Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36F0F1F/EDA5AFEC314011EE95A038344AD9E6FC/103C0BB8314711EE99292E464AD9E6FC.roa
File: 103C0BB8314711EE99292E464AD9E6FC.roa (raw, json)
Hash identifier: TmpoQ5dHcVfEPTGG3mk1fm6t56EElHhj1QpqJ0Vnq+E=
Subject key identifier: 9E:6B:6E:43:0E:60:32:74:75:A3:DE:1D:9B:D1:B0:9E:B3:3E:08:07
Certificate issuer: /CN=F36F0F1FAF/serialNumber=922E40550B276DDE1EB2C150DF562581E28CE8B6
Certificate serial: 02
Authority key identifier: 92:2E:40:55:0B:27:6D:DE:1E:B2:C1:50:DF:56:25:81:E2:8C:E8:B6
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/ki5AVQsnbd4essFQ31YlgeKM6LY.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36F0F1F/EDA5AFEC314011EE95A038344AD9E6FC/103C0BB8314711EE99292E464AD9E6FC.roa
Signing time: Wed 02 Aug 2023 15:12:58 +0000
ROA not before: Wed 02 Aug 2023 15:12:54 +0000
ROA not after: Thu 01 Dec 2033 15:12:54 +0000
asID: 329062
IP address blocks: 102.216.0.0/22 maxlen: 22
2c0f:1880::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36F0F1F/EDA5AFEC314011EE95A038344AD9E6FC/ki5AVQsnbd4essFQ31YlgeKM6LY.crl
rsync://rpki.afrinic.net/repository/member_repository/F36F0F1F/EDA5AFEC314011EE95A038344AD9E6FC/ki5AVQsnbd4essFQ31YlgeKM6LY.mft
rsync://rpki.afrinic.net/repository/afrinic/ki5AVQsnbd4essFQ31YlgeKM6LY.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2 (0x2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36F0F1FAF/serialNumber=922E40550B276DDE1EB2C150DF562581E28CE8B6
Validity
Not Before: Aug 2 15:12:54 2023 GMT
Not After : Dec 1 15:12:54 2033 GMT
Subject: CN=64ca727a-aa6c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:f7:c8:b0:66:06:d5:53:18:ff:8a:1b:43:0c:
98:c8:4d:70:26:8e:79:a3:ef:70:b5:20:77:f5:a8:
72:a5:c8:6c:1c:8f:8f:15:87:f6:e8:15:8f:11:0f:
ac:39:75:ea:f3:7b:7a:20:7b:94:78:d3:86:a5:14:
73:d0:70:a2:24:a2:82:33:df:b4:a2:27:7a:f7:cd:
dd:36:4a:e9:5b:41:f6:28:a4:58:0f:09:a2:40:af:
96:ff:34:a5:6a:2f:d6:77:27:6b:fe:34:39:c5:bf:
97:56:d3:d1:25:6d:83:4e:e9:71:3e:a7:77:66:93:
07:6e:5d:c8:73:c6:15:2d:08:74:ba:b7:18:9f:6d:
90:e8:b2:53:73:21:33:ec:76:01:a8:6e:5d:17:b2:
94:33:6f:a0:8d:13:f0:55:93:a9:b4:9f:43:c3:72:
20:5d:03:4c:2f:4d:5b:20:67:53:2d:6e:a1:c6:5a:
6a:0f:c9:a8:34:b9:4f:86:b4:a5:c2:eb:41:57:53:
32:40:81:2e:96:ef:1e:8f:ba:2c:93:84:a8:1f:ee:
76:b4:59:38:12:c0:3f:24:8b:b9:5c:57:4d:52:9b:
1e:5b:23:08:e5:b0:08:11:34:97:47:18:ea:19:f2:
45:22:c6:a1:88:59:ae:10:2d:34:c1:77:9c:dd:f3:
74:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:6B:6E:43:0E:60:32:74:75:A3:DE:1D:9B:D1:B0:9E:B3:3E:08:07
X509v3 Authority Key Identifier:
keyid:92:2E:40:55:0B:27:6D:DE:1E:B2:C1:50:DF:56:25:81:E2:8C:E8:B6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36F0F1F/EDA5AFEC314011EE95A038344AD9E6FC/ki5AVQsnbd4essFQ31YlgeKM6LY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/ki5AVQsnbd4essFQ31YlgeKM6LY.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36F0F1F/EDA5AFEC314011EE95A038344AD9E6FC/103C0BB8314711EE99292E464AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.216.0.0/22
IPv6:
2c0f:1880::/32
Signature Algorithm: sha256WithRSAEncryption
7f:e9:87:49:2e:ad:f8:90:f4:08:05:18:18:76:c2:62:56:4f:
93:e2:b2:ca:e4:c9:54:f4:6b:ac:d0:3f:c1:82:ac:91:34:20:
38:35:70:56:67:8b:bf:44:07:95:15:04:79:99:44:24:ad:75:
b4:7f:de:13:0d:5c:6c:4f:dc:3b:25:b0:3c:34:fb:52:6e:d4:
16:81:12:10:76:a6:e1:dc:95:4e:ab:9f:6c:e4:90:a0:02:25:
3d:1a:f9:c8:a4:21:00:7e:bc:45:f1:3d:f6:14:4f:74:2e:35:
6c:77:11:34:f8:01:23:a9:3c:26:15:4d:30:30:04:51:3b:bd:
55:a9:45:ef:b2:97:2b:56:53:bc:7e:29:be:c8:07:bd:ed:8f:
61:e7:c9:e3:4e:e4:6f:90:ef:7c:5c:a0:60:2e:95:c3:ac:31:
ff:3d:8b:bd:73:6d:f1:56:c8:16:75:9c:bb:e1:05:4f:7e:34:
93:3b:98:e2:6b:69:95:b1:9a:0c:df:3f:91:f6:8a:8e:95:c0:
2f:df:48:98:56:e4:c5:db:88:e4:f0:be:9d:37:f2:65:55:40:
72:f0:96:45:2a:12:59:f7:8c:3b:5f:ba:55:72:b3:a4:9a:5b:
f3:3a:58:5b:1f:77:99:c0:70:4a:26:b4:96:64:ed:66:29:f9:
19:0b:e6:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:05:31 2024 by rpki-client on console-ams.rpki-client.org