Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36E6AB8/D8FE28F61BDC11ECB169A467D8A014CE/1C9E519E1BDD11ECA0560768D8A014CE.roa
File: 1C9E519E1BDD11ECA0560768D8A014CE.roa (raw, json)
Hash identifier: FU98lPpwZTQalULqUls0soaKI9pnCPgBWGxAh0GDG/g=
Subject key identifier: E1:90:44:8D:DB:95:F9:A8:E8:45:75:DA:46:3A:2A:55:20:ED:E6:78
Certificate issuer: /CN=F36E6AB8AF/serialNumber=C5E978ACF97DA9F49DC4B284AFF02574F103187F
Certificate serial: 02
Authority key identifier: C5:E9:78:AC:F9:7D:A9:F4:9D:C4:B2:84:AF:F0:25:74:F1:03:18:7F
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/xel4rPl9qfSdxLKEr_AldPEDGH8.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36E6AB8/D8FE28F61BDC11ECB169A467D8A014CE/1C9E519E1BDD11ECA0560768D8A014CE.roa
Signing time: Wed 22 Sep 2021 19:41:42 +0000
ROA not before: Wed 22 Sep 2021 19:41:34 +0000
ROA not after: Mon 22 Sep 2031 19:41:34 +0000
asID: 60171
IP address blocks: 102.222.200.0/22 maxlen: 24
2c0f:e890::/32 maxlen: 48
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36E6AB8/D8FE28F61BDC11ECB169A467D8A014CE/xel4rPl9qfSdxLKEr_AldPEDGH8.crl
rsync://rpki.afrinic.net/repository/member_repository/F36E6AB8/D8FE28F61BDC11ECB169A467D8A014CE/xel4rPl9qfSdxLKEr_AldPEDGH8.mft
rsync://rpki.afrinic.net/repository/afrinic/xel4rPl9qfSdxLKEr_AldPEDGH8.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2 (0x2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36E6AB8AF/serialNumber=C5E978ACF97DA9F49DC4B284AFF02574F103187F
Validity
Not Before: Sep 22 19:41:34 2021 GMT
Not After : Sep 22 19:41:34 2031 GMT
Subject: CN=614b86f6-8b8f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:fa:cb:75:49:26:54:f1:3e:6b:2a:87:70:a0:
cf:43:4b:ec:e8:ca:39:fd:03:ab:f1:a5:6a:14:31:
7f:aa:0c:96:f6:16:c9:a7:5f:04:34:01:e7:07:35:
5f:70:9f:ac:cd:16:02:4b:aa:5b:58:2b:9b:26:55:
41:57:88:0a:e6:82:14:e3:b9:a9:13:86:a0:9c:14:
9b:b8:56:60:f7:e3:a2:60:19:dd:98:4e:5a:88:9e:
71:04:3d:b2:fb:b8:ad:4c:47:20:4e:c7:1d:c4:25:
42:15:56:18:16:30:10:c2:89:5f:4e:b5:b3:13:47:
82:4f:33:d6:55:86:b6:11:03:99:4f:0e:24:66:a1:
b0:34:68:ba:85:c8:55:50:88:63:99:aa:bd:f7:4d:
f6:de:d0:25:f7:aa:3c:ac:e6:00:76:26:a4:ee:ff:
c9:81:db:32:2e:82:1c:28:f2:98:b6:55:2d:96:7c:
a1:37:8d:2a:bd:81:2e:82:e2:b4:a1:77:71:16:e9:
92:ad:e2:ff:8c:df:b8:c1:a8:9a:7d:7f:e4:4c:7c:
2e:84:32:49:ee:7d:34:4d:da:7a:49:07:0f:0e:69:
5c:eb:38:c6:5a:a1:27:08:84:9e:5a:f8:c3:b8:64:
c3:82:ff:90:59:b2:9f:53:bf:b4:06:93:0e:d1:01:
99:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:90:44:8D:DB:95:F9:A8:E8:45:75:DA:46:3A:2A:55:20:ED:E6:78
X509v3 Authority Key Identifier:
keyid:C5:E9:78:AC:F9:7D:A9:F4:9D:C4:B2:84:AF:F0:25:74:F1:03:18:7F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36E6AB8/D8FE28F61BDC11ECB169A467D8A014CE/xel4rPl9qfSdxLKEr_AldPEDGH8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/xel4rPl9qfSdxLKEr_AldPEDGH8.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36E6AB8/D8FE28F61BDC11ECB169A467D8A014CE/1C9E519E1BDD11ECA0560768D8A014CE.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.222.200.0/22
IPv6:
2c0f:e890::/32
Signature Algorithm: sha256WithRSAEncryption
59:f6:72:d3:bd:05:f0:a5:52:88:73:ff:52:84:5e:ef:72:8f:
80:88:c1:af:0c:85:b4:a9:05:cb:a8:2e:87:5f:39:9e:a8:e2:
ee:21:62:37:42:e7:da:04:84:b1:91:e1:cd:c6:24:71:d1:36:
59:5b:a6:41:21:19:61:cf:56:29:3f:ad:8d:6a:f0:26:85:89:
8f:4b:46:2f:f4:0b:0b:e6:bb:56:8e:5b:f4:90:d9:34:d5:a1:
bd:9e:b6:fc:0f:01:0f:f0:5b:8c:b1:fd:55:ba:2e:26:8e:59:
62:dc:51:dd:17:da:7c:5d:a7:96:7d:90:73:88:6e:5c:a3:2f:
5f:9d:71:cb:a1:59:62:c9:49:3b:32:49:78:08:de:63:c4:e2:
58:61:1f:86:c1:32:f7:0f:4b:63:d3:d5:74:02:74:cc:1a:1c:
9d:bb:7d:fa:44:2a:f7:11:8f:f3:3f:a6:65:83:e9:53:b8:97:
83:55:2e:9c:26:e6:db:c8:6d:2b:76:d4:64:2e:b4:af:a9:95:
d4:30:e2:c7:61:12:4b:ee:24:10:06:7a:17:f7:c2:b2:d3:16:
2f:2b:2e:81:57:11:73:9b:59:25:89:16:4f:e8:2f:40:62:40:
b1:bc:55:3f:08:97:e0:62:00:99:66:b3:11:31:b5:48:b9:6a:
41:d5:08:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:05:30 2024 by rpki-client on console-ams.rpki-client.org