Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3628DDE/BF78233A369E11E9A7D5E220F8AEA228/EE5F2E50369E11E98EDB1621F8AEA228.roa
File: EE5F2E50369E11E98EDB1621F8AEA228.roa (raw, json)
Hash identifier: weMqKqZKyHm0tyqjfHAxnqGFkomIgwidKnm2Dpx5xnA=
Subject key identifier: DC:52:55:BA:A8:2A:9D:26:FB:90:4D:13:D4:06:56:D8:DF:DE:31:52
Certificate issuer: /CN=F3628DDEAF/serialNumber=42B58CEEAA2C12E8F2DC98D644C20CF81CE1CE05
Certificate serial: 02
Authority key identifier: 42:B5:8C:EE:AA:2C:12:E8:F2:DC:98:D6:44:C2:0C:F8:1C:E1:CE:05
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/QrWM7qosEujy3JjWRMIM-BzhzgU.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3628DDE/BF78233A369E11E9A7D5E220F8AEA228/EE5F2E50369E11E98EDB1621F8AEA228.roa
Signing time: Fri 22 Feb 2019 12:39:45 +0000
ROA not before: Fri 22 Feb 2019 12:39:39 +0000
ROA not after: Tue 06 Nov 2029 12:39:39 +0000
asID: 36924
IP address blocks: 102.67.192.0/18 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3628DDE/BF78233A369E11E9A7D5E220F8AEA228/QrWM7qosEujy3JjWRMIM-BzhzgU.crl
rsync://rpki.afrinic.net/repository/member_repository/F3628DDE/BF78233A369E11E9A7D5E220F8AEA228/QrWM7qosEujy3JjWRMIM-BzhzgU.mft
rsync://rpki.afrinic.net/repository/afrinic/QrWM7qosEujy3JjWRMIM-BzhzgU.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2 (0x2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3628DDEAF/serialNumber=42B58CEEAA2C12E8F2DC98D644C20CF81CE1CE05
Validity
Not Before: Feb 22 12:39:39 2019 GMT
Not After : Nov 6 12:39:39 2029 GMT
Subject: CN=5c6fed90-ed9e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:ad:a9:ad:8e:bd:24:62:c0:5e:86:da:70:cd:
1b:9c:a9:fc:39:64:6b:ed:3c:a8:50:b1:e5:d6:9e:
c2:64:f6:fa:47:e2:84:f8:cd:0f:10:92:56:3e:96:
fe:28:86:39:d4:96:b9:00:2a:0e:c0:34:f2:99:72:
d7:28:1f:27:3f:89:aa:3d:cd:36:79:81:1c:fd:f2:
62:76:c8:5f:2a:22:58:0e:ac:4a:c8:03:ca:0b:59:
24:a8:70:97:55:05:14:0a:34:54:dd:aa:8a:12:b8:
71:c0:e0:98:ae:67:e4:2c:88:eb:e8:a1:9f:e1:4e:
cc:a4:4d:90:47:c7:f6:3b:e3:73:df:0d:48:3e:15:
d0:77:be:f9:60:d5:d9:9b:42:d1:08:f8:b1:0b:8f:
0e:77:20:20:9e:14:d1:0f:9e:e4:69:bd:0e:01:2d:
8e:6a:3b:2b:05:02:59:80:dc:4f:bf:6a:02:3c:d6:
e3:17:b7:1c:cd:4c:8e:2f:e8:44:a7:fe:6e:c1:b4:
cf:a7:c7:3a:e1:7d:a1:ad:e2:2a:03:2b:59:19:83:
60:3f:62:63:87:7d:99:5c:44:d4:76:2a:1c:93:30:
90:92:b1:8b:b2:29:ac:8f:b8:7d:67:95:f4:19:f3:
48:64:84:e3:ce:2d:f7:91:7d:91:12:94:07:9f:0c:
72:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:52:55:BA:A8:2A:9D:26:FB:90:4D:13:D4:06:56:D8:DF:DE:31:52
X509v3 Authority Key Identifier:
keyid:42:B5:8C:EE:AA:2C:12:E8:F2:DC:98:D6:44:C2:0C:F8:1C:E1:CE:05
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3628DDE/BF78233A369E11E9A7D5E220F8AEA228/QrWM7qosEujy3JjWRMIM-BzhzgU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/QrWM7qosEujy3JjWRMIM-BzhzgU.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3628DDE/BF78233A369E11E9A7D5E220F8AEA228/EE5F2E50369E11E98EDB1621F8AEA228.roa
sbgp-ipAddrBlock: critical
IPv4:
102.67.192.0/18
Signature Algorithm: sha256WithRSAEncryption
80:9f:58:27:01:28:2a:05:f0:95:05:e7:27:4f:c6:8d:7e:8b:
fb:78:70:36:e1:1d:84:28:75:0f:fb:75:3a:97:ee:d7:b8:b1:
75:32:25:cc:52:6c:52:6c:6b:da:f3:e1:42:13:3b:f6:61:22:
b4:b4:43:d2:70:7a:56:fa:69:ec:25:fd:3a:61:24:c2:e2:53:
63:7b:a1:b6:d2:11:01:be:8e:3d:aa:c0:f2:b2:87:59:c6:2b:
e7:c3:e6:41:3d:73:91:03:b6:8b:7e:24:b1:ea:e1:7b:6a:79:
3f:c9:b7:1a:35:f6:b7:cb:0c:74:04:0d:24:0c:08:b4:fa:1d:
f4:36:89:c1:b1:7c:ec:e8:36:2a:f9:13:8c:80:e7:84:17:ca:
41:07:e3:8f:1b:cb:e8:f8:58:8c:e3:13:0a:5a:73:ae:90:ff:
05:e5:1a:2e:22:3e:1a:66:db:5d:8d:2e:62:df:d8:c3:df:4f:
a2:4c:79:a6:54:04:c6:26:4d:53:57:48:55:5d:d4:72:ae:54:
80:94:4b:cc:ef:7f:c9:65:b9:5c:70:d4:a8:23:af:db:fc:78:
37:dd:5f:31:66:2c:b6:8d:0a:48:16:be:ed:00:f0:c8:7d:1e:
5f:0c:1c:0f:4a:e4:67:d4:cc:35:69:de:c5:b7:89:8d:0f:40:
db:01:7e:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:08:51 2024 by rpki-client on console-fra.rpki-client.org