Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36E6D28/0192A7F2EA1D11EBB8B69A0BD8A014CE/4CA13A74EA1D11EBAEB1FE0BD8A014CE.roa
File: 4CA13A74EA1D11EBAEB1FE0BD8A014CE.roa (raw, json)
Hash identifier: sIG4V1gL0C8GEyce4Zp/c68CcXuUBRgl5avwx6jTy/M=
Subject key identifier: 55:4B:9D:0F:07:69:44:D9:94:35:1A:C3:94:7E:5C:34:27:08:5D:C6
Certificate issuer: /CN=F36E6D28AF/serialNumber=3DE879EA09E17B8391C728DB7A6FA7B273904B7A
Certificate serial: 02
Authority key identifier: 3D:E8:79:EA:09:E1:7B:83:91:C7:28:DB:7A:6F:A7:B2:73:90:4B:7A
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/Peh56gnhe4ORxyjbem-nsnOQS3o.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36E6D28/0192A7F2EA1D11EBB8B69A0BD8A014CE/4CA13A74EA1D11EBAEB1FE0BD8A014CE.roa
Signing time: Wed 21 Jul 2021 12:15:22 +0000
ROA not before: Wed 21 Jul 2021 12:15:18 +0000
ROA not after: Mon 21 Jul 2031 12:15:18 +0000
asID: 328720
IP address blocks: 102.222.108.0/22 maxlen: 24
2c0f:7400::/32 maxlen: 48
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36E6D28/0192A7F2EA1D11EBB8B69A0BD8A014CE/Peh56gnhe4ORxyjbem-nsnOQS3o.crl
rsync://rpki.afrinic.net/repository/member_repository/F36E6D28/0192A7F2EA1D11EBB8B69A0BD8A014CE/Peh56gnhe4ORxyjbem-nsnOQS3o.mft
rsync://rpki.afrinic.net/repository/afrinic/Peh56gnhe4ORxyjbem-nsnOQS3o.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 21 Apr 2024 00:04:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2 (0x2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36E6D28AF/serialNumber=3DE879EA09E17B8391C728DB7A6FA7B273904B7A
Validity
Not Before: Jul 21 12:15:18 2021 GMT
Not After : Jul 21 12:15:18 2031 GMT
Subject: CN=60f80fda-2549
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:f2:e1:7b:b3:dc:9d:f5:2c:2a:88:77:3a:37:
bf:a8:9c:20:5b:82:1b:8f:5c:08:f9:27:d5:23:d8:
a3:84:ef:49:ce:30:0f:0a:4f:4a:78:f8:0c:e4:be:
58:8f:27:1f:56:35:69:90:1b:cc:cb:fa:9b:e3:a5:
cf:40:a1:b1:2e:30:00:92:66:11:f2:08:1a:7a:a3:
dd:d6:18:aa:4a:c5:0d:d3:e4:37:5e:ee:1f:4a:81:
5d:a9:c6:81:f5:96:b2:44:4c:45:f3:d1:7e:ca:d1:
66:8b:4e:ae:47:f9:ad:18:c1:94:2b:bb:3d:af:c3:
25:1d:cf:4e:2d:ce:95:b6:3e:91:e4:e3:55:62:a1:
26:69:0a:d4:2e:92:5e:83:f1:a8:47:ec:f0:2b:7e:
ba:ed:e6:3b:38:7d:b9:c5:63:8f:b3:7c:79:50:b8:
a2:d7:38:f6:58:4a:93:d1:bf:37:14:b3:be:3d:07:
fa:42:7c:39:d7:41:b1:87:f5:4c:4d:47:5f:9f:9b:
9e:9c:26:69:2c:a8:b1:be:bc:cb:60:23:cf:cb:a3:
ac:a2:01:8f:38:3c:d4:bd:3d:8a:e4:34:94:19:a1:
81:7b:5a:5b:f2:00:85:31:9e:53:55:7c:b5:e7:40:
3c:89:9f:c1:90:66:33:20:85:a3:1a:5e:99:8a:4e:
dc:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:4B:9D:0F:07:69:44:D9:94:35:1A:C3:94:7E:5C:34:27:08:5D:C6
X509v3 Authority Key Identifier:
keyid:3D:E8:79:EA:09:E1:7B:83:91:C7:28:DB:7A:6F:A7:B2:73:90:4B:7A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36E6D28/0192A7F2EA1D11EBB8B69A0BD8A014CE/Peh56gnhe4ORxyjbem-nsnOQS3o.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/Peh56gnhe4ORxyjbem-nsnOQS3o.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36E6D28/0192A7F2EA1D11EBB8B69A0BD8A014CE/4CA13A74EA1D11EBAEB1FE0BD8A014CE.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.222.108.0/22
IPv6:
2c0f:7400::/32
Signature Algorithm: sha256WithRSAEncryption
13:02:a8:0e:c7:01:19:9c:76:e6:5b:ca:ef:57:d0:f5:2b:ad:
36:89:da:b4:5d:c6:3f:9a:09:95:ac:1a:4b:2b:a9:d4:56:e7:
af:b4:eb:c4:47:cd:d0:06:34:6f:1c:1a:14:e1:96:ef:4f:d5:
28:65:b1:29:fd:5e:fa:e7:12:26:41:75:ad:16:a9:9f:a5:a6:
c2:88:25:aa:13:ab:a5:37:aa:73:16:ef:f7:e3:a3:3e:bd:4f:
08:b6:ad:f3:c3:76:0e:46:3b:8a:0b:11:0a:fc:56:64:0d:97:
13:54:6e:10:6c:3c:4e:e4:55:7e:44:ff:cb:48:9e:7f:c8:ab:
23:f4:9d:b9:20:06:22:2d:cc:4d:b6:96:3f:95:0b:93:87:ee:
cf:52:6b:14:26:c8:7f:bd:dd:c4:41:a4:95:7e:77:78:f0:fe:
72:c8:e9:25:c1:d0:9b:45:ed:2c:bc:1b:79:b9:53:c9:34:c7:
b8:36:29:6e:e1:6d:c0:2f:ae:92:52:dd:30:ea:8f:f0:7a:5e:
04:bd:09:48:90:ea:f0:f8:13:a8:b8:93:cb:92:72:39:1c:7b:
2e:49:2c:42:0d:91:38:b4:7a:34:08:ea:e8:d7:45:d4:bf:4b:
02:f4:da:79:61:b0:b0:29:91:12:00:a2:54:fa:cb:7e:cc:7a:
b0:fd:e5:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 19 02:47:15 2024 by rpki-client on console-ams.rpki-client.org