Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36252A7/89497A60E38311E99E55F585F8AEA228/E9F7B7D4E3A911E9BF86B122F8AEA228.roa
File: E9F7B7D4E3A911E9BF86B122F8AEA228.roa (raw, json)
Hash identifier: 9COidhiFaVCAPV0UHswnXt+QzIn+TW+J/QQrjMlznyw=
Subject key identifier: 6B:98:8D:4A:8D:8F:3D:4C:23:4D:F8:B6:D7:67:DA:4D:42:31:64:7B
Certificate issuer: /CN=F36252A7AF/serialNumber=027E1A4463C685FBD63863F9D3B23BAC2D93B168
Certificate serial: 06
Authority key identifier: 02:7E:1A:44:63:C6:85:FB:D6:38:63:F9:D3:B2:3B:AC:2D:93:B1:68
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/An4aRGPGhfvWOGP507I7rC2TsWg.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36252A7/89497A60E38311E99E55F585F8AEA228/E9F7B7D4E3A911E9BF86B122F8AEA228.roa
Signing time: Mon 30 Sep 2019 17:44:13 +0000
ROA not before: Mon 30 Sep 2019 17:44:08 +0000
ROA not after: Sun 30 Sep 2029 17:44:08 +0000
asID: 36985
IP address blocks: 154.66.64.0/20 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36252A7/89497A60E38311E99E55F585F8AEA228/An4aRGPGhfvWOGP507I7rC2TsWg.crl
rsync://rpki.afrinic.net/repository/member_repository/F36252A7/89497A60E38311E99E55F585F8AEA228/An4aRGPGhfvWOGP507I7rC2TsWg.mft
rsync://rpki.afrinic.net/repository/afrinic/An4aRGPGhfvWOGP507I7rC2TsWg.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6 (0x6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36252A7AF/serialNumber=027E1A4463C685FBD63863F9D3B23BAC2D93B168
Validity
Not Before: Sep 30 17:44:08 2019 GMT
Not After : Sep 30 17:44:08 2029 GMT
Subject: CN=5d923eed-79d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:8b:0b:d8:f4:44:e6:1b:71:3e:37:b5:7c:f2:
3e:18:ff:37:b1:30:8c:31:62:dc:5c:4f:49:27:75:
f4:af:b5:9c:90:83:d8:ce:6f:4b:c3:3a:ad:7e:dc:
6e:a3:1c:c1:57:2a:27:8b:da:14:90:cc:5f:eb:ce:
ba:0c:58:d0:0a:94:b8:c7:93:7d:28:9c:07:05:3a:
28:b5:19:cf:a2:be:53:5a:26:d9:b8:cd:c8:90:f3:
0b:4d:f5:ae:ab:42:6d:e3:9a:46:13:0e:f3:ac:fa:
d7:20:b8:63:b3:d4:47:78:f7:fe:87:6b:e8:23:6d:
6c:89:83:50:ff:51:76:7f:ff:dc:5c:81:bf:a8:b6:
d4:5b:e5:02:e1:06:b7:c4:39:2f:36:f3:b4:da:ad:
65:35:fd:59:1a:90:11:e2:f0:ee:07:c8:c3:eb:4c:
cf:f8:48:bd:80:a7:c1:86:18:f8:c6:72:14:5f:eb:
76:39:76:49:82:2b:7e:59:25:0f:90:da:56:22:a4:
e4:9d:46:f0:3d:cd:ca:7d:47:13:f2:27:79:69:c1:
bd:57:3c:ef:a4:dc:a7:00:ee:7a:9a:f8:fc:da:d5:
6e:cb:be:0b:f2:6e:86:95:5e:c2:b9:21:69:75:ee:
3e:db:ff:fd:37:78:ec:a4:a5:4d:bd:c4:94:e5:9f:
fa:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:98:8D:4A:8D:8F:3D:4C:23:4D:F8:B6:D7:67:DA:4D:42:31:64:7B
X509v3 Authority Key Identifier:
keyid:02:7E:1A:44:63:C6:85:FB:D6:38:63:F9:D3:B2:3B:AC:2D:93:B1:68
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36252A7/89497A60E38311E99E55F585F8AEA228/An4aRGPGhfvWOGP507I7rC2TsWg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/An4aRGPGhfvWOGP507I7rC2TsWg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36252A7/89497A60E38311E99E55F585F8AEA228/E9F7B7D4E3A911E9BF86B122F8AEA228.roa
sbgp-ipAddrBlock: critical
IPv4:
154.66.64.0/20
Signature Algorithm: sha256WithRSAEncryption
4f:67:45:8c:05:52:96:3b:f8:3c:59:27:5f:01:a6:e1:81:2c:
29:ec:87:7a:b9:a2:5d:29:a3:62:2e:d2:e4:fa:30:cd:72:bb:
d6:06:71:d6:c7:33:aa:dc:60:10:32:bc:cf:fc:1d:ef:d1:e0:
70:a7:b0:3b:e2:fc:03:c2:7a:db:ef:b5:91:d5:1d:b9:33:d2:
b6:af:a7:da:ef:6e:d4:e4:31:24:a1:e5:27:8c:cd:cc:25:c2:
8b:5b:cc:0f:f1:e0:5b:ef:96:93:b4:98:09:13:58:57:56:99:
27:80:29:83:bf:bb:fa:13:3e:08:15:13:47:e3:00:9d:2b:fc:
57:96:99:a6:ce:7b:0b:79:08:f7:52:53:d8:ef:f8:2d:4c:35:
44:35:93:51:52:0f:a7:1f:9a:a6:70:a9:5b:98:a2:bc:d7:e0:
d1:64:c0:d1:f3:5a:6d:f3:15:1c:31:ae:9f:df:9c:db:41:ba:
fa:f9:50:38:73:46:47:c0:78:e6:d5:ce:b5:a5:74:7f:87:7c:
cd:d4:96:8e:2e:fb:8b:2e:12:17:27:66:52:ba:3d:9b:33:97:
6e:1b:14:4f:f5:13:ce:ba:6e:00:db:58:27:41:ce:02:eb:6e:
a3:fa:32:15:17:61:60:f1:a1:38:60:77:5a:da:d5:7b:da:7f:
26:f9:58:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:03:31 2024 by rpki-client on console-ams.rpki-client.org