Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36E3D7F/B705EAF241A611EA881A6728F8AEA228/443EBD6241A811EA84388729F8AEA228.roa
File: 443EBD6241A811EA84388729F8AEA228.roa (raw, json)
Hash identifier: o59pcGOHWagM0kpsGDB8LxfFbqsjjNdAr5DBZ/fqJyw=
Subject key identifier: A5:E7:FA:11:76:E7:4C:FA:44:9F:C0:44:11:33:DF:23:47:94:21:EE
Certificate issuer: /CN=F36E3D7FAF/serialNumber=965C8C35B0F10F8EA5DBDA544F291B6CA9283B5D
Certificate serial: 02
Authority key identifier: 96:5C:8C:35:B0:F1:0F:8E:A5:DB:DA:54:4F:29:1B:6C:A9:28:3B:5D
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/llyMNbDxD46l29pUTykbbKkoO10.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36E3D7F/B705EAF241A611EA881A6728F8AEA228/443EBD6241A811EA84388729F8AEA228.roa
Signing time: Tue 28 Jan 2020 08:29:15 +0000
ROA not before: Tue 28 Jan 2020 08:29:10 +0000
ROA not after: Thu 31 Jan 2030 08:29:10 +0000
asID: 31713
IP address blocks: 41.221.209.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36E3D7F/B705EAF241A611EA881A6728F8AEA228/llyMNbDxD46l29pUTykbbKkoO10.crl
rsync://rpki.afrinic.net/repository/member_repository/F36E3D7F/B705EAF241A611EA881A6728F8AEA228/llyMNbDxD46l29pUTykbbKkoO10.mft
rsync://rpki.afrinic.net/repository/afrinic/llyMNbDxD46l29pUTykbbKkoO10.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 19 May 2024 00:04:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2 (0x2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36E3D7FAF/serialNumber=965C8C35B0F10F8EA5DBDA544F291B6CA9283B5D
Validity
Not Before: Jan 28 08:29:10 2020 GMT
Not After : Jan 31 08:29:10 2030 GMT
Subject: CN=5e2ff0db-3d49
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:50:67:a3:e4:17:06:40:6b:c7:a4:28:86:2b:
f4:ab:0b:97:99:6f:43:1f:0e:21:63:1a:fd:de:a3:
d1:0f:86:7e:23:3e:83:d0:f2:c7:cd:2f:2e:c2:e5:
ed:69:49:e7:a1:74:80:a0:f5:10:2a:b2:50:a0:98:
9d:cc:12:4a:06:0f:12:dc:76:c1:d6:33:23:7b:eb:
31:f7:c9:67:f0:eb:e2:19:e1:e7:5f:11:2d:bc:f7:
d7:17:7a:d9:1a:d3:6e:2d:0e:b3:5a:92:60:d4:83:
18:01:f0:58:8d:60:21:a5:28:9c:b2:68:1e:64:ef:
81:72:70:b6:ce:14:41:1f:1c:a4:7c:33:e5:34:a9:
76:69:da:6b:ce:1c:b7:e6:df:7c:87:f4:3a:57:69:
ca:7f:e3:fc:04:2b:ea:65:29:21:67:21:22:4c:9e:
0a:f1:98:9e:48:84:6f:7a:ef:70:a8:78:67:a1:a6:
71:cd:14:9d:b2:47:fd:f3:8e:fd:f8:17:44:d8:d4:
7c:b6:ae:62:42:0f:a3:45:fb:d2:7e:59:d1:78:db:
9c:fe:76:60:b3:94:69:9f:4d:54:c8:50:b1:cd:fb:
c7:ed:0b:84:a6:85:07:01:ce:0a:8c:ba:35:35:c7:
30:d3:2e:23:ba:33:f9:e1:f8:98:ca:f4:40:fa:b0:
3e:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:E7:FA:11:76:E7:4C:FA:44:9F:C0:44:11:33:DF:23:47:94:21:EE
X509v3 Authority Key Identifier:
keyid:96:5C:8C:35:B0:F1:0F:8E:A5:DB:DA:54:4F:29:1B:6C:A9:28:3B:5D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36E3D7F/B705EAF241A611EA881A6728F8AEA228/llyMNbDxD46l29pUTykbbKkoO10.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/llyMNbDxD46l29pUTykbbKkoO10.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36E3D7F/B705EAF241A611EA881A6728F8AEA228/443EBD6241A811EA84388729F8AEA228.roa
sbgp-ipAddrBlock: critical
IPv4:
41.221.209.0/24
Signature Algorithm: sha256WithRSAEncryption
9c:89:99:cd:c1:d8:98:ee:83:66:7a:52:3f:71:cf:a7:5c:d0:
c2:20:d8:6d:88:f1:0d:7c:c7:08:6e:e9:3b:90:80:4c:a9:2f:
ec:e7:3a:9b:bd:f4:cb:71:d1:ef:37:c4:c8:73:ac:0a:45:b9:
41:3c:4d:cb:ee:f5:b1:18:b7:a4:96:91:7d:54:8a:2a:47:b2:
4a:1a:c8:1d:98:b9:23:ce:c7:38:7c:18:ad:37:8d:d3:84:f1:
d2:82:da:db:04:90:a3:9e:56:c4:3b:58:8f:cc:f2:a7:08:c0:
b6:e9:72:5f:be:a0:36:4a:15:d8:83:d4:a6:76:30:e2:a2:9f:
b3:02:e4:8a:5d:ab:6b:39:2a:a3:d7:51:a8:65:c8:a6:b0:d1:
60:8d:74:09:17:a4:6f:77:cc:75:46:70:4d:2a:31:e1:f1:de:
42:1c:89:80:99:7b:69:60:78:be:23:a5:dd:60:61:59:3e:ac:
40:05:4d:44:58:6f:3d:aa:ea:51:cd:68:2a:be:78:7e:34:39:
ab:fa:bf:10:af:45:e1:31:32:1f:3b:9d:c6:57:ff:9c:a2:b3:
b9:4e:29:47:b6:f1:fc:a0:e8:10:da:35:3c:ff:a7:4e:fc:94:
56:6d:6d:2f:c6:3a:67:56:a3:8f:a8:ac:3e:14:d2:62:8f:17:
9a:05:09:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 17 02:01:36 2024 by rpki-client on console-ams.rpki-client.org