Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F363AFA1/8FD2877E950C11EA8189FA61F8AEA228/5F67E3D8950F11EA910FD564F8AEA228.roa
File: 5F67E3D8950F11EA910FD564F8AEA228.roa (raw, json)
Hash identifier: bjjrHbYjjqSz0f2JiVlDTz/pMXp7IwzgwakXgKQfPxE=
Subject key identifier: 1E:F0:9F:3A:24:AD:6F:A0:90:CC:CE:D2:EA:00:01:0E:AF:02:54:33
Certificate issuer: /CN=F363AFA1AF/serialNumber=8F8C0979F73CE852DB9A4B81F79511C42F9D1B33
Certificate serial: 04
Authority key identifier: 8F:8C:09:79:F7:3C:E8:52:DB:9A:4B:81:F7:95:11:C4:2F:9D:1B:33
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/j4wJefc86FLbmkuB95URxC-dGzM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F363AFA1/8FD2877E950C11EA8189FA61F8AEA228/5F67E3D8950F11EA910FD564F8AEA228.roa
Signing time: Wed 13 May 2020 11:46:25 +0000
ROA not before: Wed 13 May 2020 11:46:19 +0000
ROA not after: Fri 31 May 2030 11:46:19 +0000
asID: 36996
IP address blocks: 197.188.0.0/16 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F363AFA1/8FD2877E950C11EA8189FA61F8AEA228/j4wJefc86FLbmkuB95URxC-dGzM.crl
rsync://rpki.afrinic.net/repository/member_repository/F363AFA1/8FD2877E950C11EA8189FA61F8AEA228/j4wJefc86FLbmkuB95URxC-dGzM.mft
rsync://rpki.afrinic.net/repository/afrinic/j4wJefc86FLbmkuB95URxC-dGzM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4 (0x4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F363AFA1AF/serialNumber=8F8C0979F73CE852DB9A4B81F79511C42F9D1B33
Validity
Not Before: May 13 11:46:19 2020 GMT
Not After : May 31 11:46:19 2030 GMT
Subject: CN=5ebbde11-46b2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f5:3e:0f:c6:9e:bb:d0:0c:34:97:b0:67:fd:72:
0f:d6:45:7b:b8:00:42:b9:6d:da:f7:ce:00:f4:4c:
fc:01:ff:5f:b0:4f:71:c7:f9:f8:05:0a:e3:6b:73:
3a:dc:26:2e:5d:02:10:4d:0d:d3:cf:f8:0d:6a:1a:
31:e2:81:59:07:28:ee:ec:b1:b7:46:c2:5f:6e:9f:
22:b5:cb:82:16:ec:59:ac:f2:f6:42:ec:6e:c6:cd:
ab:24:0c:21:f4:8e:1e:be:0b:bb:68:3b:03:dd:12:
a4:c2:67:87:32:62:ed:d2:24:fe:53:46:6a:1a:e2:
a2:58:68:c5:35:60:d6:62:5e:a7:c6:9f:18:bb:e7:
ad:f5:22:a2:85:41:98:28:84:78:85:cf:b5:39:28:
66:23:47:fc:d3:19:44:3b:33:c3:c6:e1:e1:1f:9a:
35:08:3c:7d:ce:f7:d6:36:36:cf:8f:3a:1c:a0:80:
8d:f5:39:e6:94:80:20:85:0f:9d:ca:a3:f7:50:6e:
23:e9:60:08:30:41:dd:0f:2c:af:a4:12:e0:94:d2:
e0:7b:29:22:31:58:a6:ae:ea:97:1b:a1:ff:2d:d6:
15:9b:75:a5:83:56:4b:53:e4:91:14:8d:dc:29:91:
bd:53:44:a7:e6:7d:61:fe:66:b9:fd:e7:b0:2c:5e:
7d:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:F0:9F:3A:24:AD:6F:A0:90:CC:CE:D2:EA:00:01:0E:AF:02:54:33
X509v3 Authority Key Identifier:
keyid:8F:8C:09:79:F7:3C:E8:52:DB:9A:4B:81:F7:95:11:C4:2F:9D:1B:33
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F363AFA1/8FD2877E950C11EA8189FA61F8AEA228/j4wJefc86FLbmkuB95URxC-dGzM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/j4wJefc86FLbmkuB95URxC-dGzM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F363AFA1/8FD2877E950C11EA8189FA61F8AEA228/5F67E3D8950F11EA910FD564F8AEA228.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
197.188.0.0/16
Signature Algorithm: sha256WithRSAEncryption
42:77:58:b6:03:c6:49:b8:37:fa:5e:1b:86:f3:9a:1d:c0:97:
16:a4:d9:5f:ae:b6:6d:96:bc:41:9e:42:e8:93:f9:f6:27:af:
51:27:e7:7c:53:f3:fd:7e:67:e5:4b:46:43:d3:d6:f1:13:1f:
59:d0:b0:f1:68:9e:f8:f4:61:21:f4:f6:7d:85:e8:57:ec:b4:
3f:7c:e4:b0:ef:4d:31:60:1b:0a:9c:4f:71:d9:52:d5:15:8b:
06:3e:35:c0:78:41:11:5a:67:9c:46:c5:17:18:d9:e6:92:f0:
23:b0:e6:b8:ae:33:10:95:ee:ac:17:d4:bc:57:b2:72:52:cf:
fe:89:d3:08:89:30:b8:c0:5d:6f:17:71:1f:30:f2:13:a6:15:
91:fa:71:c7:f8:fb:d8:2f:1b:3e:1a:46:64:1b:11:d0:5a:1a:
e8:fd:97:89:73:ef:68:1b:36:95:dd:84:27:eb:b7:24:fe:99:
a0:04:6f:9c:46:1e:e1:a1:03:d4:26:c7:0b:19:f1:b3:79:29:
bd:e8:d2:54:42:90:c1:71:53:c2:78:ad:b4:39:64:ac:82:49:
58:6a:53:18:5a:98:7c:d5:66:36:1b:02:e0:17:bc:1a:70:6c:
fa:51:a1:53:5f:8f:ba:00:e9:ff:69:d4:c5:ee:24:0d:b8:ac:
ca:46:c7:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:03:33 2024 by rpki-client on console-ams.rpki-client.org