Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36472E5/8DB6547A56D711E585356D60F8AEA228/0475EE6856D811E5B0E8AA60F8AEA228.roa
File: 0475EE6856D811E5B0E8AA60F8AEA228.roa (raw, json)
Hash identifier: rnfvCe8zm7FPtXxrLAwPlwPmid5ucEEvHSHMH0qNarY=
Subject key identifier: 7F:25:8E:94:60:AF:1C:93:EB:0E:C1:0D:43:BB:37:8B:08:55:20:B3
Certificate issuer: /CN=F36472E5AF/serialNumber=86FED2ED19C2067A482221B645D60C45A4D56A9D
Certificate serial: 02
Authority key identifier: 86:FE:D2:ED:19:C2:06:7A:48:22:21:B6:45:D6:0C:45:A4:D5:6A:9D
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/hv7S7RnCBnpIIiG2RdYMRaTVap0.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36472E5/8DB6547A56D711E585356D60F8AEA228/0475EE6856D811E5B0E8AA60F8AEA228.roa
Signing time: Wed 09 Sep 2015 09:49:06 +0000
ROA not before: Wed 09 Sep 2015 09:49:20 +0000
ROA not after: Tue 09 Sep 2025 09:49:20 +0000
asID: 36874
IP address blocks: 196.6.121.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36472E5/8DB6547A56D711E585356D60F8AEA228/hv7S7RnCBnpIIiG2RdYMRaTVap0.crl
rsync://rpki.afrinic.net/repository/member_repository/F36472E5/8DB6547A56D711E585356D60F8AEA228/hv7S7RnCBnpIIiG2RdYMRaTVap0.mft
rsync://rpki.afrinic.net/repository/afrinic/hv7S7RnCBnpIIiG2RdYMRaTVap0.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 22 Apr 2024 00:04:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2 (0x2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36472E5AF/serialNumber=86FED2ED19C2067A482221B645D60C45A4D56A9D
Validity
Not Before: Sep 9 09:49:20 2015 GMT
Not After : Sep 9 09:49:20 2025 GMT
Subject: CN=55f00091-0d31
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:d7:e1:5a:29:8f:f5:b2:8c:72:a5:e1:35:34:
2b:d6:d1:e5:b5:23:5a:9f:f7:6a:e0:cc:2d:50:fa:
2b:9c:8f:c0:9e:a9:8b:5e:81:21:73:1e:06:0b:6e:
45:df:b4:d2:a5:ee:ae:6a:8e:b0:f0:4f:fb:5f:f7:
c2:41:9a:d3:80:9e:60:a3:97:ab:6a:64:e5:10:ac:
64:67:5a:18:ad:b2:b2:de:00:b9:b5:a1:d4:44:4f:
cf:55:d4:e2:a2:07:c5:49:8c:cb:f4:53:fa:ef:b4:
8b:5d:ec:58:37:45:87:80:eb:45:5d:60:b6:80:b0:
5a:95:bb:f0:41:dd:e6:5a:d0:41:d2:d9:33:31:38:
9e:50:81:b6:c0:8f:62:23:90:f4:fa:94:2b:cc:dc:
c8:df:84:7d:dd:40:1c:02:0a:e2:2d:d7:6d:0d:47:
e8:23:f5:e1:82:74:06:8a:a8:4d:2c:37:a5:b3:78:
99:00:80:17:50:50:8c:1d:8d:31:84:ac:8b:70:52:
93:39:ed:4e:95:c5:fe:78:b3:85:db:91:dd:72:da:
a7:f0:13:e4:d8:19:5f:7d:24:89:13:9c:2f:3a:f8:
47:b4:a1:e5:c7:db:1b:38:9a:2c:b1:ce:86:f0:ea:
3d:9b:70:6a:1e:25:2b:e8:28:60:cb:4d:af:7b:6c:
4c:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:25:8E:94:60:AF:1C:93:EB:0E:C1:0D:43:BB:37:8B:08:55:20:B3
X509v3 Authority Key Identifier:
keyid:86:FE:D2:ED:19:C2:06:7A:48:22:21:B6:45:D6:0C:45:A4:D5:6A:9D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36472E5/8DB6547A56D711E585356D60F8AEA228/hv7S7RnCBnpIIiG2RdYMRaTVap0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/hv7S7RnCBnpIIiG2RdYMRaTVap0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36472E5/8DB6547A56D711E585356D60F8AEA228/0475EE6856D811E5B0E8AA60F8AEA228.roa
sbgp-ipAddrBlock: critical
IPv4:
196.6.121.0/24
Signature Algorithm: sha256WithRSAEncryption
b1:71:9d:7e:c0:15:94:e7:f5:11:5c:bf:7d:cd:58:d5:ee:ea:
e6:bb:85:b7:47:a6:8e:11:58:69:48:bd:2e:1a:95:0f:40:3e:
8d:19:69:c9:14:8f:90:b6:a3:d5:03:e2:ac:72:7b:dd:3b:af:
7a:5e:1d:97:5b:63:bd:f6:eb:90:83:69:e9:ae:51:de:ce:cb:
16:9d:4c:c3:74:fb:9d:f1:ed:94:31:65:64:cb:86:fd:61:7e:
36:75:6f:16:fa:e1:14:86:d5:a3:9e:8b:bb:1e:77:f3:11:c4:
57:2e:c8:a2:66:5f:3e:28:73:f0:f0:a1:a8:78:a4:f5:62:de:
cb:a3:90:de:2d:b4:84:1f:0f:83:d9:dd:a3:74:ca:5c:30:9d:
b3:1a:63:45:ab:d4:d9:0d:a3:f5:98:80:0b:c9:ee:13:da:d3:
ac:de:2c:5d:26:5a:60:36:fe:0d:fb:24:94:a8:40:9b:fd:97:
1c:e5:6d:4f:d6:57:1a:58:c9:1e:2d:15:64:75:ac:fd:3c:e6:
70:0b:a0:44:36:7e:6b:7d:49:f8:47:1a:fe:8a:4a:7f:a1:ad:
ec:40:bf:6c:02:d3:21:98:5e:79:2f:6d:64:53:ea:53:32:98:
67:55:96:6b:0a:94:d4:9f:7f:00:48:0f:00:c3:53:ea:0e:77:
69:14:19:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 20 01:02:43 2024 by rpki-client on console-fra.rpki-client.org