Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36472E5/8DB6547A56D711E585356D60F8AEA228/8611EC46CAED11E989D36576F8AEA228.roa
File: 8611EC46CAED11E989D36576F8AEA228.roa (raw, json)
Hash identifier: FshGOOOuJbA/9loXNipyvDMsi9pllSp+7FKxuJNVYeU=
Subject key identifier: A7:95:08:8F:CD:CE:7A:21:BF:7A:04:C6:4F:50:0F:3E:97:31:4E:32
Certificate issuer: /CN=F36472E5AF/serialNumber=86FED2ED19C2067A482221B645D60C45A4D56A9D
Certificate serial: 05CD
Authority key identifier: 86:FE:D2:ED:19:C2:06:7A:48:22:21:B6:45:D6:0C:45:A4:D5:6A:9D
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/hv7S7RnCBnpIIiG2RdYMRaTVap0.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36472E5/8DB6547A56D711E585356D60F8AEA228/8611EC46CAED11E989D36576F8AEA228.roa
Signing time: Fri 30 Aug 2019 06:15:12 +0000
ROA not before: Fri 30 Aug 2019 06:15:07 +0000
ROA not after: Fri 29 Aug 2025 06:15:07 +0000
asID: 36874
IP address blocks: 196.41.96.0/20 maxlen: 20
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36472E5/8DB6547A56D711E585356D60F8AEA228/hv7S7RnCBnpIIiG2RdYMRaTVap0.crl
rsync://rpki.afrinic.net/repository/member_repository/F36472E5/8DB6547A56D711E585356D60F8AEA228/hv7S7RnCBnpIIiG2RdYMRaTVap0.mft
rsync://rpki.afrinic.net/repository/afrinic/hv7S7RnCBnpIIiG2RdYMRaTVap0.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 18 Apr 2024 00:04:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1485 (0x5cd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36472E5AF/serialNumber=86FED2ED19C2067A482221B645D60C45A4D56A9D
Validity
Not Before: Aug 30 06:15:07 2019 GMT
Not After : Aug 29 06:15:07 2025 GMT
Subject: CN=5d68bef0-58c5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:5d:be:c3:4f:98:6d:5e:a0:78:40:28:64:6f:
ae:85:4c:51:92:f5:3a:b4:06:c3:7d:b8:f9:14:f9:
85:fd:64:42:0b:a9:55:b2:54:67:ec:2c:ea:a7:86:
fa:f2:06:e7:f6:b2:d5:f9:f4:f5:38:79:ec:bd:90:
ad:df:94:da:71:22:84:04:7a:4d:7a:0d:5e:e6:d5:
3c:f9:04:14:71:56:08:87:7a:d9:90:88:9e:a0:84:
35:f9:2d:dd:37:25:a6:67:72:26:67:b7:b0:e9:46:
30:43:89:5e:eb:63:4a:06:a0:79:bc:a4:77:48:d9:
2f:66:1e:86:b3:b5:8b:e2:08:4f:1d:b1:f4:8f:ec:
11:5a:86:95:be:2a:a9:bc:48:91:6d:35:1d:20:a7:
13:99:95:4c:8e:f9:a0:c9:f0:5c:f7:a4:d7:69:09:
8f:83:60:81:ee:c7:a5:62:7f:d3:29:bb:8c:70:93:
3f:95:3b:cd:e9:2a:08:cd:c3:ad:58:08:6b:0a:e6:
20:d9:0a:e3:de:93:96:c6:1b:53:79:24:9b:36:ce:
71:e7:0f:40:03:a0:fb:85:67:9c:e3:9b:02:c5:0b:
87:24:cd:c9:d8:f1:20:a9:6c:69:b3:90:20:96:b7:
3a:bc:df:32:a9:2d:dd:0d:6b:e8:b6:b6:e6:b1:18:
c7:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:95:08:8F:CD:CE:7A:21:BF:7A:04:C6:4F:50:0F:3E:97:31:4E:32
X509v3 Authority Key Identifier:
keyid:86:FE:D2:ED:19:C2:06:7A:48:22:21:B6:45:D6:0C:45:A4:D5:6A:9D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36472E5/8DB6547A56D711E585356D60F8AEA228/hv7S7RnCBnpIIiG2RdYMRaTVap0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/hv7S7RnCBnpIIiG2RdYMRaTVap0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36472E5/8DB6547A56D711E585356D60F8AEA228/8611EC46CAED11E989D36576F8AEA228.roa
sbgp-ipAddrBlock: critical
IPv4:
196.41.96.0/20
Signature Algorithm: sha256WithRSAEncryption
02:51:04:b3:8f:ba:43:3c:69:53:6c:15:24:7d:7c:10:ca:ae:
06:91:d7:51:db:35:cd:8b:40:df:9d:60:f8:65:f8:10:af:15:
44:48:31:00:3c:16:d2:82:ac:b7:bb:27:9e:f5:9c:b4:01:99:
7c:f8:0a:bc:30:09:1b:56:7e:04:00:64:d4:33:06:bc:d5:05:
40:61:10:20:36:20:e2:0a:02:44:67:91:07:bc:30:37:ae:8d:
bf:77:a4:fa:00:53:1b:b5:aa:28:29:20:85:1c:f4:20:e8:98:
4e:1b:c5:e7:b8:a5:20:06:15:eb:fc:2d:ae:1c:8e:20:5f:c2:
6d:ce:fb:a0:2b:02:81:c0:7c:7d:a2:9a:0f:03:c0:79:7f:b1:
20:5d:31:1d:be:6e:b7:14:02:c9:30:29:93:20:f0:69:34:2f:
f2:86:1a:1b:6a:da:95:43:e3:b4:54:34:06:b4:9e:16:fb:e0:
14:71:94:4a:3c:ad:46:ff:92:9d:76:2c:3f:21:5e:10:12:e1:
3e:e5:a6:e5:0c:40:bb:a4:fc:ae:b7:cb:3d:00:b4:35:61:c5:
a4:da:66:b0:7e:5e:a2:cc:ca:a8:10:33:61:c2:1f:cf:4d:02:
8f:a2:bc:04:5b:0c:06:6f:91:0d:09:26:84:17:d1:04:80:7a:
7b:30:f1:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 16 01:22:09 2024 by rpki-client on console-ams.rpki-client.org