Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36472E5/8DB6547A56D711E585356D60F8AEA228/CEB8F1B0CAED11E988A78B76F8AEA228.roa
File: CEB8F1B0CAED11E988A78B76F8AEA228.roa (raw, json)
Hash identifier: jDtuwq3j8HQc76mLF36nBIH2uMggEhhIl6ncNoeaoaY=
Subject key identifier: CF:4C:CA:CE:9D:5D:FB:CB:55:C3:FE:46:51:AA:64:EC:54:50:F6:2F
Certificate issuer: /CN=F36472E5AF/serialNumber=86FED2ED19C2067A482221B645D60C45A4D56A9D
Certificate serial: 05D1
Authority key identifier: 86:FE:D2:ED:19:C2:06:7A:48:22:21:B6:45:D6:0C:45:A4:D5:6A:9D
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/hv7S7RnCBnpIIiG2RdYMRaTVap0.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36472E5/8DB6547A56D711E585356D60F8AEA228/CEB8F1B0CAED11E988A78B76F8AEA228.roa
Signing time: Fri 30 Aug 2019 06:17:14 +0000
ROA not before: Fri 30 Aug 2019 06:17:09 +0000
ROA not after: Fri 29 Aug 2025 06:17:09 +0000
asID: 36874
IP address blocks: 105.233.0.0/17 maxlen: 17
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36472E5/8DB6547A56D711E585356D60F8AEA228/hv7S7RnCBnpIIiG2RdYMRaTVap0.crl
rsync://rpki.afrinic.net/repository/member_repository/F36472E5/8DB6547A56D711E585356D60F8AEA228/hv7S7RnCBnpIIiG2RdYMRaTVap0.mft
rsync://rpki.afrinic.net/repository/afrinic/hv7S7RnCBnpIIiG2RdYMRaTVap0.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1489 (0x5d1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36472E5AF/serialNumber=86FED2ED19C2067A482221B645D60C45A4D56A9D
Validity
Not Before: Aug 30 06:17:09 2019 GMT
Not After : Aug 29 06:17:09 2025 GMT
Subject: CN=5d68bf6a-4f3c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:3c:93:88:a6:9d:cf:ba:07:d1:2f:6b:55:25:
8b:b7:66:56:b6:c7:cf:e5:76:5f:d5:69:8b:e9:8a:
a7:9a:bf:f1:00:92:bc:c9:54:cd:3c:81:ea:89:ae:
44:9a:07:b2:6c:de:17:fd:53:89:fb:e5:a4:31:2e:
4c:77:55:3a:42:a3:29:04:2d:25:74:be:0b:f2:24:
70:bf:c1:82:4d:54:70:ea:4d:28:33:96:42:be:dd:
a9:b3:58:5c:b2:00:45:92:f4:35:d8:64:66:83:12:
72:68:5e:94:82:99:41:b7:3d:3e:af:6a:50:f5:96:
57:23:86:ac:6e:00:bc:15:a1:54:95:d5:1e:59:85:
c5:31:f7:75:a5:80:6d:aa:d2:1c:f2:b5:39:5b:33:
52:f8:f8:74:8e:f5:ba:ca:57:30:a8:7c:1c:1b:17:
fe:ca:b3:14:2c:60:70:8b:62:51:6c:b6:42:18:4a:
10:f3:b7:7a:e3:2b:cd:4a:6e:06:ce:99:c1:69:06:
2f:f5:e6:0e:1c:83:ad:9a:a4:1c:e9:90:d4:8e:57:
51:91:d2:90:f2:77:e7:72:b1:10:1f:41:3d:a2:b6:
15:f2:34:7d:03:94:1f:1e:a2:01:17:2f:c1:44:10:
6b:e9:1a:c5:83:c1:07:23:fe:f0:d8:5a:e8:16:54:
3a:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:4C:CA:CE:9D:5D:FB:CB:55:C3:FE:46:51:AA:64:EC:54:50:F6:2F
X509v3 Authority Key Identifier:
keyid:86:FE:D2:ED:19:C2:06:7A:48:22:21:B6:45:D6:0C:45:A4:D5:6A:9D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36472E5/8DB6547A56D711E585356D60F8AEA228/hv7S7RnCBnpIIiG2RdYMRaTVap0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/hv7S7RnCBnpIIiG2RdYMRaTVap0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36472E5/8DB6547A56D711E585356D60F8AEA228/CEB8F1B0CAED11E988A78B76F8AEA228.roa
sbgp-ipAddrBlock: critical
IPv4:
105.233.0.0/17
Signature Algorithm: sha256WithRSAEncryption
40:40:65:91:e7:9b:9d:85:8d:20:f1:8b:65:9e:ea:dc:b8:e5:
cc:33:eb:b6:6e:c9:38:79:e8:c9:a0:23:ec:23:69:70:31:e3:
fd:a5:c0:8c:da:c6:76:68:90:18:d8:46:1e:5a:ee:38:75:68:
cb:cc:b3:d3:ba:99:8d:65:d5:73:92:df:6c:be:96:c6:ec:b3:
15:fd:6c:73:9e:17:b9:fe:f0:93:e1:2e:30:e0:c6:7e:12:56:
65:a9:11:1d:2c:26:22:83:1f:d4:f9:42:b9:90:de:36:0e:42:
35:e1:c4:54:3f:d9:ba:66:bf:e2:6e:4b:e6:d1:a5:6a:ca:e0:
9a:e5:b6:87:b9:ed:45:2a:b4:1e:97:a4:93:c9:19:0d:97:40:
73:21:3b:64:26:d0:78:4b:e7:68:7f:30:1d:e2:6d:62:27:d7:
cd:59:fb:47:8c:bb:89:db:a8:b0:3e:4a:50:78:2c:14:b2:c1:
54:dd:2d:25:ac:e6:e5:77:8b:e2:b3:ce:12:32:34:c8:c0:f5:
ad:02:01:0b:cf:f3:df:d9:13:2e:15:f9:9a:8b:f3:2c:94:37:
a8:26:41:93:ec:de:c6:50:da:40:da:74:e7:a1:83:ee:b4:c2:
bc:65:36:31:25:40:27:d8:bb:63:00:81:c3:34:0f:6b:7f:1f:
8c:33:c7:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:08:53 2024 by rpki-client on console-fra.rpki-client.org