Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36FE19E/AB7E78BE48DF11EDA761B29CF1222468/BA5646848B9311EFB18C87BF762E951A.roa
File: BA5646848B9311EFB18C87BF762E951A.roa (raw, json)
Hash identifier: JPWhpnri236k1i+Gn96J/0YOtSYJC79c9FGJpIaebkg=
Subject key identifier: 4C:42:D4:F1:D3:74:B2:0F:B0:0E:13:18:36:20:42:D6:72:9E:D6:8A
Certificate issuer: /CN=F36FE19EAF/serialNumber=C78CDC3B5D4B13675CB48AD3B63BE01EC5A807F8
Certificate serial: 031A
Authority key identifier: C7:8C:DC:3B:5D:4B:13:67:5C:B4:8A:D3:B6:3B:E0:1E:C5:A8:07:F8
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/x4zcO11LE2dctIrTtjvgHsWoB_g.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36FE19E/AB7E78BE48DF11EDA761B29CF1222468/BA5646848B9311EFB18C87BF762E951A.roa
Signing time: Wed 16 Oct 2024 07:53:27 +0000
ROA not before: Wed 16 Oct 2024 07:53:24 +0000
ROA not after: Sun 31 Dec 2034 07:53:24 +0000
asID: 328977
IP address blocks: 102.207.164.0/22 maxlen: 24
2c0f:6300::/32 maxlen: 56
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36FE19E/AB7E78BE48DF11EDA761B29CF1222468/x4zcO11LE2dctIrTtjvgHsWoB_g.crl
rsync://rpki.afrinic.net/repository/member_repository/F36FE19E/AB7E78BE48DF11EDA761B29CF1222468/x4zcO11LE2dctIrTtjvgHsWoB_g.mft
rsync://rpki.afrinic.net/repository/afrinic/x4zcO11LE2dctIrTtjvgHsWoB_g.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 794 (0x31a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36FE19EAF/serialNumber=C78CDC3B5D4B13675CB48AD3B63BE01EC5A807F8
Validity
Not Before: Oct 16 07:53:24 2024 GMT
Not After : Dec 31 07:53:24 2034 GMT
Subject: CN=670f70f7-cda2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:12:9a:25:ba:9b:17:ac:ed:fb:ee:da:63:d9:
9a:f0:47:f1:d9:f1:6e:25:55:63:1d:30:d3:26:35:
0c:20:72:d4:27:dd:45:cf:b2:89:d5:78:91:19:12:
8c:6b:ed:61:a3:c5:81:49:b2:c2:89:ac:e3:79:93:
df:12:d8:d5:e3:82:f0:bf:6d:dc:ed:72:5b:62:cb:
0f:30:b7:7b:94:b6:cc:5e:99:bb:ec:e8:6c:51:32:
c3:27:b7:35:42:ae:bf:2f:ee:a4:9d:42:36:9f:31:
df:83:a2:71:43:e5:02:36:bc:e0:af:b2:5c:df:67:
d1:e3:0b:95:62:02:14:52:a3:b1:65:59:62:55:72:
fb:03:58:b3:ab:33:a0:5b:05:ee:b2:9d:cf:43:63:
01:a9:b1:5e:b6:df:75:54:b0:d8:1c:50:26:5f:8a:
ca:13:09:b4:5d:a1:39:9c:97:ad:f0:6d:c4:a4:cd:
01:de:cc:1e:2f:a9:03:42:39:17:37:84:c2:e3:3e:
a6:92:0c:1c:ca:e5:3f:95:d5:3b:18:1b:59:f5:92:
41:49:ae:83:93:26:1a:ca:bd:41:e1:b0:c3:b3:21:
b1:55:49:aa:b8:f2:ce:fb:29:fe:f9:c0:01:56:9c:
61:dc:c7:08:5d:f3:18:e8:cb:04:68:60:76:75:0e:
f2:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:42:D4:F1:D3:74:B2:0F:B0:0E:13:18:36:20:42:D6:72:9E:D6:8A
X509v3 Authority Key Identifier:
keyid:C7:8C:DC:3B:5D:4B:13:67:5C:B4:8A:D3:B6:3B:E0:1E:C5:A8:07:F8
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36FE19E/AB7E78BE48DF11EDA761B29CF1222468/x4zcO11LE2dctIrTtjvgHsWoB_g.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/x4zcO11LE2dctIrTtjvgHsWoB_g.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36FE19E/AB7E78BE48DF11EDA761B29CF1222468/BA5646848B9311EFB18C87BF762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.207.164.0/22
IPv6:
2c0f:6300::/32
Signature Algorithm: sha256WithRSAEncryption
38:1f:e5:a1:03:2a:9b:1c:cb:45:a1:63:6f:bb:87:4d:2c:ce:
14:d9:7a:d9:71:74:1c:f1:0d:34:69:d2:45:d6:84:cc:1a:c8:
ed:86:c1:ba:c1:0d:8c:55:36:7d:25:12:5d:92:c5:bc:6f:5e:
08:f8:47:5b:c0:ae:29:c6:60:ae:5c:f7:0b:c3:6c:8e:91:ef:
71:b4:ac:87:e6:cc:13:f5:0b:01:4c:3f:1a:2a:bd:b8:ab:3b:
c4:fa:76:2a:f6:f3:3c:fd:b6:d0:f7:a3:69:90:9e:90:48:fb:
2c:a6:10:62:2a:d9:b2:41:de:87:5c:6c:19:06:67:b9:c1:e1:
d8:ac:20:58:1b:a9:01:15:b3:5d:cf:f0:45:86:9e:b1:0f:f4:
e4:06:c7:f0:37:75:ee:52:bd:e1:4a:2b:d8:c4:e3:8d:a4:fb:
f3:a7:e4:7b:8d:f6:55:73:42:ad:a5:69:7a:e3:cc:46:65:4d:
dc:54:89:66:97:58:b7:91:b8:62:bf:67:0a:a6:27:d0:58:75:
c5:7b:55:e8:d4:12:48:b6:24:a3:f3:24:89:7e:1e:03:4d:43:
8b:a9:39:0b:97:20:c8:86:79:7c:e5:9e:7e:85:fa:77:9d:e5:
07:57:3e:49:08:5a:f1:39:3d:18:43:b9:09:93:57:87:a1:3d:
ff:1d:5d:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:05:34 2024 by rpki-client on console-ams.rpki-client.org