Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F363E214/871B4DD07D4A11E9AA09DF6FF8AEA228/3ACCA76E7D4D11E9BA82FB71F8AEA228.roa
File: 3ACCA76E7D4D11E9BA82FB71F8AEA228.roa (raw, json)
Hash identifier: yC1yqZLK/mn5O8oPUPstRFKqoZMenamr5HvhnVgkq2M=
Subject key identifier: 72:90:23:D4:FE:53:B7:52:E3:29:3B:CF:A9:78:85:2A:AB:3C:2B:73
Certificate issuer: /CN=F363E214AF/serialNumber=D5B8FA3AAD406962EFAACADF0002A1CCEF84B610
Certificate serial: 02
Authority key identifier: D5:B8:FA:3A:AD:40:69:62:EF:AA:CA:DF:00:02:A1:CC:EF:84:B6:10
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/1bj6Oq1AaWLvqsrfAAKhzO-EthA.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F363E214/871B4DD07D4A11E9AA09DF6FF8AEA228/3ACCA76E7D4D11E9BA82FB71F8AEA228.roa
Signing time: Thu 23 May 2019 11:23:47 +0000
ROA not before: Thu 23 May 2019 11:23:39 +0000
ROA not after: Thu 31 May 2029 11:23:39 +0000
asID: 327909
IP address blocks: 154.73.120.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F363E214/871B4DD07D4A11E9AA09DF6FF8AEA228/1bj6Oq1AaWLvqsrfAAKhzO-EthA.crl
rsync://rpki.afrinic.net/repository/member_repository/F363E214/871B4DD07D4A11E9AA09DF6FF8AEA228/1bj6Oq1AaWLvqsrfAAKhzO-EthA.mft
rsync://rpki.afrinic.net/repository/afrinic/1bj6Oq1AaWLvqsrfAAKhzO-EthA.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 07 May 2024 00:04:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2 (0x2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F363E214AF/serialNumber=D5B8FA3AAD406962EFAACADF0002A1CCEF84B610
Validity
Not Before: May 23 11:23:39 2019 GMT
Not After : May 31 11:23:39 2029 GMT
Subject: CN=5ce682c2-4f3a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:09:22:8f:96:d3:e5:8e:31:5e:eb:64:4a:a0:
8e:a7:43:51:d3:1d:31:e8:a8:0d:e7:ba:69:7d:ae:
ca:76:7f:84:e7:38:92:1d:92:5c:62:b1:e8:ba:67:
9c:46:45:8c:78:e6:05:2c:1b:24:5c:30:95:dc:b3:
84:11:97:0a:85:8a:17:3f:a8:b3:99:5f:ac:ec:da:
47:13:3b:f1:ff:7e:eb:4c:ee:b3:e7:d7:36:f3:12:
bf:75:f3:c0:4b:31:1e:c2:dd:e8:fa:6e:ac:67:41:
09:29:ae:2a:12:2e:a3:42:96:f4:d3:8d:32:ed:99:
19:1b:b0:de:0f:7e:a0:8e:21:11:40:b7:e0:2f:80:
67:54:31:4f:a6:05:09:d3:d4:78:ae:e2:59:f2:0c:
41:82:12:ab:82:fd:16:f1:79:ee:e2:80:84:69:53:
69:c0:6b:bf:76:db:19:78:b5:a8:95:1e:07:ce:04:
e6:ee:79:1c:2e:df:26:95:22:11:30:f8:43:ac:95:
6d:9e:bf:1e:00:49:8d:89:75:48:aa:4b:6c:9d:5d:
33:af:fa:bb:ad:9f:f6:bb:21:15:c9:d6:a9:66:bd:
7d:e0:94:13:a1:f7:9d:05:e0:eb:e4:d6:2b:b0:7a:
0d:3f:f4:d5:f9:d6:e1:4f:d0:03:26:6d:4b:09:3a:
7a:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:90:23:D4:FE:53:B7:52:E3:29:3B:CF:A9:78:85:2A:AB:3C:2B:73
X509v3 Authority Key Identifier:
keyid:D5:B8:FA:3A:AD:40:69:62:EF:AA:CA:DF:00:02:A1:CC:EF:84:B6:10
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F363E214/871B4DD07D4A11E9AA09DF6FF8AEA228/1bj6Oq1AaWLvqsrfAAKhzO-EthA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/1bj6Oq1AaWLvqsrfAAKhzO-EthA.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F363E214/871B4DD07D4A11E9AA09DF6FF8AEA228/3ACCA76E7D4D11E9BA82FB71F8AEA228.roa
sbgp-ipAddrBlock: critical
IPv4:
154.73.120.0/22
Signature Algorithm: sha256WithRSAEncryption
5f:fc:f6:32:54:1c:f6:1b:b5:0e:48:6c:39:8c:82:7b:fd:02:
d3:ea:75:bd:6d:11:b9:34:e3:41:a3:00:7f:0f:ff:0b:36:29:
55:dd:ff:56:8a:0e:9c:1c:f9:cc:7a:d0:f7:e4:e1:d1:13:3d:
2f:25:d8:77:07:ab:fe:b7:df:1f:04:6c:a1:5e:bc:6a:bb:59:
f0:20:44:15:55:13:e8:32:75:96:b4:b2:d7:01:7d:96:dd:49:
eb:19:20:f4:03:93:80:18:27:4e:de:4d:1c:d9:04:76:7b:9a:
28:06:26:40:d6:32:fd:cb:6c:eb:d0:64:6d:61:a1:fa:a7:38:
c1:8c:28:d7:a0:8a:d7:18:65:ba:c9:d0:1e:e1:8b:a0:f1:7e:
ba:d1:bb:0f:79:ba:a5:50:9f:94:cd:99:1b:d2:c0:a4:18:bd:
e9:0b:1b:f1:0a:df:8f:a2:63:18:f5:4b:72:ba:68:64:ac:6e:
87:ad:4b:c6:88:e4:21:8c:e3:6c:ca:2d:82:bc:cf:b6:3f:3e:
4a:82:e8:e1:bd:fa:dc:98:9e:c1:71:36:29:72:6b:31:f3:c8:
b2:d7:2f:03:b7:80:67:59:d8:a4:f9:06:11:26:a2:e3:25:1a:
be:47:de:23:87:96:a5:45:3d:e1:be:02:22:bd:11:05:71:72:
78:eb:71:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 5 02:12:19 2024 by rpki-client on console-ams.rpki-client.org