Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36CF917/0D7561E6E27811ECBD71BBD6F1222468/6BA06C1EE2B111EC931E2D89F1222468.roa
File: 6BA06C1EE2B111EC931E2D89F1222468.roa (raw, json)
Hash identifier: fZNBOmiQ6JCl8SXW84BpjObsdJm3QlIppYpN+OKsWmA=
Subject key identifier: AB:A3:E3:B5:B0:8C:E9:85:68:9B:5F:06:A3:07:E1:82:12:BA:2F:D1
Certificate issuer: /CN=F36CF917AF/serialNumber=5A98A11302BA1C49AABC60D502CB750C599107C3
Certificate serial: 04
Authority key identifier: 5A:98:A1:13:02:BA:1C:49:AA:BC:60:D5:02:CB:75:0C:59:91:07:C3
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/WpihEwK6HEmqvGDVAst1DFmRB8M.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36CF917/0D7561E6E27811ECBD71BBD6F1222468/6BA06C1EE2B111EC931E2D89F1222468.roa
Signing time: Thu 02 Jun 2022 20:20:19 +0000
ROA not before: Thu 02 Jun 2022 20:20:13 +0000
ROA not after: Wed 02 Jun 2032 20:20:13 +0000
asID: 37294
IP address blocks: 102.70.0.0/15 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36CF917/0D7561E6E27811ECBD71BBD6F1222468/WpihEwK6HEmqvGDVAst1DFmRB8M.crl
rsync://rpki.afrinic.net/repository/member_repository/F36CF917/0D7561E6E27811ECBD71BBD6F1222468/WpihEwK6HEmqvGDVAst1DFmRB8M.mft
rsync://rpki.afrinic.net/repository/afrinic/WpihEwK6HEmqvGDVAst1DFmRB8M.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 21 May 2024 00:04:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4 (0x4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36CF917AF/serialNumber=5A98A11302BA1C49AABC60D502CB750C599107C3
Validity
Not Before: Jun 2 20:20:13 2022 GMT
Not After : Jun 2 20:20:13 2032 GMT
Subject: CN=62991b82-a4c0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:51:3a:29:06:24:42:6d:bc:6f:15:9d:d8:f9:
48:70:1c:28:fe:0b:75:05:97:da:98:b5:b6:77:57:
f5:b5:d8:fe:29:ce:4b:75:8f:98:d5:d3:55:90:22:
aa:4d:bd:65:68:05:a7:c4:ef:29:fc:d6:17:d6:80:
41:6e:49:90:ea:e5:71:70:c9:04:ed:9d:4b:fe:a5:
fe:37:35:18:07:b9:2c:ae:d0:ad:b7:0a:1f:37:42:
76:0c:1a:41:45:ad:ec:ba:9b:a8:be:c0:06:7e:ca:
0a:73:c8:92:65:43:9b:ad:3d:dd:fe:ae:93:fa:98:
96:59:07:5b:36:c9:a0:68:3b:bd:cc:15:d2:57:68:
be:bf:bc:0b:eb:60:89:fa:55:5f:31:06:c4:51:33:
9a:ca:52:1f:20:99:99:a8:08:4d:59:74:0f:3d:0a:
51:fd:cf:d8:d4:d2:ec:d5:58:1b:e5:71:d0:ed:0c:
69:a4:92:64:51:72:1a:2c:b7:a0:33:5f:2d:e2:0b:
18:62:e5:54:f6:ef:d3:20:07:61:c4:6d:d1:01:20:
b0:56:1e:e7:a8:6a:5b:1d:20:66:a6:62:94:f2:ef:
be:47:58:9d:a5:87:74:82:e1:41:76:be:09:f3:c5:
28:7d:08:10:6e:19:c9:a1:24:42:45:f2:cc:fa:c6:
d1:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:A3:E3:B5:B0:8C:E9:85:68:9B:5F:06:A3:07:E1:82:12:BA:2F:D1
X509v3 Authority Key Identifier:
keyid:5A:98:A1:13:02:BA:1C:49:AA:BC:60:D5:02:CB:75:0C:59:91:07:C3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36CF917/0D7561E6E27811ECBD71BBD6F1222468/WpihEwK6HEmqvGDVAst1DFmRB8M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/WpihEwK6HEmqvGDVAst1DFmRB8M.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36CF917/0D7561E6E27811ECBD71BBD6F1222468/6BA06C1EE2B111EC931E2D89F1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.70.0.0/15
Signature Algorithm: sha256WithRSAEncryption
65:c6:be:cc:cd:83:c4:b7:46:32:eb:14:92:13:7e:69:e0:8b:
09:46:42:7c:32:78:17:5e:01:71:c5:d5:28:6d:53:3a:85:58:
67:96:b6:b2:05:69:0f:99:d5:b8:75:92:fb:5a:88:74:77:b4:
21:89:96:29:54:db:dc:26:1e:29:b6:a1:e2:67:7e:88:20:be:
30:83:9d:52:f7:2a:93:4b:cf:29:4d:4b:70:79:bd:1c:c3:22:
11:0d:24:e1:44:c7:8a:76:1a:c3:44:18:7d:bb:ae:68:fa:96:
b0:81:1e:db:fe:16:18:91:64:f6:5a:1e:a6:e2:19:3d:2f:c0:
4b:11:20:46:f5:18:f4:56:ab:b6:5a:b6:66:b8:bf:e5:44:a5:
9d:69:42:e7:fc:5d:c2:f4:eb:c5:8c:50:89:2c:59:8c:8c:d9:
ba:f7:75:14:7b:59:9a:42:2c:be:84:c7:d6:db:de:5b:57:27:
94:f9:0a:96:5c:04:c1:ff:2f:33:9e:30:cd:c2:39:c7:e6:15:
c8:81:0d:3f:3d:e3:e7:fb:71:99:0d:47:2b:10:0a:d1:f1:27:
50:35:08:60:96:0d:9c:d1:82:1e:64:2a:59:39:a9:88:93:f1:
f0:55:1c:1e:a9:a2:03:99:b7:b5:b7:03:da:2b:0e:8f:3b:bb:
5b:ce:a1:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 19 02:59:01 2024 by rpki-client on console-ams.rpki-client.org