Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36E29ED/1C5B5D02DC0911EC9CEBDE9BF1222468/A9F0CED005CB11EEAE1D25384AD9E6FC.roa
File: A9F0CED005CB11EEAE1D25384AD9E6FC.roa (raw, json)
Hash identifier: zxEwyc9gplQBJFrp7SAoD+b4/1ve107UCm4IoIpj8I0=
Subject key identifier: 60:9C:E7:83:C8:4E:C6:28:F6:AD:4E:A8:90:EA:F3:F2:E9:AA:32:1B
Certificate issuer: /CN=F36E29EDAF/serialNumber=2A3CC9E5519A5A5BB13D08310CA934824896FA5A
Certificate serial: 019E
Authority key identifier: 2A:3C:C9:E5:51:9A:5A:5B:B1:3D:08:31:0C:A9:34:82:48:96:FA:5A
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/KjzJ5VGaWluxPQgxDKk0gkiW-lo.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36E29ED/1C5B5D02DC0911EC9CEBDE9BF1222468/A9F0CED005CB11EEAE1D25384AD9E6FC.roa
Signing time: Thu 08 Jun 2023 07:11:18 +0000
ROA not before: Thu 08 Jun 2023 07:11:14 +0000
ROA not after: Tue 08 Jun 2032 07:11:14 +0000
asID: 327996
IP address blocks: 102.213.144.0/22 maxlen: 22
102.213.144.0/24 maxlen: 24
102.213.145.0/24 maxlen: 24
102.213.146.0/24 maxlen: 24
102.213.147.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36E29ED/1C5B5D02DC0911EC9CEBDE9BF1222468/KjzJ5VGaWluxPQgxDKk0gkiW-lo.crl
rsync://rpki.afrinic.net/repository/member_repository/F36E29ED/1C5B5D02DC0911EC9CEBDE9BF1222468/KjzJ5VGaWluxPQgxDKk0gkiW-lo.mft
rsync://rpki.afrinic.net/repository/afrinic/KjzJ5VGaWluxPQgxDKk0gkiW-lo.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 12 May 2024 00:04:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 414 (0x19e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36E29EDAF/serialNumber=2A3CC9E5519A5A5BB13D08310CA934824896FA5A
Validity
Not Before: Jun 8 07:11:14 2023 GMT
Not After : Jun 8 07:11:14 2032 GMT
Subject: CN=64817f16-008f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:d1:6f:16:28:c9:b3:42:9e:9a:07:7f:75:fe:
64:a0:82:da:7f:52:1a:1e:15:e9:d0:4c:32:d8:18:
fb:04:f9:54:e2:72:c5:2b:54:7d:02:9c:9e:73:6d:
f1:b2:28:12:cb:d8:95:ea:2d:81:99:86:d1:10:44:
26:a5:70:e8:5b:f5:d1:26:b1:43:73:fa:60:fc:64:
c1:71:fa:dd:76:a6:fb:1d:13:13:5c:5e:65:40:17:
b1:15:cc:3d:6e:87:85:c7:58:d7:57:75:4f:d4:cd:
e6:c8:d6:9d:9d:ae:32:68:63:ca:60:5e:a4:f7:30:
9b:9d:6a:69:36:28:c2:d4:8e:b8:bc:8b:e6:a9:ff:
1e:b9:e4:e0:7a:8e:95:9a:db:93:59:cc:01:fa:f7:
4b:71:29:03:91:4b:c8:aa:d5:62:64:9f:16:e6:c6:
0d:6b:40:c6:06:12:ce:71:94:e1:1d:4e:db:86:28:
ef:ce:28:8b:3a:f6:78:af:0c:fc:20:c0:32:7b:13:
60:03:7d:10:45:04:51:1b:24:f2:ff:0c:bb:c5:0d:
4f:8c:a6:83:15:bc:ee:d8:94:5e:97:8e:b5:21:70:
c8:78:58:c4:e8:12:dd:00:e9:06:63:07:82:c7:0b:
e2:69:e6:13:29:04:ff:ea:68:bd:b3:03:f5:f4:31:
52:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:9C:E7:83:C8:4E:C6:28:F6:AD:4E:A8:90:EA:F3:F2:E9:AA:32:1B
X509v3 Authority Key Identifier:
keyid:2A:3C:C9:E5:51:9A:5A:5B:B1:3D:08:31:0C:A9:34:82:48:96:FA:5A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36E29ED/1C5B5D02DC0911EC9CEBDE9BF1222468/KjzJ5VGaWluxPQgxDKk0gkiW-lo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/KjzJ5VGaWluxPQgxDKk0gkiW-lo.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36E29ED/1C5B5D02DC0911EC9CEBDE9BF1222468/A9F0CED005CB11EEAE1D25384AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.213.144.0/22
Signature Algorithm: sha256WithRSAEncryption
44:c9:14:da:36:02:95:30:0d:b5:90:6c:c3:32:51:21:8e:aa:
34:92:c8:9e:d3:9d:e1:1e:93:4e:d6:31:9e:1a:79:1b:e2:78:
f0:45:25:d9:e2:98:cf:00:ef:cf:76:2d:d7:16:1d:7c:c5:04:
58:5b:41:e4:fc:4a:65:30:c4:74:d8:75:b4:da:78:54:ca:fb:
43:53:09:d6:85:4d:db:ca:1a:97:7e:32:dc:fe:89:dd:9f:cb:
c6:dd:22:a2:93:3c:a3:22:61:a0:85:c8:1b:01:f2:7e:e0:e0:
3f:9d:b6:89:92:5a:b2:6b:a4:39:18:d6:dc:bc:b5:10:c7:ec:
29:62:9d:5c:56:26:dd:ae:38:b4:aa:05:5a:4c:d4:cc:6a:a3:
5c:df:44:45:14:b6:a6:aa:19:a9:3c:80:f2:36:0d:ad:58:c4:
f5:57:d5:cf:c4:fc:ea:ca:92:14:15:f9:76:18:d2:3f:80:3e:
3c:cb:7d:b7:01:9a:75:d9:82:ae:c6:f8:74:b0:a3:d2:4e:35:
86:db:0c:ef:4a:3f:35:4e:a4:f6:9a:f9:03:ad:3d:c2:f8:26:
6c:4c:87:f9:2c:af:34:f4:68:3d:f1:f2:6c:e0:6d:fb:10:d7:
e3:27:6b:77:4a:1a:1a:06:3a:92:c1:96:ab:91:f2:75:99:4c:
9a:45:65:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 10 03:24:15 2024 by rpki-client on console-fra.rpki-client.org