Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36E8561/B0D720E01C3F11ECBA220D0BD8A014CE/BE19C1921C5111ECA490CA25D8A014CE.roa
File: BE19C1921C5111ECA490CA25D8A014CE.roa (raw, json)
Hash identifier: tWWOqO4qQU37EDVgvBM++aqmJ8EV7jx4ZYoh4rsEZZ8=
Subject key identifier: 7E:27:86:A8:07:C4:16:6D:01:A7:A0:66:F1:ED:9D:B5:BD:19:DE:21
Certificate issuer: /CN=F36E8561AF/serialNumber=BDF6F99CD082C13BEDA5DA0E89888DD532C86307
Certificate serial: 07
Authority key identifier: BD:F6:F9:9C:D0:82:C1:3B:ED:A5:DA:0E:89:88:8D:D5:32:C8:63:07
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/vfb5nNCCwTvtpdoOiYiN1TLIYwc.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36E8561/B0D720E01C3F11ECBA220D0BD8A014CE/BE19C1921C5111ECA490CA25D8A014CE.roa
Signing time: Thu 23 Sep 2021 09:36:35 +0000
ROA not before: Thu 23 Sep 2021 09:36:30 +0000
ROA not after: Fri 31 Dec 2049 09:36:30 +0000
asID: 37254
IP address blocks: 102.69.168.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36E8561/B0D720E01C3F11ECBA220D0BD8A014CE/vfb5nNCCwTvtpdoOiYiN1TLIYwc.crl
rsync://rpki.afrinic.net/repository/member_repository/F36E8561/B0D720E01C3F11ECBA220D0BD8A014CE/vfb5nNCCwTvtpdoOiYiN1TLIYwc.mft
rsync://rpki.afrinic.net/repository/afrinic/vfb5nNCCwTvtpdoOiYiN1TLIYwc.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 27 Jun 2024 00:05:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7 (0x7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36E8561AF/serialNumber=BDF6F99CD082C13BEDA5DA0E89888DD532C86307
Validity
Not Before: Sep 23 09:36:30 2021 GMT
Not After : Dec 31 09:36:30 2049 GMT
Subject: CN=614c4aa3-dfb7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:70:87:a0:ed:15:23:0d:fe:9b:84:2d:b0:35:
9c:12:e0:85:e4:a0:42:62:47:f1:8b:0b:e6:39:12:
bb:82:4c:0e:ab:01:ff:4c:47:ca:4a:ae:58:48:3d:
d9:e1:8e:bf:aa:8d:60:91:39:c8:c7:0d:83:84:b0:
c3:b8:8d:5a:ec:49:59:52:04:0a:66:01:a6:c0:4d:
92:3c:16:33:e1:99:c0:d1:4d:94:78:32:dc:cb:55:
47:70:95:fb:40:82:67:74:8a:ff:cc:3c:1b:93:96:
59:33:f1:0c:c3:cb:42:22:fa:b4:75:5d:5d:fb:8d:
02:da:c9:b4:bf:b5:d1:9a:d0:aa:d3:04:8e:89:c4:
46:45:c7:74:6b:49:e0:b3:7b:b2:bb:97:dd:ec:08:
bf:2c:b0:01:1d:2e:e7:5a:19:5f:9c:e9:8e:41:c8:
d8:c3:e7:46:70:f4:18:3a:b3:29:02:23:a3:49:99:
14:ed:66:a6:8c:b6:9b:5f:65:fe:af:00:d1:81:e6:
dd:12:20:c8:b7:94:32:d5:5b:a1:0f:43:1e:65:ff:
54:db:09:6f:d9:f0:de:7e:33:4f:4d:85:ba:4c:b9:
72:f2:4e:6b:72:9c:85:8f:84:1b:1e:20:3a:2c:08:
7f:e3:b1:a2:a4:ac:fc:47:0f:ee:b4:dc:d1:c6:6e:
6e:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:27:86:A8:07:C4:16:6D:01:A7:A0:66:F1:ED:9D:B5:BD:19:DE:21
X509v3 Authority Key Identifier:
keyid:BD:F6:F9:9C:D0:82:C1:3B:ED:A5:DA:0E:89:88:8D:D5:32:C8:63:07
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36E8561/B0D720E01C3F11ECBA220D0BD8A014CE/vfb5nNCCwTvtpdoOiYiN1TLIYwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/vfb5nNCCwTvtpdoOiYiN1TLIYwc.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36E8561/B0D720E01C3F11ECBA220D0BD8A014CE/BE19C1921C5111ECA490CA25D8A014CE.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.69.168.0/21
Signature Algorithm: sha256WithRSAEncryption
89:e4:cf:18:3b:9c:95:24:53:9c:1f:6e:8c:38:bb:30:2a:dc:
ae:c5:6c:00:3b:52:de:b8:35:ef:8f:33:c6:d6:9f:62:74:42:
68:85:31:6c:40:48:03:f7:d5:59:89:10:ce:7e:e7:64:37:63:
44:a2:cd:a8:05:78:31:f8:9d:fa:5b:c5:b4:48:7b:ad:a1:be:
8c:00:c8:ad:42:97:0d:db:1f:ab:c4:4f:58:75:97:59:79:aa:
c5:df:2a:cc:d4:40:cd:de:90:98:aa:d9:42:11:e0:03:37:06:
4a:fd:37:a7:d9:e4:f0:e4:49:06:28:62:14:d7:64:31:d6:20:
cd:49:a9:60:f1:0e:36:37:c3:91:c1:07:5e:48:e2:f1:de:c2:
60:c2:3e:d9:fc:ce:e4:46:8d:97:eb:fa:bb:54:28:ce:fc:db:
5e:03:8b:0f:49:c9:35:4d:38:b4:15:aa:90:c1:c4:18:30:4d:
97:9a:9e:4d:fd:90:c1:f2:c6:b9:46:dd:01:23:e0:f3:6c:19:
f1:b2:b0:91:f4:6d:78:47:15:74:c6:c2:c8:f9:1d:fb:d3:12:
d7:f0:db:94:1a:ec:27:35:cf:28:14:4b:c3:8e:4b:2c:ab:ab:
ff:93:ec:b7:64:55:d5:28:68:cd:f2:37:93:ee:29:ef:0f:0f:
94:88:6e:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 25 04:13:13 2024 by rpki-client on console-ams.rpki-client.org