Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36FD195/EA264EB6E7EB11ECA9161CA6F1222468/CF54421AE7EF11EC89F129B2F1222468.roa
File: CF54421AE7EF11EC89F129B2F1222468.roa (raw, json)
Hash identifier: ajGWSHVkqmLc/f7cPeugVsqBMXMh0oKeDqay1n/CA3g=
Subject key identifier: 28:2C:5E:DF:47:59:A6:22:F8:C1:6F:63:85:7A:5F:2C:11:30:96:65
Certificate issuer: /CN=F36FD195AF/serialNumber=4FD424B1E7C1D26104916A2764CE8ECE4522BD5E
Certificate serial: 05
Authority key identifier: 4F:D4:24:B1:E7:C1:D2:61:04:91:6A:27:64:CE:8E:CE:45:22:BD:5E
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/T9QksefB0mEEkWonZM6OzkUivV4.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36FD195/EA264EB6E7EB11ECA9161CA6F1222468/CF54421AE7EF11EC89F129B2F1222468.roa
Signing time: Thu 09 Jun 2022 12:29:30 +0000
ROA not before: Thu 09 Jun 2022 12:29:26 +0000
ROA not after: Wed 30 Jun 2049 12:29:26 +0000
asID: 327813
IP address blocks: 102.68.80.0/24 maxlen: 24
102.68.81.0/24 maxlen: 24
102.68.82.0/24 maxlen: 24
102.68.83.0/24 maxlen: 24
102.68.84.0/24 maxlen: 24
102.68.85.0/24 maxlen: 24
102.68.86.0/24 maxlen: 24
102.68.87.0/24 maxlen: 24
102.68.96.0/24 maxlen: 24
102.68.97.0/24 maxlen: 24
102.68.98.0/24 maxlen: 24
102.68.99.0/24 maxlen: 24
2c0f:f598::/48 maxlen: 48
2c0f:f598:1::/48 maxlen: 48
2c0f:f598:2::/48 maxlen: 48
2c0f:f598:3::/48 maxlen: 48
2c0f:f598:4::/48 maxlen: 48
2c0f:f598:5::/48 maxlen: 48
2c0f:f598:6::/48 maxlen: 48
2c0f:f598:7::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36FD195/EA264EB6E7EB11ECA9161CA6F1222468/T9QksefB0mEEkWonZM6OzkUivV4.crl
rsync://rpki.afrinic.net/repository/member_repository/F36FD195/EA264EB6E7EB11ECA9161CA6F1222468/T9QksefB0mEEkWonZM6OzkUivV4.mft
rsync://rpki.afrinic.net/repository/afrinic/T9QksefB0mEEkWonZM6OzkUivV4.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5 (0x5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36FD195AF/serialNumber=4FD424B1E7C1D26104916A2764CE8ECE4522BD5E
Validity
Not Before: Jun 9 12:29:26 2022 GMT
Not After : Jun 30 12:29:26 2049 GMT
Subject: CN=62a1e7aa-97a9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:29:3c:d9:9b:e4:0d:63:eb:74:4c:0d:ac:7d:
ea:e0:84:5b:cb:10:7d:87:be:2e:36:54:ed:78:55:
98:00:a5:d0:8f:ac:0f:e0:e8:c2:90:ad:07:68:ed:
c0:ab:29:7b:6d:7b:41:99:27:e5:e9:7c:b4:34:5b:
20:12:90:c0:55:a9:06:10:83:62:28:0d:02:d8:5f:
56:23:ac:cf:1d:81:a6:f1:33:68:f0:1c:35:8b:7f:
f6:33:5d:30:0b:28:5e:f1:3d:b4:56:e5:a5:e5:45:
75:36:9b:a0:b5:7c:48:06:ad:ba:52:95:5a:3f:29:
95:fe:61:bb:c0:72:3a:e8:17:a9:c6:00:91:da:f0:
23:a0:3c:96:52:af:0d:24:10:9f:3e:0e:bc:6e:1f:
3a:88:14:4f:4b:62:62:ad:69:a8:21:0e:a0:51:d1:
54:dd:e1:56:9b:19:5d:05:d9:31:2e:5b:dc:cd:9e:
75:64:d4:44:d9:e3:f6:0d:84:11:e4:48:ca:79:19:
27:c8:19:59:c9:9d:26:0f:12:2b:39:39:ef:50:a4:
dc:a9:69:b0:cd:ba:de:d2:fc:b1:eb:c7:26:9c:3c:
77:8e:62:f1:30:3f:26:1b:52:20:7b:79:ff:3b:b3:
e6:1c:e7:cf:5e:ac:84:27:12:c9:17:3b:2e:9d:3f:
e1:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:2C:5E:DF:47:59:A6:22:F8:C1:6F:63:85:7A:5F:2C:11:30:96:65
X509v3 Authority Key Identifier:
keyid:4F:D4:24:B1:E7:C1:D2:61:04:91:6A:27:64:CE:8E:CE:45:22:BD:5E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36FD195/EA264EB6E7EB11ECA9161CA6F1222468/T9QksefB0mEEkWonZM6OzkUivV4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/T9QksefB0mEEkWonZM6OzkUivV4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36FD195/EA264EB6E7EB11ECA9161CA6F1222468/CF54421AE7EF11EC89F129B2F1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.68.80.0/21
102.68.96.0/22
IPv6:
2c0f:f598::/45
Signature Algorithm: sha256WithRSAEncryption
81:bf:57:84:d3:a1:32:f4:55:a6:c3:9a:3b:d2:b3:11:2f:71:
bc:dd:9c:48:38:0f:58:43:2b:25:31:c5:b3:a2:39:5e:f2:c6:
97:6b:9b:13:4a:ad:58:c3:f6:1d:a9:cc:f6:06:f7:68:0b:a0:
1d:d6:da:d2:3d:fe:f1:89:e9:3d:0e:34:d1:dc:38:40:58:44:
c6:12:f1:90:c6:d4:12:58:ee:aa:30:e9:e5:ec:5e:5a:cd:9a:
0a:8f:fc:81:92:c2:a0:95:e8:b2:50:d5:da:ff:24:51:1f:8e:
e7:8f:e0:52:18:07:1f:84:6c:2f:c1:bd:f5:c2:8b:c5:4a:46:
b9:c2:fb:6e:74:18:7b:ea:cd:6a:7b:97:50:4f:3d:ac:c0:0f:
e2:a3:94:9b:38:6f:0c:6c:19:14:74:a8:19:80:72:d2:da:54:
17:5f:a2:65:68:ff:28:a9:6f:86:6f:63:9d:0f:6c:fc:b1:24:
8e:ef:b2:e0:8f:63:3c:6a:16:b1:74:b7:f6:d5:60:48:64:d7:
37:22:91:ac:b3:6f:13:7c:6d:e1:56:11:0c:ab:82:fc:d5:cb:
81:ad:c0:fa:86:bc:c4:91:02:83:8c:c3:b8:6f:79:55:ba:7c:
05:fa:5f:ae:30:22:85:b9:ce:89:a1:15:48:61:83:6c:c1:79:
4c:69:f5:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 03:53:01 2024 by rpki-client on console-fra.rpki-client.org