Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36F64AB/DCCA8196C21811EBB1E35E72F8AEA228/4899E0ACD4D811EB8DA9EC3CF8AEA228.roa
File: 4899E0ACD4D811EB8DA9EC3CF8AEA228.roa (raw, json)
Hash identifier: 3pJ4HB7wITUTkgYu8cl/NNvjNYppyF94Z1pyAadIaYI=
Subject key identifier: F3:E1:6C:F3:E8:5E:B3:0A:BA:FB:63:F3:ED:92:C9:E1:5C:F3:70:71
Certificate issuer: /CN=F36F64ABAF/serialNumber=7DF6AEFA75918AD5B40E99565E0966AB43DBE188
Certificate serial: 21
Authority key identifier: 7D:F6:AE:FA:75:91:8A:D5:B4:0E:99:56:5E:09:66:AB:43:DB:E1:88
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/ffau-nWRitW0DplWXglmq0Pb4Yg.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36F64AB/DCCA8196C21811EBB1E35E72F8AEA228/4899E0ACD4D811EB8DA9EC3CF8AEA228.roa
Signing time: Thu 24 Jun 2021 10:38:16 +0000
ROA not before: Thu 24 Jun 2021 10:38:11 +0000
ROA not after: Wed 30 Apr 2031 10:38:11 +0000
asID: 327750
IP address blocks: 102.222.88.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36F64AB/DCCA8196C21811EBB1E35E72F8AEA228/ffau-nWRitW0DplWXglmq0Pb4Yg.crl
rsync://rpki.afrinic.net/repository/member_repository/F36F64AB/DCCA8196C21811EBB1E35E72F8AEA228/ffau-nWRitW0DplWXglmq0Pb4Yg.mft
rsync://rpki.afrinic.net/repository/afrinic/ffau-nWRitW0DplWXglmq0Pb4Yg.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 31 May 2024 00:04:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 33 (0x21)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36F64ABAF/serialNumber=7DF6AEFA75918AD5B40E99565E0966AB43DBE188
Validity
Not Before: Jun 24 10:38:11 2021 GMT
Not After : Apr 30 10:38:11 2031 GMT
Subject: CN=60d46098-3ece
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:84:3f:17:44:20:80:ab:35:e5:3f:a8:97:6e:
8f:83:8c:21:3b:15:ef:94:9a:8d:d4:44:83:75:e3:
9f:e5:45:49:5e:0d:4c:b0:db:b8:19:cb:57:c8:88:
b9:d4:80:47:67:6d:05:df:e9:89:54:7b:90:0b:9d:
3e:d0:ae:d9:8e:aa:41:78:58:e2:df:36:8e:d9:3b:
f8:79:da:85:d8:d9:1e:58:95:18:51:2e:60:c1:64:
41:1d:64:48:a9:f0:ea:53:44:ab:36:49:b3:42:24:
4a:ff:62:4a:a5:af:2a:ee:e3:b7:ff:74:98:f7:ea:
5a:94:ad:cc:39:1f:ce:5e:55:dc:ab:38:86:c7:34:
a4:b7:2e:02:37:42:75:70:ab:2d:a9:14:d6:9d:9e:
66:ce:35:77:9b:d4:64:35:8c:ba:c3:6a:68:ba:6a:
20:63:89:11:6c:42:92:aa:7d:92:01:04:0a:76:19:
90:80:93:3f:4d:fd:1f:75:7c:eb:4f:36:5f:19:3a:
bd:60:d2:b2:68:ed:c3:98:ba:9b:0c:2b:ee:5b:4f:
f4:f3:a6:41:93:04:59:06:66:87:a5:5d:4d:6c:93:
f5:cc:d4:d1:e6:57:9e:4d:79:9f:ea:59:aa:74:46:
4f:6d:07:ad:a3:00:ee:68:22:20:0d:95:bd:41:49:
75:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:E1:6C:F3:E8:5E:B3:0A:BA:FB:63:F3:ED:92:C9:E1:5C:F3:70:71
X509v3 Authority Key Identifier:
keyid:7D:F6:AE:FA:75:91:8A:D5:B4:0E:99:56:5E:09:66:AB:43:DB:E1:88
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36F64AB/DCCA8196C21811EBB1E35E72F8AEA228/ffau-nWRitW0DplWXglmq0Pb4Yg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/ffau-nWRitW0DplWXglmq0Pb4Yg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36F64AB/DCCA8196C21811EBB1E35E72F8AEA228/4899E0ACD4D811EB8DA9EC3CF8AEA228.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.222.88.0/22
Signature Algorithm: sha256WithRSAEncryption
9a:0e:f7:20:3a:05:6e:47:f8:b3:60:74:08:da:10:c0:2d:37:
ee:3a:c1:23:82:d2:5d:53:78:d6:e5:6a:dc:98:d4:c3:9d:6a:
51:b1:ef:61:4c:d1:49:fe:f0:c9:9a:74:b7:f6:92:c0:61:99:
b1:89:a5:73:2e:15:63:a6:fa:37:4f:03:be:d8:a7:d7:3f:f3:
6f:23:61:f9:ca:db:44:85:24:11:52:70:6c:1c:70:ef:68:d6:
a8:39:c4:76:66:e3:34:93:f7:c9:42:37:21:07:ff:48:c4:ec:
58:dd:05:76:be:f6:d5:d7:09:ba:d6:c6:e1:a0:58:38:aa:82:
53:c6:50:e9:77:0d:ed:dc:e8:94:32:12:e5:ce:c4:21:ac:ca:
d5:93:5e:e3:da:03:00:72:aa:d2:45:e5:1b:86:40:11:d8:37:
e6:1e:3e:64:21:21:13:63:8b:c4:53:fd:c3:ea:15:86:1c:f6:
c6:85:c4:f9:b4:73:4c:fd:53:aa:e0:49:71:d1:e0:8f:96:f8:
4b:b0:0c:5e:54:5f:a8:02:ab:1d:00:bd:54:32:e7:f7:3b:94:
4c:a6:e8:46:16:a3:f0:c5:67:c7:35:61:32:2d:39:cc:94:fa:
9f:7c:77:d9:f7:ff:52:1b:b5:e5:b0:6c:09:36:f9:e0:61:a3:
d1:71:d5:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 29 02:49:51 2024 by rpki-client on console-fra.rpki-client.org