Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36472E5/8DB6547A56D711E585356D60F8AEA228/75BB83CECAEE11E9B8750B77F8AEA228.roa
File: 75BB83CECAEE11E9B8750B77F8AEA228.roa (raw, json)
Hash identifier: LHVz9xioiQqgDCsiihzIIq+BrjcIvxLKI5LrrXrO3Io=
Subject key identifier: DF:01:79:10:92:9A:E1:59:F3:E8:E3:57:BF:D2:5D:86:F2:76:1E:CD
Certificate issuer: /CN=F36472E5AF/serialNumber=86FED2ED19C2067A482221B645D60C45A4D56A9D
Certificate serial: 05D5
Authority key identifier: 86:FE:D2:ED:19:C2:06:7A:48:22:21:B6:45:D6:0C:45:A4:D5:6A:9D
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/hv7S7RnCBnpIIiG2RdYMRaTVap0.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36472E5/8DB6547A56D711E585356D60F8AEA228/75BB83CECAEE11E9B8750B77F8AEA228.roa
Signing time: Fri 30 Aug 2019 06:21:54 +0000
ROA not before: Fri 30 Aug 2019 06:21:50 +0000
ROA not after: Fri 29 Aug 2025 06:21:50 +0000
asID: 36874
IP address blocks: 196.22.240.0/21 maxlen: 21
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36472E5/8DB6547A56D711E585356D60F8AEA228/hv7S7RnCBnpIIiG2RdYMRaTVap0.crl
rsync://rpki.afrinic.net/repository/member_repository/F36472E5/8DB6547A56D711E585356D60F8AEA228/hv7S7RnCBnpIIiG2RdYMRaTVap0.mft
rsync://rpki.afrinic.net/repository/afrinic/hv7S7RnCBnpIIiG2RdYMRaTVap0.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1493 (0x5d5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36472E5AF/serialNumber=86FED2ED19C2067A482221B645D60C45A4D56A9D
Validity
Not Before: Aug 30 06:21:50 2019 GMT
Not After : Aug 29 06:21:50 2025 GMT
Subject: CN=5d68c082-e93e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:73:f7:8a:36:32:0d:8f:8d:49:39:10:a3:d6:
9b:db:99:16:8f:d6:98:9b:2c:e5:e1:e3:6b:76:de:
eb:bd:16:3e:94:49:ab:bf:5c:71:bc:86:65:a7:39:
72:6d:06:c6:35:86:34:30:37:ae:63:06:5c:a1:d9:
04:50:0a:41:98:72:9e:02:19:0d:28:4c:83:81:61:
fc:8b:b2:71:93:09:3f:e4:76:ff:35:88:67:04:30:
14:d9:1e:94:98:21:15:f5:aa:26:81:4e:3a:7d:e6:
40:e9:a0:dc:d3:aa:08:1b:c7:f2:1c:ff:35:88:16:
0c:5b:4c:22:fa:d9:b3:29:b7:42:a9:01:c8:ca:c4:
97:b4:dd:89:f2:96:05:4f:32:6e:20:7f:9c:42:65:
c4:40:ec:75:5f:c0:4c:0d:6c:26:02:2d:30:87:9c:
74:40:e7:77:2a:23:20:5d:38:59:ce:bb:b8:9d:ea:
04:f6:75:16:5e:f6:2f:23:f1:e7:44:8a:97:a6:1f:
9f:e0:19:54:d0:f7:47:dc:7b:42:5f:06:07:eb:98:
0c:73:9b:35:c6:27:e6:49:9f:dc:5e:81:17:87:38:
60:fd:65:aa:9a:9b:23:bf:99:66:11:e7:0c:c5:18:
c6:14:c3:e3:0b:9c:8c:87:4d:8a:d0:82:c1:af:1e:
88:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:01:79:10:92:9A:E1:59:F3:E8:E3:57:BF:D2:5D:86:F2:76:1E:CD
X509v3 Authority Key Identifier:
keyid:86:FE:D2:ED:19:C2:06:7A:48:22:21:B6:45:D6:0C:45:A4:D5:6A:9D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36472E5/8DB6547A56D711E585356D60F8AEA228/hv7S7RnCBnpIIiG2RdYMRaTVap0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/hv7S7RnCBnpIIiG2RdYMRaTVap0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36472E5/8DB6547A56D711E585356D60F8AEA228/75BB83CECAEE11E9B8750B77F8AEA228.roa
sbgp-ipAddrBlock: critical
IPv4:
196.22.240.0/21
Signature Algorithm: sha256WithRSAEncryption
a8:e3:7c:09:74:bd:fd:09:6d:4a:ea:9a:61:af:f2:24:a6:3c:
ec:1d:73:87:52:f5:db:83:91:84:00:d7:a0:6e:65:74:5b:16:
82:e0:69:d6:4c:0a:57:e4:62:bb:bb:a0:fc:2a:92:16:ee:62:
ee:20:e1:d1:d0:58:25:a0:e6:82:eb:b2:24:9d:4b:80:b0:bf:
58:db:b5:64:64:12:50:7b:dc:a8:b4:24:35:e1:5e:23:68:c1:
fe:6e:5a:0e:be:54:f3:15:e9:04:6f:ff:04:15:23:9c:5d:ae:
14:68:6d:a7:83:0b:ad:bd:b8:5e:2f:55:09:b4:0c:0d:00:98:
a8:42:62:b2:9b:82:ad:7e:d4:82:9f:72:2e:2b:38:52:44:05:
3f:d5:2b:40:11:11:c5:f2:00:5f:44:68:ae:36:dc:e5:64:3b:
9b:cf:ff:45:79:e0:1d:84:3b:19:c3:5f:b2:2b:f6:db:41:a8:
d3:f0:6f:79:51:a4:cc:89:54:b7:b8:16:dd:14:5c:97:0a:1b:
af:fe:94:9d:56:3e:49:5d:a9:ba:86:bb:0a:80:5b:c7:e5:b1:
36:3c:39:9c:0e:1f:b3:ff:1f:9c:0c:25:90:1f:0d:2c:c6:ee:
19:2b:63:ad:be:75:01:b7:67:b3:db:d0:16:b5:06:8c:06:bb:
04:8c:68:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 01:34:53 2024 by rpki-client on console-ams.rpki-client.org