Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F363E214/871B4DD07D4A11E9AA09DF6FF8AEA228/7B80003A7D4D11E98C653A72F8AEA228.roa
File: 7B80003A7D4D11E98C653A72F8AEA228.roa (raw, json)
Hash identifier: Pf4+vucLWS0+RlRnSnEIXgYSOdRPDXw0o293VLaPD8U=
Subject key identifier: 76:AD:7A:61:65:5E:E5:7D:28:03:09:09:C3:58:ED:EC:B1:33:0E:24
Certificate issuer: /CN=F363E214AF/serialNumber=D5B8FA3AAD406962EFAACADF0002A1CCEF84B610
Certificate serial: 04
Authority key identifier: D5:B8:FA:3A:AD:40:69:62:EF:AA:CA:DF:00:02:A1:CC:EF:84:B6:10
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/1bj6Oq1AaWLvqsrfAAKhzO-EthA.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F363E214/871B4DD07D4A11E9AA09DF6FF8AEA228/7B80003A7D4D11E98C653A72F8AEA228.roa
Signing time: Thu 23 May 2019 11:25:35 +0000
ROA not before: Thu 23 May 2019 11:25:30 +0000
ROA not after: Thu 31 May 2029 11:25:30 +0000
asID: 327909
IP address blocks: 154.65.88.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F363E214/871B4DD07D4A11E9AA09DF6FF8AEA228/1bj6Oq1AaWLvqsrfAAKhzO-EthA.crl
rsync://rpki.afrinic.net/repository/member_repository/F363E214/871B4DD07D4A11E9AA09DF6FF8AEA228/1bj6Oq1AaWLvqsrfAAKhzO-EthA.mft
rsync://rpki.afrinic.net/repository/afrinic/1bj6Oq1AaWLvqsrfAAKhzO-EthA.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:04:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4 (0x4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F363E214AF/serialNumber=D5B8FA3AAD406962EFAACADF0002A1CCEF84B610
Validity
Not Before: May 23 11:25:30 2019 GMT
Not After : May 31 11:25:30 2029 GMT
Subject: CN=5ce6832f-e20c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:a5:3d:8f:1b:13:a6:0b:73:67:61:cb:c3:c9:
df:33:d0:46:22:16:97:47:b9:c4:61:52:e6:b8:aa:
6d:45:37:4f:f0:a5:5a:04:a5:4b:eb:8d:e9:34:4d:
72:e5:4b:e2:90:bf:40:10:d5:a6:fe:cb:a3:ec:39:
ac:9b:1c:d3:70:aa:4f:77:ff:22:50:22:95:65:22:
e8:21:29:61:3a:69:83:22:b3:ec:5c:97:ac:3f:4e:
61:03:ab:a3:d4:59:ca:3f:b0:f5:cd:d5:e2:fb:40:
70:1e:a8:19:b7:c2:df:15:ae:76:4e:09:4d:3c:e9:
26:4f:f4:a1:fb:89:39:cf:25:83:7a:71:1e:0f:2c:
cd:1b:c2:4c:bb:c8:ff:27:85:43:7f:58:fa:ce:16:
95:82:20:41:c8:56:cf:ce:cb:50:19:1e:e6:0f:66:
64:03:94:87:87:30:9d:ce:f5:69:0a:74:95:0c:77:
62:42:d0:fe:f9:fb:31:5c:3c:93:bb:5b:7d:c7:6c:
2e:58:a8:90:84:58:cb:4b:7b:08:fe:1e:77:a7:de:
5d:f5:78:40:61:25:ae:1e:20:f0:53:af:78:4b:e7:
c4:22:d2:1f:90:f4:9b:bf:ef:10:6f:de:f1:53:5f:
07:62:60:5f:50:48:84:aa:0b:b9:4a:ed:2a:90:69:
d7:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:AD:7A:61:65:5E:E5:7D:28:03:09:09:C3:58:ED:EC:B1:33:0E:24
X509v3 Authority Key Identifier:
keyid:D5:B8:FA:3A:AD:40:69:62:EF:AA:CA:DF:00:02:A1:CC:EF:84:B6:10
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F363E214/871B4DD07D4A11E9AA09DF6FF8AEA228/1bj6Oq1AaWLvqsrfAAKhzO-EthA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/1bj6Oq1AaWLvqsrfAAKhzO-EthA.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F363E214/871B4DD07D4A11E9AA09DF6FF8AEA228/7B80003A7D4D11E98C653A72F8AEA228.roa
sbgp-ipAddrBlock: critical
IPv4:
154.65.88.0/21
Signature Algorithm: sha256WithRSAEncryption
09:bb:8e:6e:30:80:73:76:ef:02:7e:70:b2:0c:bf:b0:ae:9a:
35:5c:9d:54:64:88:ee:3d:7b:a7:b8:18:e0:ed:d2:2e:e0:56:
66:23:17:49:28:ae:8e:54:e4:63:59:e6:38:0c:f9:b1:22:5b:
e0:4a:cd:95:b8:32:17:58:26:51:58:be:67:e1:f3:96:81:62:
a4:d6:a4:c3:12:c5:0b:1d:73:95:d6:f7:af:d3:49:fa:7d:fb:
c9:a5:0f:3b:c7:87:a6:3c:fe:22:28:5e:2a:c4:2a:49:85:19:
75:c6:79:fe:e4:4a:b7:a1:8f:bf:fc:00:78:4b:77:c1:ec:52:
ba:ef:4d:d4:d2:7d:73:96:8a:19:33:96:dd:3a:e1:01:c9:15:
3f:e2:d7:3c:59:55:37:b8:5b:30:0d:f2:d3:fc:bf:90:b6:52:
82:88:9c:83:b9:3e:fc:1d:93:dd:df:b5:0a:8c:aa:80:fd:df:
54:79:65:2f:35:b2:01:5e:84:de:53:3a:f8:a6:2f:eb:7f:8b:
04:d8:6c:9f:98:0d:b8:7d:5b:de:d5:66:e2:4d:80:b8:2e:d0:
d1:cc:da:53:f0:cf:74:68:9a:8a:a9:ed:77:6e:ad:c5:da:30:
94:ca:90:bf:d2:60:60:f6:4f:c5:ff:a0:05:89:8b:e9:85:ec:
a7:e3:3a:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 01:46:57 2024 by rpki-client on console-ams.rpki-client.org