Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3643835/D5B994A8D55E11E9B7571043F8AEA228/96F143A4E4E711E9B8915410F8AEA228.roa
File: 96F143A4E4E711E9B8915410F8AEA228.roa (raw, json)
Hash identifier: zm3YN7AFZ7BWxdBhPzmjQdqjaH4X6z5W4MSW9J0ipCo=
Subject key identifier: B8:72:31:A4:1D:80:60:C9:14:4B:E6:F4:2D:20:94:D7:31:1B:A6:F6
Certificate issuer: /CN=F3643835AF/serialNumber=428A89318E5067DD9C8ECF67E77E79C5FDA3792B
Certificate serial: 1D
Authority key identifier: 42:8A:89:31:8E:50:67:DD:9C:8E:CF:67:E7:7E:79:C5:FD:A3:79:2B
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/QoqJMY5QZ92cjs9n5355xf2jeSs.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3643835/D5B994A8D55E11E9B7571043F8AEA228/96F143A4E4E711E9B8915410F8AEA228.roa
Signing time: Wed 02 Oct 2019 07:38:14 +0000
ROA not before: Wed 02 Oct 2019 07:38:09 +0000
ROA not after: Wed 31 Oct 2029 07:38:09 +0000
asID: 37712
IP address blocks: 41.79.89.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3643835/D5B994A8D55E11E9B7571043F8AEA228/QoqJMY5QZ92cjs9n5355xf2jeSs.crl
rsync://rpki.afrinic.net/repository/member_repository/F3643835/D5B994A8D55E11E9B7571043F8AEA228/QoqJMY5QZ92cjs9n5355xf2jeSs.mft
rsync://rpki.afrinic.net/repository/afrinic/QoqJMY5QZ92cjs9n5355xf2jeSs.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 29 Apr 2024 20:21:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 29 (0x1d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3643835AF/serialNumber=428A89318E5067DD9C8ECF67E77E79C5FDA3792B
Validity
Not Before: Oct 2 07:38:09 2019 GMT
Not After : Oct 31 07:38:09 2029 GMT
Subject: CN=5d9453e5-a202
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:19:23:18:d7:2f:2b:d9:d7:6b:76:8d:62:c3:
41:45:c9:cb:cc:11:79:0f:fb:83:da:31:57:55:bc:
a6:fe:ab:bd:2e:2a:3a:16:d3:2a:b3:56:b8:28:c8:
ae:c3:fd:e5:a7:bb:cd:80:30:5b:98:08:b7:92:13:
83:1d:10:b8:c0:91:5f:dd:b3:52:94:f4:a2:7e:01:
60:a6:b6:fd:65:bf:11:c0:54:89:7b:74:0e:06:f9:
33:a9:4e:36:90:02:18:f2:d6:2b:36:8d:78:ed:f4:
4d:48:5b:15:72:97:c8:da:bb:31:75:1b:f1:fb:92:
fc:46:ad:49:a0:b5:a1:03:85:54:8e:8a:a9:c3:6e:
37:b2:c7:a8:a2:f4:1a:eb:c4:5a:6e:87:97:bf:41:
8d:d7:a2:3c:81:3f:9a:f0:7b:0e:34:59:da:30:45:
a6:67:3e:68:28:53:9c:4f:c0:12:69:85:5a:70:77:
cd:12:36:91:44:55:fb:d3:04:92:04:df:19:75:c1:
ba:68:f8:02:43:ec:cd:fa:c2:97:c1:ed:2a:65:98:
7e:23:17:c2:dd:b0:e3:c3:c1:ae:e8:4e:2b:36:14:
a7:26:a4:f9:a4:b1:16:69:9a:fa:2c:59:a9:80:33:
0c:1a:5e:c4:75:aa:9d:0d:7e:56:d9:7d:61:dd:9a:
b8:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:72:31:A4:1D:80:60:C9:14:4B:E6:F4:2D:20:94:D7:31:1B:A6:F6
X509v3 Authority Key Identifier:
keyid:42:8A:89:31:8E:50:67:DD:9C:8E:CF:67:E7:7E:79:C5:FD:A3:79:2B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3643835/D5B994A8D55E11E9B7571043F8AEA228/QoqJMY5QZ92cjs9n5355xf2jeSs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/QoqJMY5QZ92cjs9n5355xf2jeSs.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3643835/D5B994A8D55E11E9B7571043F8AEA228/96F143A4E4E711E9B8915410F8AEA228.roa
sbgp-ipAddrBlock: critical
IPv4:
41.79.89.0/24
Signature Algorithm: sha256WithRSAEncryption
7e:c9:9c:e1:88:54:86:09:6d:40:84:5c:fa:c5:68:a4:07:ca:
44:fe:ea:be:16:de:b7:a2:67:a4:3e:a2:97:68:58:2e:1c:98:
34:da:30:79:c4:98:01:d4:55:54:2d:3c:a6:aa:8d:32:23:8f:
e3:32:ef:4c:21:ae:dc:de:11:9a:2e:4b:0a:b0:eb:c8:47:bc:
87:56:42:f4:ff:09:2f:d8:f9:4e:13:44:cd:d8:7a:ff:aa:9e:
fe:c5:91:3c:88:cd:78:69:dd:94:e1:ef:4a:32:d3:53:30:55:
69:5a:20:da:a3:00:f1:be:b5:68:c1:c8:ed:f4:ef:b4:ac:4e:
1e:f4:7b:b5:83:b6:6f:18:da:d1:1d:45:b9:dd:9a:9c:6a:5a:
64:28:6e:8f:f0:68:f6:d5:7e:65:8e:d4:72:0c:cb:56:ee:5a:
a5:53:05:72:d9:03:d9:04:91:69:c2:95:f1:55:56:6e:5f:32:
14:ca:45:57:fd:2a:4b:4a:b5:ae:4f:77:52:f8:f4:e6:d9:36:
5c:aa:05:af:60:54:59:0d:95:8e:82:0c:48:41:7f:33:1d:89:
96:eb:d2:10:d2:47:b7:da:3b:c4:6a:c2:5f:98:1c:d6:15:dc:
08:01:73:c3:b2:44:80:d0:9e:4c:fb:69:78:de:b1:74:43:ac:
82:e8:94:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 27 21:41:06 2024 by rpki-client on console-ams.rpki-client.org