Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3655EE4/99A5891E181511EA866A317EF8AEA228/D7C38FFA755711ED8288669DF1222468.roa
File: D7C38FFA755711ED8288669DF1222468.roa (raw, json)
Hash identifier: PQHxtKv0UDmTHySSXriAgQgTxVwVkFl4QLy3ZSWrPUk=
Subject key identifier: 85:12:DB:4C:C4:74:F2:30:A6:38:BC:21:64:C5:8D:DE:71:70:ED:8A
Certificate issuer: /CN=F3655EE4AF/serialNumber=0A67B10E169AAFA30350E377931331D91F39AB96
Certificate serial: 045F
Authority key identifier: 0A:67:B1:0E:16:9A:AF:A3:03:50:E3:77:93:13:31:D9:1F:39:AB:96
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CmexDhaar6MDUON3kxMx2R85q5Y.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3655EE4/99A5891E181511EA866A317EF8AEA228/D7C38FFA755711ED8288669DF1222468.roa
Signing time: Tue 06 Dec 2022 11:19:26 +0000
ROA not before: Tue 06 Dec 2022 11:19:22 +0000
ROA not after: Mon 06 Dec 2032 11:19:22 +0000
asID: 37650
IP address blocks: 154.66.200.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3655EE4/99A5891E181511EA866A317EF8AEA228/CmexDhaar6MDUON3kxMx2R85q5Y.crl
rsync://rpki.afrinic.net/repository/member_repository/F3655EE4/99A5891E181511EA866A317EF8AEA228/CmexDhaar6MDUON3kxMx2R85q5Y.mft
rsync://rpki.afrinic.net/repository/afrinic/CmexDhaar6MDUON3kxMx2R85q5Y.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 12 May 2024 00:04:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1119 (0x45f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3655EE4AF/serialNumber=0A67B10E169AAFA30350E377931331D91F39AB96
Validity
Not Before: Dec 6 11:19:22 2022 GMT
Not After : Dec 6 11:19:22 2032 GMT
Subject: CN=638f253e-cc54
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:aa:d5:18:02:b7:14:d2:f6:70:46:3d:2e:99:
57:c6:71:fe:c0:cf:69:c6:eb:84:c0:47:b4:b0:6e:
49:40:14:d1:ff:f3:65:f4:01:9e:89:88:55:66:bc:
0a:79:23:e4:9c:1a:23:3a:89:2c:1d:08:28:9c:59:
e1:46:63:51:40:c6:12:08:3b:6c:58:27:65:bc:18:
8c:9e:e9:d1:81:27:26:b5:f7:0e:f3:66:7e:a3:8e:
db:8f:67:33:64:3a:f0:52:48:a3:93:e9:2a:ec:66:
c8:56:2b:f4:96:b2:1f:39:38:df:e7:db:48:ed:b6:
54:fb:91:ce:7b:f0:7a:2d:c5:3f:c9:b5:d9:3e:8d:
6f:4b:50:df:77:a1:90:56:7a:aa:0b:24:da:3b:4c:
d5:c5:55:48:af:94:ca:a7:6e:fa:33:f2:1f:16:87:
5b:27:42:2b:1e:30:91:37:9b:ff:0b:62:fc:7e:c5:
00:88:6d:b8:57:fd:20:1c:7b:7c:c3:f8:22:42:b3:
9e:94:a6:d7:17:be:40:95:e7:b9:6b:f8:cb:39:f4:
51:79:7a:78:43:11:4a:a9:db:15:a9:ba:3f:b4:c1:
b1:5a:c1:32:64:e9:b8:42:0e:9a:64:45:90:22:6d:
a5:f1:ec:dd:16:a3:2c:f8:0e:5c:da:57:51:b0:70:
dd:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:12:DB:4C:C4:74:F2:30:A6:38:BC:21:64:C5:8D:DE:71:70:ED:8A
X509v3 Authority Key Identifier:
keyid:0A:67:B1:0E:16:9A:AF:A3:03:50:E3:77:93:13:31:D9:1F:39:AB:96
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3655EE4/99A5891E181511EA866A317EF8AEA228/CmexDhaar6MDUON3kxMx2R85q5Y.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CmexDhaar6MDUON3kxMx2R85q5Y.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3655EE4/99A5891E181511EA866A317EF8AEA228/D7C38FFA755711ED8288669DF1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.66.200.0/22
Signature Algorithm: sha256WithRSAEncryption
ac:90:99:8b:4a:41:d7:05:3d:c9:24:87:30:0d:1d:6b:78:73:
4b:1a:e2:4a:c5:90:d5:43:c6:1f:4a:39:0e:75:e3:55:1d:6d:
3e:63:34:1f:ee:54:a8:5f:0d:89:ae:36:5a:b2:eb:98:d8:2c:
aa:38:43:b7:26:97:96:98:72:fd:44:67:07:f6:b7:0e:ea:7d:
9f:76:69:68:12:18:05:c7:58:3e:7e:f7:dd:26:13:ce:9c:5a:
dc:a0:c3:3a:04:f7:c7:1e:ba:3e:a5:e9:0c:e4:ed:5a:25:8a:
06:b3:26:56:77:34:ef:b0:56:bf:d8:93:67:64:be:96:cc:84:
05:83:c6:19:b2:43:84:8a:5f:ba:cb:c1:c4:3a:01:a6:46:e6:
95:a6:85:4b:01:8e:48:31:12:be:07:ef:22:54:a8:12:bf:92:
41:2a:c9:df:76:4c:ed:93:9d:68:5e:b9:96:38:43:ae:8f:d1:
2c:77:b8:16:d9:1c:b9:26:4c:5c:4d:08:e3:dc:e0:65:27:b5:
24:9b:9e:d2:53:e8:bc:9c:f7:dc:60:70:0f:3b:ba:34:13:31:
8d:58:43:65:40:1f:dd:fe:df:0e:59:30:59:6e:91:fd:a6:26:
23:6f:3e:03:2e:d5:9f:19:ec:ff:02:1b:2b:9c:bc:ec:8e:a5:
38:81:6a:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 10 02:53:02 2024 by rpki-client on console-ams.rpki-client.org