Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36E8DA8/4C970B5E495C11ED9E7604E8F1222468/55A38D48495D11EDB19BAAEAF1222468.roa
File: 55A38D48495D11EDB19BAAEAF1222468.roa (raw, json)
Hash identifier: SZNSy5X2cBi0hD7/2UgPgs5N7piTYi+vUEEFastGQCs=
Subject key identifier: 9D:B4:D1:23:53:07:09:48:57:A5:2D:81:32:5B:B5:60:89:16:7F:FC
Certificate issuer: /CN=F36E8DA8AF/serialNumber=3E8EB858E6153921ADB0BF5F0BC95B4D06C7C3EF
Certificate serial: 02
Authority key identifier: 3E:8E:B8:58:E6:15:39:21:AD:B0:BF:5F:0B:C9:5B:4D:06:C7:C3:EF
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/Po64WOYVOSGtsL9fC8lbTQbHw-8.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36E8DA8/4C970B5E495C11ED9E7604E8F1222468/55A38D48495D11EDB19BAAEAF1222468.roa
Signing time: Tue 11 Oct 2022 12:07:54 +0000
ROA not before: Tue 11 Oct 2022 12:07:49 +0000
ROA not after: Sun 11 Oct 2026 12:07:49 +0000
asID: 328803
IP address blocks: 102.215.20.0/22 maxlen: 24
102.220.232.0/22 maxlen: 24
2c0f:1480::/32 maxlen: 34
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36E8DA8/4C970B5E495C11ED9E7604E8F1222468/Po64WOYVOSGtsL9fC8lbTQbHw-8.crl
rsync://rpki.afrinic.net/repository/member_repository/F36E8DA8/4C970B5E495C11ED9E7604E8F1222468/Po64WOYVOSGtsL9fC8lbTQbHw-8.mft
rsync://rpki.afrinic.net/repository/afrinic/Po64WOYVOSGtsL9fC8lbTQbHw-8.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2 (0x2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36E8DA8AF/serialNumber=3E8EB858E6153921ADB0BF5F0BC95B4D06C7C3EF
Validity
Not Before: Oct 11 12:07:49 2022 GMT
Not After : Oct 11 12:07:49 2026 GMT
Subject: CN=63455c99-91b1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:c0:e1:28:35:36:7e:f9:19:3b:d5:71:34:ef:
65:aa:89:20:11:e5:5e:72:eb:0a:1a:7a:6a:bf:57:
ca:f1:d7:6e:e0:24:4b:84:29:13:f4:39:38:f6:bd:
92:d4:29:62:1f:01:1b:64:a6:e9:00:4c:dd:05:08:
d2:2f:bd:11:4b:2a:f7:bf:2a:59:ec:b5:e7:5d:b6:
f1:10:28:44:f1:8b:c8:98:8a:31:ca:cd:c0:90:69:
59:2c:4a:f7:20:63:54:99:ce:d8:b1:c0:3b:8e:d2:
43:ed:dc:47:7d:fd:c7:48:3a:e4:f4:88:c9:48:f4:
8e:b3:fb:5d:95:91:de:04:4b:24:e7:6a:07:7f:b4:
9a:49:f9:7d:51:31:be:60:92:c9:77:13:38:d7:22:
0d:24:ba:45:69:b7:21:3c:26:34:72:3b:8f:9e:38:
ba:85:94:09:65:cc:7a:ce:02:44:c7:e8:77:72:73:
31:2e:1d:1a:9b:4e:ce:4b:bc:30:c4:a4:18:37:55:
d0:db:df:bf:3c:5d:75:cf:7c:49:0f:68:23:01:be:
e9:90:a8:3a:d9:8e:c4:ca:4a:18:d3:ef:7d:02:db:
9a:ec:95:cc:83:34:a5:48:44:b0:9f:b3:90:b8:29:
f9:52:75:8c:1c:27:70:0b:d8:d9:94:ff:08:59:f5:
94:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:B4:D1:23:53:07:09:48:57:A5:2D:81:32:5B:B5:60:89:16:7F:FC
X509v3 Authority Key Identifier:
keyid:3E:8E:B8:58:E6:15:39:21:AD:B0:BF:5F:0B:C9:5B:4D:06:C7:C3:EF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36E8DA8/4C970B5E495C11ED9E7604E8F1222468/Po64WOYVOSGtsL9fC8lbTQbHw-8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/Po64WOYVOSGtsL9fC8lbTQbHw-8.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36E8DA8/4C970B5E495C11ED9E7604E8F1222468/55A38D48495D11EDB19BAAEAF1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.215.20.0/22
102.220.232.0/22
IPv6:
2c0f:1480::/32
Signature Algorithm: sha256WithRSAEncryption
92:8c:76:6b:fb:3b:7f:97:3d:09:79:e4:9a:2d:7f:82:ed:a7:
6c:2b:17:bb:02:1a:df:95:bb:58:0f:f6:bf:7b:64:59:2f:cd:
20:28:33:30:38:e1:d2:f2:5b:5b:69:a2:4d:39:d5:14:52:3f:
bc:6e:39:15:14:25:e7:78:4c:6c:78:05:ee:8c:52:0f:db:96:
61:33:2b:49:bb:9e:42:ac:07:c7:03:5c:e4:da:43:0b:11:69:
aa:5a:fe:7d:1c:a1:a8:17:10:25:df:a8:bb:fc:25:d1:38:60:
af:7c:f5:7f:c3:8d:b5:d4:36:5a:a4:ff:7f:98:91:4a:cd:2e:
12:15:d4:41:d6:c4:32:a6:58:ad:e7:0a:69:ea:72:22:f7:db:
7d:1d:49:71:98:3b:bd:28:b4:df:49:8a:97:2b:98:cb:09:64:
ed:77:cb:9f:9e:a3:48:29:72:50:53:3e:76:97:1f:8c:52:4c:
11:da:30:1d:77:eb:9e:ad:53:36:95:da:79:ea:86:cf:0e:49:
99:e5:85:bb:17:6d:b0:a3:0b:16:01:83:76:c7:b2:50:6c:c7:
92:23:24:48:ce:11:99:72:b1:9b:1a:04:d0:b0:a1:d6:48:86:
10:e4:9d:91:4f:33:93:a0:48:33:48:8e:00:1d:d3:ec:aa:2f:
e4:c0:5c:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:05:31 2024 by rpki-client on console-ams.rpki-client.org