Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36549B1/DF788C98561311E5B1A0E360F8AEA228/1214F7F4585D11E59D5C7317F8AEA228.roa
File: 1214F7F4585D11E59D5C7317F8AEA228.roa (raw, json)
Hash identifier: 0FpgqvuIfv2t7pEzVo665VBSLTVkVC883PZi8zGnUOQ=
Subject key identifier: 73:5B:02:1E:7F:27:D5:4B:61:45:EF:92:90:52:F3:AA:3F:8A:CF:93
Certificate issuer: /CN=F36549B1AF/serialNumber=9F17383EB667E547BA00CFB7F914F4284C5849CC
Certificate serial: 09
Authority key identifier: 9F:17:38:3E:B6:67:E5:47:BA:00:CF:B7:F9:14:F4:28:4C:58:49:CC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/nxc4PrZn5Ue6AM-3-RT0KExYScw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36549B1/DF788C98561311E5B1A0E360F8AEA228/1214F7F4585D11E59D5C7317F8AEA228.roa
Signing time: Fri 11 Sep 2015 08:14:01 +0000
ROA not before: Fri 11 Sep 2015 08:14:18 +0000
ROA not after: Tue 30 Sep 2025 08:14:18 +0000
asID: 37668
IP address blocks: 196.10.55.0/24 maxlen: 24
2001:43f8:1f5::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36549B1/DF788C98561311E5B1A0E360F8AEA228/nxc4PrZn5Ue6AM-3-RT0KExYScw.crl
rsync://rpki.afrinic.net/repository/member_repository/F36549B1/DF788C98561311E5B1A0E360F8AEA228/nxc4PrZn5Ue6AM-3-RT0KExYScw.mft
rsync://rpki.afrinic.net/repository/afrinic/nxc4PrZn5Ue6AM-3-RT0KExYScw.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 9 (0x9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36549B1AF/serialNumber=9F17383EB667E547BA00CFB7F914F4284C5849CC
Validity
Not Before: Sep 11 08:14:18 2015 GMT
Not After : Sep 30 08:14:18 2025 GMT
Subject: CN=55f28d48-8fd7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:8d:99:f9:e9:6b:bb:d8:41:a9:ff:40:21:e4:
dc:2f:37:a6:76:59:2b:8d:e0:eb:22:0b:93:f1:f9:
e9:38:a0:cc:ca:58:80:89:2b:60:39:72:41:7d:f3:
89:6a:c4:ce:86:02:8e:78:44:8c:88:18:d2:56:dd:
ff:53:c4:d7:78:e3:0a:47:5d:b5:2e:04:31:f7:ff:
8a:a0:c0:ea:13:b6:74:57:e6:8b:85:f7:a4:16:30:
db:52:f4:4b:8c:50:82:3c:7d:c0:c8:fd:5a:02:da:
3d:aa:14:10:5e:d2:a2:52:b6:88:74:3b:82:15:3e:
61:5c:0f:d7:01:ae:40:c8:b6:8e:37:13:7c:80:41:
39:f8:17:7e:be:ac:b9:85:eb:cc:62:51:29:65:ba:
ef:d6:21:29:95:ec:e5:b5:42:e7:d8:0c:15:f3:75:
dd:e3:80:dc:94:2e:cb:43:35:f0:16:de:ec:bb:06:
92:77:e1:40:cd:61:e7:9f:55:52:17:a0:65:c9:19:
c7:d3:f2:bd:28:b3:17:eb:82:ff:6e:63:f3:08:64:
be:2f:78:c0:ab:6f:d8:01:8d:77:b3:8a:5f:16:61:
dc:64:d9:00:86:c6:de:cb:aa:56:3c:a5:f3:80:6b:
77:ea:97:51:51:69:3e:20:d2:94:f6:df:ba:fc:7d:
79:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:5B:02:1E:7F:27:D5:4B:61:45:EF:92:90:52:F3:AA:3F:8A:CF:93
X509v3 Authority Key Identifier:
keyid:9F:17:38:3E:B6:67:E5:47:BA:00:CF:B7:F9:14:F4:28:4C:58:49:CC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36549B1/DF788C98561311E5B1A0E360F8AEA228/nxc4PrZn5Ue6AM-3-RT0KExYScw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/nxc4PrZn5Ue6AM-3-RT0KExYScw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36549B1/DF788C98561311E5B1A0E360F8AEA228/1214F7F4585D11E59D5C7317F8AEA228.roa
sbgp-ipAddrBlock: critical
IPv4:
196.10.55.0/24
IPv6:
2001:43f8:1f5::/48
Signature Algorithm: sha256WithRSAEncryption
5b:fb:cf:ed:cb:86:bb:bf:87:df:59:15:f8:27:8b:01:8a:82:
84:a8:ab:95:4f:8b:e3:56:01:e3:d9:37:57:c3:73:d5:5a:ef:
fb:96:94:9f:cd:af:9a:f0:be:58:88:73:8e:48:48:7c:a4:89:
f0:fc:c7:0a:d2:05:19:50:ec:6d:42:8a:49:b2:c0:8a:a1:ce:
8d:2e:e3:b4:5c:1c:a3:9c:87:76:af:9d:b7:0f:cf:0d:42:33:
12:47:18:ff:c0:c0:02:3c:b9:69:b4:40:c3:2e:68:67:f9:14:
9a:f1:0d:e0:c3:ee:73:5e:77:88:df:49:06:8b:e1:2e:40:14:
b7:c1:27:f5:3c:6a:2d:1e:f4:3c:35:dd:e7:10:24:95:f1:c2:
d0:62:13:1b:70:92:68:00:69:fd:53:eb:93:be:a7:15:ce:a3:
71:8b:8b:f8:d2:a5:70:e8:38:89:5c:58:cc:58:70:33:95:65:
a5:ef:37:43:ad:e8:c9:1b:75:d6:1e:d7:a0:4f:53:65:81:d3:
cc:2e:b7:a8:5a:6c:bc:fd:05:ea:db:ee:6f:43:75:84:ed:19:
09:b5:a2:4d:fb:fc:27:78:f5:6b:d1:0e:1f:31:3e:7c:6b:c7:
22:7a:91:bc:d0:a9:dd:c3:0d:e1:b2:f0:a9:de:e5:6b:86:68:
b3:ad:09:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:08:53 2024 by rpki-client on console-fra.rpki-client.org