:64:c5:9f:
4b:54:ff:34:dc:39:f8:90:56:71:27:60:33:3f:1c:
96:2b:97:3d:e6:05:9c:8e:bc:c0:98:a4:ab:59:df:
01:fd:e1:4d:d2:58:a1:a1:fc:eb:bf:4b:de:9b:4c:
30:b1:e8:27:4b:44:71:9b:6b:1d:7a:59:a1:bf:97:
e6:3f:7b:98:97:f4:de:78:a1:cb:83:93:41:ee:d9:
91:c0:1d:38:99:d8:a7:b2:c0:f5:85:25:53:ac:67:
34:9b:bf:42:0c:f5:fb:2b:63:19:ac:fa:95:fd:f4:
17:6a:b4:54:14:17:a8:37:3c:68:61:35:1d:42:c8:
24:91:55:a3:87:81:09:eb:90:be:58:22:35:8e:64:
71:ac:1c:fc:0f:ca:36:4e:61:2e:27:86:34:3c:27:
ce:50:cb:1b:57:75:f9:fa:25:4a:f4:11:08:ae:26:
ab:e4:0c:2d:ab:6b:05:0a:2e:9e:58:61:a7:1d:43:
21:65:c8:df:18:47:07:6e:fa:da:fe:ff:17:5f:83:
f4:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:29:4F:77:4D:FF:29:7F:F8:E4:B5:C3:0B:AA:1A:94:6A:9D:7E:FA
X509v3 Authority Key Identifier:
keyid:C2:EB:CC:98:F3:E8:E3:29:0A:9A:F3:2F:9E:A8:D8:2A:C7:AF:1F:CA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36B6125/644C95C4B42111EB9E897D5FF8AEA228/wuvMmPPo4ykKmvMvnqjYKsevH8o.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/wuvMmPPo4ykKmvMvnqjYKsevH8o.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36B6125/644C95C4B42111EB9E897D5FF8AEA228/7F4B6F3A584D11EEA686024F4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.22.240.0/21
102.218.156.0/22
102.219.60.0/22
102.220.60.0/23
102.221.200.0/22
IPv6:
2c0f:eb48::/32
Signature Algorithm: sha256WithRSAEncryption
5f:ca:33:79:94:ad:05:b4:0d:47:8b:4e:4a:f8:f5:d9:58:77:
10:87:2a:f8:ad:c5:07:24:2d:76:31:ff:76:2e:c6:b0:e6:e6:
6d:b6:a7:d9:21:22:23:e8:f5:2d:d4:43:b6:bc:cf:d5:04:f3:
bd:4f:72:f2:2d:24:a4:11:71:31:58:a8:95:5c:6a:8d:c2:24:
4c:be:e3:f4:b3:b3:b4:2a:88:d8:38:9d:c9:98:90:40:5a:9c:
c7:ea:1c:a5:e9:61:90:42:51:5c:81:89:9e:51:f6:39:cc:92:
4e:1f:cf:61:b6:fe:cb:ed:09:1d:90:d6:eb:47:6d:2f:9e:68:
a4:e2:98:ed:35:71:91:65:2a:35:6c:22:ea:af:b0:e1:45:28:
a8:10:38:e3:cd:a6:c0:4b:74:59:32:23:2e:35:a7:d6:01:56:
7e:3b:2f:63:ad:ba:1d:9a:21:02:63:c7:85:b9:ee:a4:a2:bc:
9e:e2:3e:97:fe:27:5c:e6:36:7e:e7:c8:7d:91:a1:6e:a2:27:
6d:cb:5f:8c:14:70:8f:3f:bd:ea:63:f1:bb:6c:0b:c6:65:f8:
b4:d9:42:09:17:01:3e:04:f1:26:bc:47:c8:3a:3f:7b:4a:27:
a8:dc:66:fb:c6:eb:e5:72:c5:17:52:eb:9c:3e:74:ef:74:68:
fe:d9:9e:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:05:21 2024 by rpki-client on console-ams.rpki-client.org