Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36DA3E9/3CBCB97259C011EC9B4364725A40D577/9E7281D859C011ECABCF78735A40D577.roa
File: 9E7281D859C011ECABCF78735A40D577.roa (raw, json)
Hash identifier: PHUzMzWwgkx4aCuhkBW0Ix5d5z4qJ7ikOgJpiyvwmYc=
Subject key identifier: F5:F0:42:5A:8C:BC:5C:5C:89:41:D3:D5:64:34:74:EA:38:97:51:61
Certificate issuer: /CN=F36DA3E9AF/serialNumber=3D2C034F851F3715B2BA4C9C95E5285DAF2EE923
Certificate serial: 02
Authority key identifier: 3D:2C:03:4F:85:1F:37:15:B2:BA:4C:9C:95:E5:28:5D:AF:2E:E9:23
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/PSwDT4UfNxWyukycleUoXa8u6SM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36DA3E9/3CBCB97259C011EC9B4364725A40D577/9E7281D859C011ECABCF78735A40D577.roa
Signing time: Fri 10 Dec 2021 13:53:57 +0000
ROA not before: Fri 10 Dec 2021 13:53:51 +0000
ROA not after: Tue 09 Dec 2031 13:53:51 +0000
asID: 15399
IP address blocks: 102.217.80.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36DA3E9/3CBCB97259C011EC9B4364725A40D577/PSwDT4UfNxWyukycleUoXa8u6SM.crl
rsync://rpki.afrinic.net/repository/member_repository/F36DA3E9/3CBCB97259C011EC9B4364725A40D577/PSwDT4UfNxWyukycleUoXa8u6SM.mft
rsync://rpki.afrinic.net/repository/afrinic/PSwDT4UfNxWyukycleUoXa8u6SM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2 (0x2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36DA3E9AF/serialNumber=3D2C034F851F3715B2BA4C9C95E5285DAF2EE923
Validity
Not Before: Dec 10 13:53:51 2021 GMT
Not After : Dec 9 13:53:51 2031 GMT
Subject: CN=61b35bf5-954e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f9:1c:3d:38:33:65:3a:88:97:79:00:44:53:20:
6a:fd:7f:33:69:4c:64:55:3c:31:52:a2:6d:16:7e:
e8:37:28:6b:e6:53:6c:48:cd:cf:cb:43:68:5c:a2:
32:9f:1e:f8:27:32:b3:e6:d1:54:96:6c:5a:07:f3:
48:4b:da:21:19:79:11:56:c4:04:99:ba:3f:c3:07:
79:14:1c:5d:ae:62:47:86:e4:96:12:92:3a:d3:3f:
0a:d2:27:d1:e2:fa:fe:4b:c9:6b:cb:64:ad:4a:fd:
54:e2:15:f5:e9:36:80:d9:de:0e:32:80:42:ab:b6:
a2:da:f4:eb:1c:ed:3f:52:d5:b8:00:07:c4:8c:f4:
26:40:33:56:b0:dd:be:71:56:73:0d:b4:c6:5f:c6:
66:3f:5a:bf:1b:1b:65:2e:7f:d1:99:4a:e1:f8:6d:
cf:96:79:80:12:78:eb:4b:9a:ec:d6:64:83:c4:06:
1d:15:4e:17:87:56:8b:b4:64:1d:d1:a3:7b:de:8c:
eb:bd:76:de:a9:01:bd:66:5d:ca:10:c8:4d:ba:4e:
92:5c:db:da:de:0c:bd:13:a9:00:3c:e7:c8:22:5e:
00:a0:bc:34:66:49:a9:0e:09:1a:aa:f1:39:b0:11:
cd:e2:42:0f:36:00:37:d6:17:df:1b:d3:41:6f:70:
1d:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:F0:42:5A:8C:BC:5C:5C:89:41:D3:D5:64:34:74:EA:38:97:51:61
X509v3 Authority Key Identifier:
keyid:3D:2C:03:4F:85:1F:37:15:B2:BA:4C:9C:95:E5:28:5D:AF:2E:E9:23
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36DA3E9/3CBCB97259C011EC9B4364725A40D577/PSwDT4UfNxWyukycleUoXa8u6SM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/PSwDT4UfNxWyukycleUoXa8u6SM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36DA3E9/3CBCB97259C011EC9B4364725A40D577/9E7281D859C011ECABCF78735A40D577.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.217.80.0/22
Signature Algorithm: sha256WithRSAEncryption
3a:a8:8b:20:95:ba:4f:93:12:36:5a:36:9a:bb:ff:91:aa:01:
f1:36:7e:21:78:99:17:34:91:c9:0f:5c:11:26:ad:48:ec:16:
14:10:c9:29:34:2b:6c:c4:89:5b:13:5d:3e:de:c0:50:38:4d:
2e:51:f9:54:7a:51:2e:a1:c1:9b:99:9b:df:41:37:ff:31:dd:
20:a7:bf:e3:70:66:71:5e:1b:c4:78:ed:30:43:ef:42:c4:40:
fd:12:b6:c1:25:9f:e7:d3:07:d4:dd:80:02:37:48:65:94:47:
81:e9:e1:10:91:1c:3b:a8:16:e1:08:c1:6b:0c:1c:f5:3e:9d:
35:95:23:40:e6:c0:a0:2c:b3:f8:e8:d9:7d:47:3f:40:1c:f6:
4d:11:46:8d:c2:99:09:02:1b:78:ce:5a:7e:b0:2e:62:01:3d:
41:d1:d2:b1:46:dc:59:67:6e:4b:79:e0:ab:30:f3:2a:cb:9c:
36:4d:ab:e8:0c:68:4a:3e:50:fe:5f:cf:c6:2e:60:6e:6b:91:
ac:bc:40:72:24:c3:17:53:43:a9:7a:35:66:c9:13:1e:c2:5e:
9c:1c:11:19:89:d3:8b:bb:d1:0b:97:46:f6:42:7a:d5:0c:0b:
73:14:3a:78:66:05:f1:2a:05:08:6a:00:ea:ad:41:8f:14:ff:
b2:3d:50:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:05:28 2024 by rpki-client on console-ams.rpki-client.org