Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F364E67C/71DA5480291611E9A079C765F8AEA228/B82EFE34291811E9AC8B8967F8AEA228.roa
File: B82EFE34291811E9AC8B8967F8AEA228.roa (raw, json)
Hash identifier: 89svLPpHyqTVOFkRRCgSCkC0+wCh7pGNmY8TlC/Ke6c=
Subject key identifier: CA:1D:A9:8E:0B:C6:13:5D:0B:41:B0:D5:9F:FF:D0:43:99:E0:C0:F3
Certificate issuer: /CN=F364E67CAF/serialNumber=37089F7C72F0E7C5782D7F2B3BD68F5D8CEC5396
Certificate serial: 02
Authority key identifier: 37:08:9F:7C:72:F0:E7:C5:78:2D:7F:2B:3B:D6:8F:5D:8C:EC:53:96
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/NwiffHLw58V4LX8rO9aPXYzsU5Y.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F364E67C/71DA5480291611E9A079C765F8AEA228/B82EFE34291811E9AC8B8967F8AEA228.roa
Signing time: Tue 05 Feb 2019 07:36:16 +0000
ROA not before: Tue 05 Feb 2019 07:36:12 +0000
ROA not after: Mon 05 Feb 2029 07:36:12 +0000
asID: 37002
IP address blocks: 41.213.128.0/17 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F364E67C/71DA5480291611E9A079C765F8AEA228/NwiffHLw58V4LX8rO9aPXYzsU5Y.crl
rsync://rpki.afrinic.net/repository/member_repository/F364E67C/71DA5480291611E9A079C765F8AEA228/NwiffHLw58V4LX8rO9aPXYzsU5Y.mft
rsync://rpki.afrinic.net/repository/afrinic/NwiffHLw58V4LX8rO9aPXYzsU5Y.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 28 Nov 2024 00:05:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2 (0x2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F364E67CAF/serialNumber=37089F7C72F0E7C5782D7F2B3BD68F5D8CEC5396
Validity
Not Before: Feb 5 07:36:12 2019 GMT
Not After : Feb 5 07:36:12 2029 GMT
Subject: CN=5c593cf0-0c53
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:c9:ce:6b:f4:51:bb:b6:70:3c:64:0b:dc:fd:
45:db:58:08:1c:1b:c7:df:e3:f1:cb:33:df:f3:bc:
8a:93:58:37:a0:af:1d:a2:3f:1d:e6:01:46:a5:45:
82:28:4a:32:71:48:b4:ed:19:ec:c4:ad:c0:c3:58:
2c:52:2c:b2:a2:1e:34:4d:a7:2f:e7:5f:10:8d:cc:
54:2d:8d:1e:6b:51:22:cd:25:01:f9:d7:6d:59:4a:
b4:7a:e3:70:00:b8:bb:ee:d1:df:ab:1d:00:82:42:
24:0a:7a:87:a5:70:a2:37:28:d3:6b:aa:07:c7:cd:
c7:af:87:0b:9f:16:66:e1:3d:3a:7e:82:23:3e:02:
8e:26:88:17:55:98:7b:4f:c5:eb:0b:aa:15:eb:23:
d0:02:62:0b:b7:95:54:b9:45:3e:0e:53:a9:f8:a0:
d8:e3:b2:66:85:72:1b:cd:b1:3c:c1:dc:83:b5:8b:
ec:d0:cc:13:d4:6f:36:5b:05:43:90:5b:8d:b0:0a:
2e:49:38:c4:d6:6d:b4:ac:59:af:c8:02:f9:6d:04:
aa:03:a0:2e:72:5e:88:dc:5f:c6:d8:ac:4b:4f:0b:
da:a1:11:dc:9e:c6:b2:f2:49:84:dc:1d:e7:aa:c6:
71:72:90:a7:64:4b:84:af:3f:08:4b:a3:58:50:db:
16:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:1D:A9:8E:0B:C6:13:5D:0B:41:B0:D5:9F:FF:D0:43:99:E0:C0:F3
X509v3 Authority Key Identifier:
keyid:37:08:9F:7C:72:F0:E7:C5:78:2D:7F:2B:3B:D6:8F:5D:8C:EC:53:96
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F364E67C/71DA5480291611E9A079C765F8AEA228/NwiffHLw58V4LX8rO9aPXYzsU5Y.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/NwiffHLw58V4LX8rO9aPXYzsU5Y.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F364E67C/71DA5480291611E9A079C765F8AEA228/B82EFE34291811E9AC8B8967F8AEA228.roa
