Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36549B1/DF788C98561311E5B1A0E360F8AEA228/B52245B0585C11E5AF923917F8AEA228.roa
File: B52245B0585C11E5AF923917F8AEA228.roa (raw, json)
Hash identifier: w98JhuMKbeVGaXUfnIIH2kCqGJut86/4raJT2iIszDU=
Subject key identifier: 24:7F:DA:B1:03:C7:D5:3A:14:AB:E6:D6:BF:60:26:24:03:BF:7B:3C
Certificate issuer: /CN=F36549B1AF/serialNumber=9F17383EB667E547BA00CFB7F914F4284C5849CC
Certificate serial: 07
Authority key identifier: 9F:17:38:3E:B6:67:E5:47:BA:00:CF:B7:F9:14:F4:28:4C:58:49:CC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/nxc4PrZn5Ue6AM-3-RT0KExYScw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36549B1/DF788C98561311E5B1A0E360F8AEA228/B52245B0585C11E5AF923917F8AEA228.roa
Signing time: Fri 11 Sep 2015 08:11:25 +0000
ROA not before: Fri 11 Sep 2015 08:11:42 +0000
ROA not after: Tue 30 Sep 2025 08:11:42 +0000
asID: 37663
IP address blocks: 196.10.54.0/24 maxlen: 24
2001:43f8:1f4::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36549B1/DF788C98561311E5B1A0E360F8AEA228/nxc4PrZn5Ue6AM-3-RT0KExYScw.crl
rsync://rpki.afrinic.net/repository/member_repository/F36549B1/DF788C98561311E5B1A0E360F8AEA228/nxc4PrZn5Ue6AM-3-RT0KExYScw.mft
rsync://rpki.afrinic.net/repository/afrinic/nxc4PrZn5Ue6AM-3-RT0KExYScw.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7 (0x7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36549B1AF/serialNumber=9F17383EB667E547BA00CFB7F914F4284C5849CC
Validity
Not Before: Sep 11 08:11:42 2015 GMT
Not After : Sep 30 08:11:42 2025 GMT
Subject: CN=55f28cac-cd8a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:be:e8:6b:88:97:f9:5b:01:56:a2:51:76:86:
a4:05:b2:2c:5b:77:8b:4a:77:07:f9:2b:d2:ce:c3:
ac:da:3a:0b:09:25:53:1b:fb:54:fb:b8:5d:d3:99:
49:29:0b:a3:11:d7:bf:30:b9:82:0a:f5:e8:76:ac:
96:77:98:7e:1a:86:d0:70:44:a2:ed:0f:ab:b1:89:
e6:5f:61:47:4b:ec:ba:b7:fd:44:ad:a7:35:a7:69:
c3:31:5d:e2:42:78:51:7f:f3:1c:d8:98:86:b3:ca:
4c:04:7d:55:6a:7d:3b:44:33:38:be:3a:f7:d1:1c:
27:50:67:64:f4:e0:b5:3d:8e:0a:c7:fd:e8:97:ea:
c8:1c:f8:2e:37:87:47:72:53:04:ca:dd:8c:2d:e8:
82:a7:58:f3:22:f4:6c:48:78:a8:e1:9a:b7:4b:a2:
57:d0:95:36:a1:34:f0:f7:c7:b4:87:32:9f:86:7d:
72:1e:ee:6a:93:e0:1b:b1:97:5b:81:54:dc:16:f8:
2e:5b:04:04:51:b7:e1:69:36:dd:2f:88:7e:5c:ff:
82:d7:95:75:d2:f7:e0:c6:26:b8:21:0e:27:c6:e7:
92:35:13:01:39:a6:49:ad:27:83:e0:bb:4b:05:ca:
19:08:cd:6e:e9:86:ea:64:c6:eb:19:2d:15:69:97:
12:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:7F:DA:B1:03:C7:D5:3A:14:AB:E6:D6:BF:60:26:24:03:BF:7B:3C
X509v3 Authority Key Identifier:
keyid:9F:17:38:3E:B6:67:E5:47:BA:00:CF:B7:F9:14:F4:28:4C:58:49:CC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36549B1/DF788C98561311E5B1A0E360F8AEA228/nxc4PrZn5Ue6AM-3-RT0KExYScw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/nxc4PrZn5Ue6AM-3-RT0KExYScw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36549B1/DF788C98561311E5B1A0E360F8AEA228/B52245B0585C11E5AF923917F8AEA228.roa
sbgp-ipAddrBlock: critical
IPv4:
196.10.54.0/24
IPv6:
2001:43f8:1f4::/48
Signature Algorithm: sha256WithRSAEncryption
45:8f:b7:e0:a6:19:46:c4:36:21:b7:c4:b6:8d:29:86:5e:48:
87:4a:79:b5:76:a1:2e:ab:95:27:94:bd:33:2c:51:9b:58:12:
0d:c2:9e:1f:97:12:b0:f6:3a:6b:f2:36:2e:8f:81:88:1b:26:
0a:17:c5:d6:cc:2b:89:a7:0e:e8:50:95:7a:5f:a6:a7:a7:3f:
fa:80:20:1f:4f:f9:bd:02:65:b8:a5:eb:f5:4d:a6:a8:eb:4f:
28:ed:54:95:7d:15:57:74:7e:ef:be:d8:c1:ac:52:aa:24:40:
cc:61:07:1a:af:29:a0:f1:9c:1f:a2:18:3f:50:93:84:db:3f:
2b:5b:f9:d2:4f:11:e1:6e:52:0c:68:3c:66:c5:57:40:2f:be:
f0:53:a2:c8:96:88:13:c8:c0:ea:7c:8b:e0:8d:cd:8b:2a:17:
ac:4a:29:ff:73:6a:f3:d1:f1:3b:eb:0c:0e:17:08:75:70:cc:
2b:69:bf:a3:03:15:87:2e:21:ac:2d:ad:2f:ab:2a:aa:ee:72:
fc:75:c7:c2:d1:e4:3e:30:a8:5d:8c:96:a6:73:20:d8:61:4a:
4d:6e:db:35:01:9e:49:a5:54:00:6c:62:f1:f2:87:30:be:d7:
23:68:ce:81:03:ea:aa:4e:bb:2f:a7:4e:d1:8d:69:41:dc:7e:
6a:ec:cb:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 01:34:53 2024 by rpki-client on console-ams.rpki-client.org