Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36F633B/B03BB9A81A1D11EC8A2AE432D8A014CE/FD879FF61A1D11ECA73A7933D8A014CE.roa
File: FD879FF61A1D11ECA73A7933D8A014CE.roa (raw, json)
Hash identifier: hV+JVLLuxvKry3G2M958k6uBPwgNRZmxJ4VO4xm+iKQ=
Subject key identifier: 91:85:E0:38:94:CB:93:8A:54:F4:3D:DE:34:0C:09:C2:B4:84:F7:52
Certificate issuer: /CN=F36F633BAF/serialNumber=739B139D0B7978B0F750E6184D24CFCB27874579
Certificate serial: 02
Authority key identifier: 73:9B:13:9D:0B:79:78:B0:F7:50:E6:18:4D:24:CF:CB:27:87:45:79
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/c5sTnQt5eLD3UOYYTSTPyyeHRXk.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36F633B/B03BB9A81A1D11EC8A2AE432D8A014CE/FD879FF61A1D11ECA73A7933D8A014CE.roa
Signing time: Mon 20 Sep 2021 14:21:05 +0000
ROA not before: Mon 20 Sep 2021 14:21:02 +0000
ROA not after: Wed 31 Dec 2031 14:21:02 +0000
asID: 60171
IP address blocks: 102.223.52.0/22 maxlen: 24
2c0f:e878::/32 maxlen: 48
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36F633B/B03BB9A81A1D11EC8A2AE432D8A014CE/c5sTnQt5eLD3UOYYTSTPyyeHRXk.crl
rsync://rpki.afrinic.net/repository/member_repository/F36F633B/B03BB9A81A1D11EC8A2AE432D8A014CE/c5sTnQt5eLD3UOYYTSTPyyeHRXk.mft
rsync://rpki.afrinic.net/repository/afrinic/c5sTnQt5eLD3UOYYTSTPyyeHRXk.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 27 Nov 2024 00:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2 (0x2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36F633BAF/serialNumber=739B139D0B7978B0F750E6184D24CFCB27874579
Validity
Not Before: Sep 20 14:21:02 2021 GMT
Not After : Dec 31 14:21:02 2031 GMT
Subject: CN=614898d1-a7f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:bb:3c:fd:af:28:0a:17:94:19:3b:81:ab:0d:
ae:02:a9:d3:8b:1b:04:a0:68:4f:77:34:73:9d:24:
78:88:8c:4b:ed:02:5f:4a:b8:73:1f:2e:45:bb:d3:
76:ee:2b:23:19:3a:2f:aa:f0:30:7b:37:71:14:29:
04:c1:12:7f:73:e4:86:ce:61:bb:92:05:7b:fb:cb:
cb:3b:fc:79:f3:36:44:67:e1:7d:4b:03:93:7a:5d:
d2:aa:4c:78:dd:6b:39:70:0d:d2:4a:d5:7a:3b:f7:
ed:19:a4:7c:f0:7d:f7:8d:4b:2d:25:8f:79:47:6b:
03:a4:b5:78:3b:cf:96:a3:34:f5:46:66:f7:9b:c4:
37:5c:2b:d7:18:d1:c0:e4:65:1d:c3:6d:64:8a:81:
3e:93:a7:f9:56:ce:6b:31:28:7d:7c:b9:13:c0:53:
ed:c9:7a:07:98:ce:ba:46:60:6d:41:1c:7f:16:b6:
1a:cf:c8:59:54:80:05:fa:40:e5:38:63:9a:bf:bd:
c9:ff:03:79:2c:18:65:7f:22:73:fc:a0:03:d1:92:
54:43:db:70:20:11:80:49:65:85:a8:e8:54:c1:7f:
b6:6f:8c:51:5c:b7:98:74:03:d1:9d:67:77:2b:35:
64:77:33:89:57:28:84:8d:62:b2:a4:93:fe:0d:9f:
8f:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:85:E0:38:94:CB:93:8A:54:F4:3D:DE:34:0C:09:C2:B4:84:F7:52
X509v3 Authority Key Identifier:
keyid:73:9B:13:9D:0B:79:78:B0:F7:50:E6:18:4D:24:CF:CB:27:87:45:79
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36F633B/B03BB9A81A1D11EC8A2AE432D8A014CE/c5sTnQt5eLD3UOYYTSTPyyeHRXk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/c5sTnQt5eLD3UOYYTSTPyyeHRXk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36F633B/B03BB9A81A1D11EC8A2AE432D8A014CE/FD879FF61A1D11ECA73A7933D8A014CE.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.223.52.0/22
IPv6:
2c0f:e878::/32
Signature Algorithm: sha256WithRSAEncryption
3c:42:67:95:55:3f:7b:dd:c1:a4:5f:67:e6:a5:b2:98:d5:46:
22:8d:fb:d0:4e:15:f4:82:9a:fe:13:75:50:eb:a8:d9:8c:c3:
ff:a6:a9:03:b7:03:46:a6:00:2b:aa:8f:da:58:52:2e:dc:08:
d3:b8:0d:8f:8e:f8:01:d9:ea:51:78:db:82:e7:6c:97:23:fe:
de:98:ff:6f:bc:ba:15:7c:89:b0:43:cc:d3:91:73:82:a7:1b:
c1:1d:f6:9d:fc:fe:ad:14:78:85:be:13:75:2c:27:64:e6:d8:
52:19:1a:df:e2:e4:8a:14:d3:8e:89:5b:72:2b:d9:df:2c:98:
79:e1:42:d6:ef:0f:0e:4e:61:59:ac:20:7a:4e:bc:eb:04:1b:
9f:d9:82:34:1f:78:96:b9:22:69:b4:c2:57:43:9d:8d:7c:49:
8a:d9:56:0c:d0:dc:ec:05:a2:8b:c2:ac:6d:c5:6e:37:66:3e:
0b:cb:d0:a2:b8:8a:c7:84:8c:d5:33:ee:f2:ef:a5:2f:5b:87:
5a:29:84:dd:84:0b:68:45:17:8c:a2:1c:46:ca:03:72:98:e8:
57:9e:0f:f4:2f:ee:f9:66:40:ac:db:f5:6f:f7:f1:5b:1e:d8:
7c:04:e4:b0:8e:af:d0:cd:d8:2b:c5:a6:23:1b:e3:b2:48:c1:
5a:bd:aa:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 02:48:48 2024 by rpki-client on console-ams.rpki-client.org