Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36E6802/F6AA6EE8653D11EF844B268E762E951A/10CA293E653F11EF8C440393762E951A.roa
File: 10CA293E653F11EF8C440393762E951A.roa (raw, json)
Hash identifier: nhNLmRsBHLhK6LTWVHLzqZimVfw7FMGqSN9TfNAWHoE=
Subject key identifier: B1:3F:4F:4D:1D:C0:70:2D:1D:46:71:88:15:D1:9E:88:93:98:2A:25
Certificate issuer: /CN=F36E6802AF/serialNumber=68BD343C1D9F7046C62F955F867319D852B14A10
Certificate serial: 02
Authority key identifier: 68:BD:34:3C:1D:9F:70:46:C6:2F:95:5F:86:73:19:D8:52:B1:4A:10
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/aL00PB2fcEbGL5VfhnMZ2FKxShA.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36E6802/F6AA6EE8653D11EF844B268E762E951A/10CA293E653F11EF8C440393762E951A.roa
Signing time: Wed 28 Aug 2024 13:11:41 +0000
ROA not before: Wed 28 Aug 2024 13:11:38 +0000
ROA not after: Tue 31 Dec 2030 13:11:38 +0000
asID: 328743
IP address blocks: 102.221.224.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36E6802/F6AA6EE8653D11EF844B268E762E951A/aL00PB2fcEbGL5VfhnMZ2FKxShA.crl
rsync://rpki.afrinic.net/repository/member_repository/F36E6802/F6AA6EE8653D11EF844B268E762E951A/aL00PB2fcEbGL5VfhnMZ2FKxShA.mft
rsync://rpki.afrinic.net/repository/afrinic/aL00PB2fcEbGL5VfhnMZ2FKxShA.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2 (0x2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36E6802AF/serialNumber=68BD343C1D9F7046C62F955F867319D852B14A10
Validity
Not Before: Aug 28 13:11:38 2024 GMT
Not After : Dec 31 13:11:38 2030 GMT
Subject: CN=66cf220d-30ad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:7a:c5:fd:5b:b8:05:47:83:c1:7c:5f:a5:77:
d5:16:58:16:83:c5:3b:3f:eb:5a:15:5b:ed:fb:f1:
8f:bd:54:2a:b2:b8:69:9d:95:b0:d1:84:e6:35:e9:
9a:a8:5a:a1:b4:45:d3:61:b6:87:68:3d:1e:10:e5:
61:2a:9b:a6:3b:1d:ee:be:99:f9:ab:65:0a:da:ff:
f0:b0:c2:07:a7:bb:57:fc:82:6c:df:eb:3b:74:9b:
95:a4:2a:18:24:18:c2:31:8b:30:7a:86:f0:0f:92:
fe:1d:07:d0:93:18:38:7c:ff:b6:a3:5c:3a:5b:e8:
0f:a4:53:39:2c:d4:39:96:0c:36:66:a7:90:8f:6e:
1d:41:72:91:60:92:a2:f6:01:ea:93:90:25:bb:36:
43:a4:45:1d:fc:06:36:47:06:0f:0b:e2:19:18:e8:
03:9c:b0:66:98:f6:5e:ea:4d:80:ba:2a:c7:4f:84:
cd:3c:2a:09:00:7b:15:a3:9e:c5:24:cb:ba:bd:a4:
20:9f:9e:d5:db:88:ed:30:be:00:15:70:04:39:a9:
a8:50:2a:72:25:49:d8:79:66:22:22:72:74:ac:ca:
4c:9a:26:ec:b4:d8:10:d7:01:ec:7b:69:b2:4f:02:
81:5f:6a:1f:de:00:ca:90:4e:96:6a:e7:3b:6e:4a:
98:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:3F:4F:4D:1D:C0:70:2D:1D:46:71:88:15:D1:9E:88:93:98:2A:25
X509v3 Authority Key Identifier:
keyid:68:BD:34:3C:1D:9F:70:46:C6:2F:95:5F:86:73:19:D8:52:B1:4A:10
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36E6802/F6AA6EE8653D11EF844B268E762E951A/aL00PB2fcEbGL5VfhnMZ2FKxShA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/aL00PB2fcEbGL5VfhnMZ2FKxShA.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36E6802/F6AA6EE8653D11EF844B268E762E951A/10CA293E653F11EF8C440393762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.221.224.0/22
Signature Algorithm: sha256WithRSAEncryption
78:ac:93:e3:50:7f:e4:2d:5c:f7:af:c7:9c:a4:0a:81:78:44:
24:f4:5f:f8:60:b9:09:4a:2b:7b:4a:7f:ad:ea:fe:09:71:14:
4e:e0:8a:b2:cb:4a:8f:42:c1:b2:14:6b:35:c8:58:40:da:5c:
9a:5f:57:04:cd:ad:48:56:60:bb:9a:de:c4:8c:76:8d:81:11:
ca:b5:5c:49:32:ec:a2:d1:8d:6c:74:7c:9d:3e:a9:76:08:bc:
06:db:05:07:55:16:9e:ea:54:67:ee:e1:19:be:90:f8:f9:2a:
10:8a:54:d9:36:17:6a:89:cf:2f:eb:23:fa:22:f5:30:33:fc:
7e:2c:19:cd:22:29:03:8a:8b:ad:7d:bb:b7:d4:08:46:00:e1:
f5:b1:a2:5b:5c:7c:d8:be:05:7c:05:04:dc:9c:6e:9f:61:f1:
83:bc:4d:af:f7:ff:ab:2a:83:2d:49:91:60:13:d1:ba:af:4a:
8a:22:4f:59:cf:1d:b1:e5:40:40:f1:94:8c:d5:63:e4:a5:3d:
83:d7:bd:2d:5b:1b:2a:74:91:ef:0b:6c:e9:bd:f2:0d:f3:78:
6a:a3:05:f7:8f:4c:ba:58:62:b1:85:ab:15:63:dc:cb:e8:7a:
c4:2a:6e:6e:a0:ab:99:2a:28:4e:2d:48:ec:91:d9:74:6c:94:
14:db:16:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:05:30 2024 by rpki-client on console-ams.rpki-client.org