Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36472E5/8DB6547A56D711E585356D60F8AEA228/5DC47678CAED11E9859E2C76F8AEA228.roa
File: 5DC47678CAED11E9859E2C76F8AEA228.roa (raw, json)
Hash identifier: +mStn8j1lsfaOcAkA+IpFnx3VVw/ZA+elfj24TZJJoA=
Subject key identifier: 74:41:C8:A3:6A:41:16:C2:F5:F8:C4:61:B0:E9:A4:88:C2:59:4A:12
Certificate issuer: /CN=F36472E5AF/serialNumber=86FED2ED19C2067A482221B645D60C45A4D56A9D
Certificate serial: 05CB
Authority key identifier: 86:FE:D2:ED:19:C2:06:7A:48:22:21:B6:45:D6:0C:45:A4:D5:6A:9D
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/hv7S7RnCBnpIIiG2RdYMRaTVap0.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36472E5/8DB6547A56D711E585356D60F8AEA228/5DC47678CAED11E9859E2C76F8AEA228.roa
Signing time: Fri 30 Aug 2019 06:14:04 +0000
ROA not before: Fri 30 Aug 2019 06:14:00 +0000
ROA not after: Fri 29 Aug 2025 06:14:00 +0000
asID: 36874
IP address blocks: 41.177.128.0/17 maxlen: 17
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36472E5/8DB6547A56D711E585356D60F8AEA228/hv7S7RnCBnpIIiG2RdYMRaTVap0.crl
rsync://rpki.afrinic.net/repository/member_repository/F36472E5/8DB6547A56D711E585356D60F8AEA228/hv7S7RnCBnpIIiG2RdYMRaTVap0.mft
rsync://rpki.afrinic.net/repository/afrinic/hv7S7RnCBnpIIiG2RdYMRaTVap0.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1483 (0x5cb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36472E5AF/serialNumber=86FED2ED19C2067A482221B645D60C45A4D56A9D
Validity
Not Before: Aug 30 06:14:00 2019 GMT
Not After : Aug 29 06:14:00 2025 GMT
Subject: CN=5d68beac-61d7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:ac:ab:c2:31:5a:ad:17:fc:96:a9:9f:9c:a2:
3e:b2:c4:6d:18:b6:87:3b:93:2a:9a:e7:6c:5d:ec:
25:83:85:d5:b8:df:d5:10:4d:40:fc:cf:15:52:5d:
57:06:2d:1c:60:bc:a9:5a:a0:ef:06:49:9c:f0:95:
9a:c4:c0:7b:a5:64:da:fb:e3:a6:05:05:8a:b5:9e:
0e:07:df:3b:b7:c7:28:ec:08:46:f7:6d:60:a1:0f:
8d:63:d6:07:14:cd:95:58:c3:4d:f6:3f:76:ed:78:
11:16:62:aa:9d:26:8c:63:40:ba:c7:23:32:4c:27:
1a:f1:63:6c:07:58:70:10:77:dc:47:67:cd:7c:b0:
8d:f0:65:ea:75:b3:24:31:5c:cb:18:e7:da:eb:7e:
60:db:7b:59:ce:4e:66:55:43:da:91:ba:8e:d1:86:
1e:82:13:ca:12:81:84:fb:61:da:be:77:87:58:01:
5c:e9:39:93:36:95:4d:34:db:47:02:51:af:84:8e:
bf:a2:a1:a5:7c:76:f4:b3:3c:1f:4f:83:a7:29:8c:
e9:f4:eb:b0:4e:03:b3:73:f7:71:62:98:56:5c:3f:
e8:66:89:5a:75:d0:84:4f:80:de:0e:50:ae:02:19:
b7:cb:be:18:5a:2d:c2:bb:cd:24:e7:4b:fe:d4:a4:
61:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:41:C8:A3:6A:41:16:C2:F5:F8:C4:61:B0:E9:A4:88:C2:59:4A:12
X509v3 Authority Key Identifier:
keyid:86:FE:D2:ED:19:C2:06:7A:48:22:21:B6:45:D6:0C:45:A4:D5:6A:9D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36472E5/8DB6547A56D711E585356D60F8AEA228/hv7S7RnCBnpIIiG2RdYMRaTVap0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/hv7S7RnCBnpIIiG2RdYMRaTVap0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36472E5/8DB6547A56D711E585356D60F8AEA228/5DC47678CAED11E9859E2C76F8AEA228.roa
sbgp-ipAddrBlock: critical
IPv4:
41.177.128.0/17
Signature Algorithm: sha256WithRSAEncryption
7d:ec:a6:26:c7:19:f1:9b:74:84:69:8f:8f:32:60:37:3e:d4:
7a:b0:42:57:a0:71:58:d4:15:1c:7a:af:0a:93:01:a4:32:cd:
6c:61:38:12:c3:41:0c:1f:fa:28:35:fc:35:ec:70:09:6a:e7:
35:d8:c1:41:a4:06:11:27:e9:24:59:37:d3:49:69:5f:d0:66:
98:a8:c9:33:41:08:88:26:84:5d:d4:41:f0:1e:da:4f:d5:e3:
43:56:8c:ce:1c:5d:cf:08:72:3d:a2:65:69:7b:65:a8:06:05:
0c:78:ab:ea:45:b1:40:b2:c7:fa:fb:9a:2d:0d:2f:4d:b3:66:
2a:be:3b:4e:1c:51:4f:09:64:d3:7d:a4:41:83:19:8d:24:8a:
74:32:8e:f2:4e:6a:5e:d1:67:ad:4c:18:40:22:e9:d7:06:53:
17:cc:38:32:a5:ed:f2:e4:32:5f:eb:18:8a:34:03:fa:de:62:
9f:d8:d9:ba:42:50:15:67:2a:92:26:7b:92:08:a6:61:20:a4:
67:04:1d:fc:01:3c:c0:db:56:52:0f:77:a8:eb:21:b5:6d:68:
d8:97:5f:48:a4:bf:ae:dc:b2:7a:f7:97:b8:78:65:20:23:ab:
c8:32:1a:e7:fe:7e:3a:b6:a1:e4:60:ea:af:00:ca:03:f7:42:
04:b0:36:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:08:53 2024 by rpki-client on console-fra.rpki-client.org