Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36C3523/08A8A39C177D11EC98ABEC14D8A014CE/FCF10AB0177E11EC84E7E317D8A014CE.roa
File: FCF10AB0177E11EC84E7E317D8A014CE.roa (raw, json)
Hash identifier: HPeV5JmUdMTQYeBgBaFOsrkpgeUYi5t/R0s6LNiDl1A=
Subject key identifier: C8:90:D7:82:A5:40:42:A3:5E:9B:8A:F9:72:8C:B3:65:53:55:91:11
Certificate issuer: /CN=F36C3523AF/serialNumber=49D6C8E6EF7CDC1E97751EF3911D6508B60C229F
Certificate serial: 02
Authority key identifier: 49:D6:C8:E6:EF:7C:DC:1E:97:75:1E:F3:91:1D:65:08:B6:0C:22:9F
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/SdbI5u983B6XdR7zkR1lCLYMIp8.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36C3523/08A8A39C177D11EC98ABEC14D8A014CE/FCF10AB0177E11EC84E7E317D8A014CE.roa
Signing time: Fri 17 Sep 2021 06:17:52 +0000
ROA not before: Fri 17 Sep 2021 06:17:47 +0000
ROA not after: Thu 31 Dec 2037 06:17:47 +0000
asID: 60171
IP address blocks: 102.219.44.0/22 maxlen: 24
2c0f:5900::/32 maxlen: 48
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36C3523/08A8A39C177D11EC98ABEC14D8A014CE/SdbI5u983B6XdR7zkR1lCLYMIp8.crl
rsync://rpki.afrinic.net/repository/member_repository/F36C3523/08A8A39C177D11EC98ABEC14D8A014CE/SdbI5u983B6XdR7zkR1lCLYMIp8.mft
rsync://rpki.afrinic.net/repository/afrinic/SdbI5u983B6XdR7zkR1lCLYMIp8.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2 (0x2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36C3523AF/serialNumber=49D6C8E6EF7CDC1E97751EF3911D6508B60C229F
Validity
Not Before: Sep 17 06:17:47 2021 GMT
Not After : Dec 31 06:17:47 2037 GMT
Subject: CN=61443310-6ee5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:4c:04:cc:a3:c2:9a:20:38:9f:13:d5:86:c5:
80:94:46:2d:36:68:c2:44:5e:9f:a9:ed:29:80:a9:
58:48:dd:17:3b:ae:50:d1:30:c8:8b:de:1a:f3:66:
4e:ac:11:e5:87:d1:13:5d:0c:d5:5c:93:60:a2:1f:
bd:15:44:20:77:1c:6b:69:1c:a9:b0:9d:d4:74:f1:
c5:8e:5d:20:56:34:9c:f0:70:d7:72:d0:45:d6:33:
4a:18:68:f0:5b:74:e2:5b:73:08:88:42:c9:6b:b5:
91:3d:f8:c0:26:05:5f:19:a1:0f:54:68:60:63:32:
35:7b:43:78:7a:c7:07:c1:a1:a2:69:de:8a:27:73:
8e:c7:50:e6:e5:e5:f7:36:2d:53:ea:0b:3f:70:5b:
b8:47:be:7f:07:8c:0d:f2:4f:f2:5d:92:d5:8e:98:
ae:12:e4:74:ca:0b:f5:c4:30:e9:5b:14:14:76:82:
07:70:be:19:be:1e:37:7b:71:44:34:b3:30:ce:1b:
bc:a5:25:d3:ce:8b:d9:8e:1d:f0:52:92:8e:c3:4a:
c9:3a:28:75:1a:ec:54:96:19:c1:61:6c:ff:a4:4b:
94:54:22:3e:5f:f0:7d:78:44:59:22:23:18:a8:01:
c3:dc:1d:bd:1a:3b:3f:52:31:53:2a:96:11:b6:43:
26:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:90:D7:82:A5:40:42:A3:5E:9B:8A:F9:72:8C:B3:65:53:55:91:11
X509v3 Authority Key Identifier:
keyid:49:D6:C8:E6:EF:7C:DC:1E:97:75:1E:F3:91:1D:65:08:B6:0C:22:9F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36C3523/08A8A39C177D11EC98ABEC14D8A014CE/SdbI5u983B6XdR7zkR1lCLYMIp8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/SdbI5u983B6XdR7zkR1lCLYMIp8.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36C3523/08A8A39C177D11EC98ABEC14D8A014CE/FCF10AB0177E11EC84E7E317D8A014CE.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.219.44.0/22
IPv6:
2c0f:5900::/32
Signature Algorithm: sha256WithRSAEncryption
1c:2e:98:e0:13:b5:22:3c:4f:1b:8b:b3:bf:5f:44:36:cf:ef:
ad:ca:51:15:ba:ae:6f:12:98:84:1d:62:1c:1c:65:2c:3a:a2:
5d:4d:f4:eb:3d:9f:66:78:fb:43:bc:70:58:f6:24:b2:1f:d4:
08:f4:50:bc:cb:69:0c:ae:ae:50:6e:5b:93:ae:2a:83:d2:c9:
26:2e:3a:08:7a:b8:fd:43:24:32:a5:9a:a0:5d:f7:0d:aa:b3:
a9:b1:e8:9d:58:75:89:1f:05:2a:3e:c6:52:8c:c0:a8:39:18:
60:40:e1:50:bb:1e:76:85:43:e6:22:37:99:62:a7:6c:48:80:
7b:2d:b1:56:09:a7:c3:af:db:4c:fd:b3:9a:f9:a5:cd:5f:39:
85:eb:36:93:b7:4b:12:19:09:77:ae:8a:f3:b1:b3:bd:a5:7f:
2d:75:56:a4:cc:04:68:58:57:37:d9:35:48:49:a7:e9:29:1a:
83:1a:2e:e5:0d:cd:c7:90:24:2d:af:33:34:93:db:54:94:77:
0e:55:c1:c4:6c:de:99:c2:ac:54:6e:a8:3f:e2:31:68:49:82:
b2:63:b2:da:bb:fb:9f:7d:1f:54:85:1f:49:ee:7d:99:20:df:
2e:3b:9e:fb:35:c5:a9:86:5f:a8:d9:39:89:f2:d7:01:eb:8e:
c7:58:d9:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:05:23 2024 by rpki-client on console-ams.rpki-client.org