Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36374C9/42E9387278AB11E5BFBA862AF8AEA228/95B9A0DC542E11E68362481EF8AEA228.roa
File: 95B9A0DC542E11E68362481EF8AEA228.roa (raw, json)
Hash identifier: 8UoC48UqoDeH69RSkPNH1+FjRJDyG7fYrZ/nLYWEfIs=
Subject key identifier: EB:FF:C4:9C:7C:86:18:D8:39:49:69:9D:EB:DB:81:43:EC:79:09:E6
Certificate issuer: /CN=F36374C9AF/serialNumber=25F0B10CA2E4DFB3ABE8016B8319E15511C33A1C
Certificate serial: 011F
Authority key identifier: 25:F0:B1:0C:A2:E4:DF:B3:AB:E8:01:6B:83:19:E1:55:11:C3:3A:1C
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JfCxDKLk37Or6AFrgxnhVRHDOhw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36374C9/42E9387278AB11E5BFBA862AF8AEA228/95B9A0DC542E11E68362481EF8AEA228.roa
Signing time: Wed 27 Jul 2016 19:16:15 +0000
ROA not before: Wed 27 Jul 2016 19:16:03 +0000
ROA not after: Wed 31 Dec 2025 19:16:03 +0000
asID: 37640
IP address blocks: 154.66.88.0/21 maxlen: 24
2c0f:f470::/32 maxlen: 48
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36374C9/42E9387278AB11E5BFBA862AF8AEA228/JfCxDKLk37Or6AFrgxnhVRHDOhw.crl
rsync://rpki.afrinic.net/repository/member_repository/F36374C9/42E9387278AB11E5BFBA862AF8AEA228/JfCxDKLk37Or6AFrgxnhVRHDOhw.mft
rsync://rpki.afrinic.net/repository/afrinic/JfCxDKLk37Or6AFrgxnhVRHDOhw.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 287 (0x11f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36374C9AF/serialNumber=25F0B10CA2E4DFB3ABE8016B8319E15511C33A1C
Validity
Not Before: Jul 27 19:16:03 2016 GMT
Not After : Dec 31 19:16:03 2025 GMT
Subject: CN=5799087f-ed8c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:84:99:77:d5:70:43:3d:1f:52:f7:6e:f7:01:
79:63:11:3b:79:05:a5:20:c8:6d:24:a2:15:bb:d3:
44:2c:63:cf:68:1a:5b:09:e4:a6:00:df:19:a9:4a:
89:ce:62:1a:79:85:91:13:aa:e4:49:aa:32:4b:4e:
35:10:ee:7e:ba:a6:df:65:57:eb:8f:2c:7d:62:e3:
bf:53:6e:6e:49:54:92:b6:7c:1b:43:49:48:83:54:
56:c2:89:7b:43:70:16:cb:f4:f1:3d:b6:08:99:e0:
97:73:eb:dd:1a:71:5a:18:f6:cb:65:8a:74:1a:ad:
a2:29:f6:12:a0:ca:17:5d:6d:d8:33:c4:7f:60:89:
7a:12:b7:55:71:62:3b:d7:7f:c8:5a:35:dc:dc:94:
87:07:8d:23:46:7f:48:81:7b:5c:84:1c:a6:09:a1:
30:e1:1e:97:d0:14:c2:07:7a:47:0c:60:ab:ca:c6:
c4:cf:47:83:33:5b:7b:a5:cc:f3:d1:14:f6:c4:e2:
f2:8f:4d:45:a2:c8:96:d2:23:3a:11:c9:0d:8a:6c:
3b:d4:70:b7:fd:e3:dc:a6:70:2a:ba:bd:72:9b:fd:
85:1f:f7:14:a6:f3:5d:18:82:ae:84:f1:ce:e6:2e:
f3:db:7b:b3:12:82:67:5e:e0:ea:43:c1:4c:f5:c8:
13:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:FF:C4:9C:7C:86:18:D8:39:49:69:9D:EB:DB:81:43:EC:79:09:E6
X509v3 Authority Key Identifier:
keyid:25:F0:B1:0C:A2:E4:DF:B3:AB:E8:01:6B:83:19:E1:55:11:C3:3A:1C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36374C9/42E9387278AB11E5BFBA862AF8AEA228/JfCxDKLk37Or6AFrgxnhVRHDOhw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JfCxDKLk37Or6AFrgxnhVRHDOhw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36374C9/42E9387278AB11E5BFBA862AF8AEA228/95B9A0DC542E11E68362481EF8AEA228.roa
sbgp-ipAddrBlock: critical
IPv4:
154.66.88.0/21
IPv6:
2c0f:f470::/32
Signature Algorithm: sha256WithRSAEncryption
44:b0:20:e8:20:a2:d7:2e:4d:ec:3d:99:d5:a9:50:6c:80:df:
2d:f6:a3:c5:7c:27:4f:48:c8:b6:a6:22:2a:58:f3:f6:c6:e6:
0d:54:27:02:59:c0:49:8a:2a:0a:f0:db:e7:61:d1:5c:86:29:
83:2b:f7:4b:2d:64:62:1f:bf:4d:2c:9e:78:cb:e1:ab:81:a9:
64:18:8c:34:89:b3:27:a9:52:66:ef:c6:c5:26:7f:17:ad:13:
66:3e:c3:de:cd:ce:ab:85:f3:40:2a:9f:14:00:c4:4a:a8:f9:
1e:af:2f:a0:87:0d:ff:01:96:65:f9:df:2d:df:55:c0:d0:be:
ad:3b:40:b5:91:4d:a4:63:a6:81:e8:98:70:c2:28:f4:cf:82:
91:db:ed:0e:4e:51:3b:ad:b5:73:74:b5:49:d5:35:47:91:66:
96:4e:42:7f:b8:e0:05:d3:d5:e1:30:b9:da:34:de:09:fd:92:
cf:61:55:5f:1b:38:c8:a6:9d:c4:8a:94:ca:e5:0a:26:8d:b8:
04:4a:15:e3:40:20:50:ea:ad:d3:59:f6:48:e6:84:a0:c4:ca:
a8:64:f0:e4:9e:9f:49:08:a8:db:2c:dd:39:d5:dd:bd:51:a1:
d3:69:58:9f:ea:cc:4f:80:6a:2b:6e:34:8c:00:7b:2b:c3:7c:
9d:33:2c:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:03:32 2024 by rpki-client on console-ams.rpki-client.org