Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F367890A/D5950BFE814611E98A26EC23F8AEA228/1385324820B311EA8A79CB75F8AEA228.roa
File: 1385324820B311EA8A79CB75F8AEA228.roa (raw, json)
Hash identifier: E+0kaNnyaz2XaAgp2UmW3UiOevGh8K77GCjxHRNxjgk=
Subject key identifier: BB:FC:09:82:07:B9:35:89:84:36:57:5C:79:65:35:D7:93:D1:57:CE
Certificate issuer: /CN=F367890AAF/serialNumber=0D5D9B092FE39C87F93BCB94CAC3F6C91D16C8EB
Certificate serial: E7
Authority key identifier: 0D:5D:9B:09:2F:E3:9C:87:F9:3B:CB:94:CA:C3:F6:C9:1D:16:C8:EB
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/DV2bCS_jnIf5O8uUysP2yR0WyOs.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F367890A/D5950BFE814611E98A26EC23F8AEA228/1385324820B311EA8A79CB75F8AEA228.roa
Signing time: Tue 17 Dec 2019 09:53:29 +0000
ROA not before: Tue 17 Dec 2019 09:53:25 +0000
ROA not after: Mon 31 Dec 2029 09:53:25 +0000
asID: 0
IP address blocks: 196.10.141.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F367890A/D5950BFE814611E98A26EC23F8AEA228/DV2bCS_jnIf5O8uUysP2yR0WyOs.crl
rsync://rpki.afrinic.net/repository/member_repository/F367890A/D5950BFE814611E98A26EC23F8AEA228/DV2bCS_jnIf5O8uUysP2yR0WyOs.mft
rsync://rpki.afrinic.net/repository/afrinic/DV2bCS_jnIf5O8uUysP2yR0WyOs.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 27 Apr 2024 00:04:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 231 (0xe7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F367890AAF/serialNumber=0D5D9B092FE39C87F93BCB94CAC3F6C91D16C8EB
Validity
Not Before: Dec 17 09:53:25 2019 GMT
Not After : Dec 31 09:53:25 2029 GMT
Subject: CN=5df8a599-e00d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:2e:b6:8b:54:ff:04:bb:ae:14:13:44:10:5a:
a2:13:e0:90:b6:05:fe:4d:5e:5c:55:e7:2d:c6:9b:
88:ba:6b:ed:ac:52:4c:bd:cc:5f:82:dc:8f:06:18:
59:5b:9e:05:b8:fc:0e:3e:b5:6b:56:2c:ea:0e:c3:
01:63:2d:17:40:78:f1:68:d5:c8:11:1a:8d:0d:41:
58:86:c5:ee:33:04:6e:52:ed:91:9f:a6:7f:9f:a0:
4f:89:96:dc:21:b9:8c:19:37:c8:d1:2d:ef:c3:d9:
ed:cf:15:13:51:ed:df:03:bc:84:a1:d8:a7:18:48:
2e:d8:58:25:4b:2e:81:79:c7:bc:12:e3:11:9d:ea:
8c:d4:12:dc:8d:c8:33:da:6c:b3:5e:a4:c9:15:6d:
4c:5b:fc:8e:d2:33:bf:d3:d2:e1:b7:e8:27:7b:b4:
88:6f:82:37:16:21:01:6a:3d:0f:b4:f0:1e:e8:d2:
8e:79:17:d5:3a:f4:05:65:4d:b7:83:a2:cf:08:0a:
47:e3:89:d8:8d:55:cf:34:01:38:5a:11:66:f2:39:
7a:46:93:9e:d0:97:7b:0e:6c:50:57:ff:03:3e:36:
bd:d2:87:22:8b:67:48:5a:e2:57:bb:70:c1:44:4b:
d5:c8:f4:68:e7:9e:15:31:4d:91:45:cf:06:85:68:
e4:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:FC:09:82:07:B9:35:89:84:36:57:5C:79:65:35:D7:93:D1:57:CE
X509v3 Authority Key Identifier:
keyid:0D:5D:9B:09:2F:E3:9C:87:F9:3B:CB:94:CA:C3:F6:C9:1D:16:C8:EB
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F367890A/D5950BFE814611E98A26EC23F8AEA228/DV2bCS_jnIf5O8uUysP2yR0WyOs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/DV2bCS_jnIf5O8uUysP2yR0WyOs.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F367890A/D5950BFE814611E98A26EC23F8AEA228/1385324820B311EA8A79CB75F8AEA228.roa
sbgp-ipAddrBlock: critical
IPv4:
196.10.141.0/24
Signature Algorithm: sha256WithRSAEncryption
83:99:f3:60:7a:93:03:b9:08:88:f3:0c:6c:77:54:a3:f2:a5:
77:9b:d4:5a:d7:b5:4e:c8:d0:6d:aa:7b:48:9e:a2:2f:15:72:
4c:a3:85:dd:ff:0b:ec:e3:82:ae:97:1e:48:d3:c6:0a:4c:3e:
09:f1:28:5b:9b:ea:c2:a7:23:89:0e:75:8b:7c:13:74:d2:ff:
54:0e:8d:92:95:ef:37:50:e4:45:cd:ec:05:08:40:66:ef:5b:
a1:f8:d0:03:4e:f0:60:ca:96:04:fc:3b:98:e5:ff:78:2d:99:
9b:ac:43:ee:a2:00:03:d7:4d:29:73:4a:b6:6c:37:70:e1:3f:
64:49:53:f5:cc:8b:9d:f2:42:f1:15:6f:a7:b4:64:6e:de:7d:
a5:8a:d4:a8:96:ef:50:79:3a:f1:13:30:ce:95:f5:1d:2d:bd:
6b:51:d1:a0:15:94:c0:1a:d4:44:68:46:61:51:aa:96:54:38:
2d:b7:f7:5a:0f:f5:30:d3:31:3d:16:3d:bd:ae:ba:91:1b:6a:
d0:82:73:40:42:ad:f1:5d:8f:04:6c:36:45:70:0c:fe:dc:9a:
73:88:01:80:13:42:0b:a0:f6:50:8e:3a:f8:65:55:a3:29:0d:
b3:f0:b5:27:91:e7:13:00:18:ee:91:fa:8c:10:fc:51:4b:47:
cf:f9:26:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 25 02:05:21 2024 by rpki-client on console-fra.rpki-client.org