sbgp-ipAddrBlock: critical
IPv4:
41.213.128.0/17
Signature Algorithm: sha256WithRSAEncryption
2e:f0:8d:9e:5c:18:ae:58:fe:30:18:47:ba:fd:d7:03:50:95:
8c:44:67:a9:6d:6c:02:35:ba:88:9a:06:74:95:86:60:6b:cd:
19:20:c5:5d:82:ef:c9:a3:05:a0:9b:f9:d1:4f:76:89:3c:10:
09:18:0a:7e:31:fe:9b:43:d7:2f:b6:41:24:4c:0c:d0:93:9f:
d0:ce:e8:e5:f0:74:16:87:26:f1:4d:77:72:0f:40:eb:7d:41:
e6:f2:da:32:03:54:ab:d5:d7:99:bf:76:be:16:20:1f:4c:52:
fc:67:cc:3a:d1:98:d3:97:26:f3:54:44:0c:16:54:1b:43:1f:
f5:1d:52:32:c4:a5:63:e9:08:ff:38:d1:a5:b3:b3:74:09:15:
7b:5f:a2:d7:bd:2a:76:50:ac:01:4a:31:01:6a:49:b9:0f:86:
4b:32:6d:b0:7f:9b:d3:c2:2c:95:2c:63:fe:4e:9b:36:79:fe:
ed:52:ac:b9:d1:29:9a:be:4d:c6:97:51:c5:0c:49:20:57:d4:
9b:a7:93:37:5a:11:4f:1a:5c:6b:23:60:ad:b3:56:f0:8d:2f:
5f:85:f4:9e:d5:06:55:d8:9e:c1:84:0c:55:a3:8f:2e:8d:29:
3b:9d:25:19:e7:fc:57:e2:4f:50:f8:09:40:9c:9c:48:a0:a4:
7f:c9:4f:d2
-----BEGIN CERTIFICATE-----
MIIFSzCCBDOgAwIBAgIBAjANBgkqhkiG9w0BAQsFADBIMRMwEQYDVQQDEwpGMzY0
RTY3Q0FGMTEwLwYDVQQFEygzNzA4OUY3QzcyRjBFN0M1NzgyRDdGMkIzQkQ2OEY1
RDhDRUM1Mzk2MB4XDTE5MDIwNTA3MzYxMloXDTI5MDIwNTA3MzYxMlowGDEWMBQG
A1UEAxMNNWM1OTNjZjAtMGM1MzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBANnJzmv0Ubu2cDxkC9z9RdtYCBwbx9/j8csz3/O8ipNYN6CvHaI/HeYBRqVF
gihKMnFItO0Z7MStwMNYLFIssqIeNE2nL+dfEI3MVC2NHmtRIs0lAfnXbVlKtHrj
cAC4u+7R36sdAIJCJAp6h6Vwojco02uqB8fNx6+HC58WZuE9On6CIz4CjiaIF1WY
e0/F6wuqFesj0AJiC7eVVLlFPg5Tqfig2OOyZoVyG82xPMHcg7WL7NDME9RvNlsF
Q5BbjbAKLkk4xNZttKxZr8gC+W0EqgOgLnJeiNxfxtisS08L2qER3J7GsvJJhNwd
56rGcXKQp2RLhK8/CEujWFDbFiMCAwEAAaOCAm4wggJqMB0GA1UdDgQWBBTKHamO
C8YTXQtBsNWf/9BDmeDA8zAfBgNVHSMEGDAWgBQ3CJ98cvDnxXgtfys71o9djOxT
ljAOBgNVHQ8BAf8EBAMCB4AwgZUGA1UdHwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6
Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVyX3JlcG9zaXRvcnkv
RjM2NEU2N0MvNzFEQTU0ODAyOTE2MTFFOUEwNzlDNzY1RjhBRUEyMjgvTndpZmZI
THc1OFY0TFg4ck85YVBYWXpzVTVZLmNybDBnBggrBgEFBQcBAQRbMFkwVwYIKwYB
BQUHMAKGS3JzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L2Fmcmlu
aWMvTndpZmZITHc1OFY0TFg4ck85YVBYWXpzVTVZLmNlcjBPBgNVHSABAf8ERTBD
MEEGCCsGAQUFBw4CMDUwMwYIKwYBBQUHAgEWJ2h0dHBzOi8vcnBraS5hZnJpbmlj
Lm5ldC9wb2xpY3kvQ1BTLnBkZjCBpAYIKwYBBQUHAQsEgZcwgZQwgZEGCCsGAQUF
BzALhoGEcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVy
X3JlcG9zaXRvcnkvRjM2NEU2N0MvNzFEQTU0ODAyOTE2MTFFOUEwNzlDNzY1RjhB
RUEyMjgvQjgyRUZFMzQyOTE4MTFFOUFDOEI4OTY3RjhBRUEyMjgucm9hMB8GCCsG
AQUFBwEHAQH/BBAwDjAMBAIAATAGAwQHKdWAMA0GCSqGSIb3DQEBCwUAA4IBAQAu
8I2eXBiuWP4wGEe6/dcDUJWMRGepbWwCNbqImgZ0lYZga80ZIMVdgu/JowWgm/nR
T3aJPBAJGAp+Mf6bQ9cvtkEkTAzQk5/Qzujl8HQWhybxTXdyD0DrfUHm8toyA1Sr
1deZv3a+FiAfTFL8Z8w60ZjTlybzVEQMFlQbQx/1HVIyxKVj6Qj/ONGls7N0CRV7
X6LXvSp2UKwBSjEBakm5D4ZLMm2wf5vTwiyVLGP+Tps2ef7tUqy50Smavk3Gl1HF
DEkgV9Sbp5M3WhFPGlxrI2Cts1bwjS9fhfSe1QZV2J7BhAxVo48ujSk7nSUZ5/xX
4k9Q+AlAnJxIoKR/yU/S
-----END CERTIFICATE-----
Generated at Tue Nov 26 02:29:21 2024 by rpki-client on console-ams.rpki-client.org