Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F365C741/BE173EB406BD11E588824D08F8AEA228/86AA770223D711E5AB708E2AF8AEA228.roa
File: 86AA770223D711E5AB708E2AF8AEA228.roa (raw, json)
Hash identifier: y0bl30bqJqkPEbAzXpZ5mftJq3ATD0qtRUuYQbxaJPI=
Subject key identifier: 1A:3A:A4:7A:73:8C:4A:85:65:A0:60:E5:13:ED:7A:2F:50:63:4A:75
Certificate issuer: /CN=F365C741AF/serialNumber=DFED1DB31869BDCCC967B540E22DB05642542F1D
Certificate serial: 2A
Authority key identifier: DF:ED:1D:B3:18:69:BD:CC:C9:67:B5:40:E2:2D:B0:56:42:54:2F:1D
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/3-0dsxhpvczJZ7VA4i2wVkJULx0.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F365C741/BE173EB406BD11E588824D08F8AEA228/86AA770223D711E5AB708E2AF8AEA228.roa
Signing time: Mon 06 Jul 2015 12:06:12 +0000
ROA not before: Mon 06 Jul 2015 12:07:00 +0000
ROA not after: Wed 31 Dec 2025 12:07:00 +0000
asID: 37100
IP address blocks: 41.87.96.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F365C741/BE173EB406BD11E588824D08F8AEA228/3-0dsxhpvczJZ7VA4i2wVkJULx0.crl
rsync://rpki.afrinic.net/repository/member_repository/F365C741/BE173EB406BD11E588824D08F8AEA228/3-0dsxhpvczJZ7VA4i2wVkJULx0.mft
rsync://rpki.afrinic.net/repository/afrinic/3-0dsxhpvczJZ7VA4i2wVkJULx0.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 42 (0x2a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F365C741AF/serialNumber=DFED1DB31869BDCCC967B540E22DB05642542F1D
Validity
Not Before: Jul 6 12:07:00 2015 GMT
Not After : Dec 31 12:07:00 2025 GMT
Subject: CN=559a6f33-4c7b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:78:52:5f:9e:4a:fb:31:06:fc:a4:38:c4:d4:
d2:84:3b:6f:1d:f6:d2:87:bd:66:d7:26:bf:5d:9e:
68:8d:b1:da:86:13:67:60:ee:c8:47:0c:2a:eb:d9:
af:33:3b:1e:34:30:3e:54:6b:e8:e7:89:59:01:b7:
ce:32:e5:0e:02:a5:e7:b5:50:48:3b:5a:47:9f:2b:
b4:83:26:31:17:f0:97:86:f7:3b:61:bd:a3:22:90:
34:80:53:d2:3d:27:e5:a9:23:b7:b3:2a:93:af:44:
8b:2f:95:63:68:d5:4d:2c:59:86:9d:c9:60:c1:aa:
3e:e2:09:0e:af:d5:6b:75:3e:11:01:f7:8d:4d:d0:
57:72:01:ca:3c:2b:6c:95:9d:d3:ca:5e:0c:e6:8e:
78:27:74:c4:87:39:d1:3a:5b:49:55:a1:f6:9f:40:
68:84:78:50:ff:d0:ea:70:74:5c:22:0f:c6:5f:47:
d2:b0:e8:b8:6f:89:5b:82:c8:71:59:cb:72:95:6e:
97:83:0a:ba:f2:96:ab:e4:06:cb:93:3a:13:90:5d:
a8:2a:4c:99:aa:cd:a7:81:c7:86:51:a2:79:d8:24:
d1:ed:32:c2:0e:7e:11:3d:08:91:f9:ab:59:d5:af:
e2:be:02:85:56:a9:4d:15:1a:8c:76:f0:8f:61:a7:
bd:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:3A:A4:7A:73:8C:4A:85:65:A0:60:E5:13:ED:7A:2F:50:63:4A:75
X509v3 Authority Key Identifier:
keyid:DF:ED:1D:B3:18:69:BD:CC:C9:67:B5:40:E2:2D:B0:56:42:54:2F:1D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F365C741/BE173EB406BD11E588824D08F8AEA228/3-0dsxhpvczJZ7VA4i2wVkJULx0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/3-0dsxhpvczJZ7VA4i2wVkJULx0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F365C741/BE173EB406BD11E588824D08F8AEA228/86AA770223D711E5AB708E2AF8AEA228.roa
sbgp-ipAddrBlock: critical
IPv4:
41.87.96.0/19
Signature Algorithm: sha256WithRSAEncryption
a7:4d:f3:01:08:c4:5f:11:95:d7:b7:b5:56:22:c6:99:4d:81:
7d:64:50:46:1f:3b:ba:e1:91:e2:35:a9:b7:e7:84:e4:fb:32:
ff:e2:64:b2:73:51:2f:4b:1d:99:22:75:64:63:5e:30:9d:42:
b1:ed:da:de:03:8a:72:27:66:9f:96:64:c5:fa:9b:38:21:bb:
ff:94:30:31:22:e6:02:c2:fc:3c:ec:bd:42:36:78:77:47:d5:
24:ff:3c:79:8e:4f:ea:db:bb:27:ef:4c:f9:af:1f:3e:a3:c9:
12:ca:5f:61:fb:cd:ff:47:8c:5d:70:1a:7b:b1:74:16:d5:8b:
ef:9e:d1:91:26:bc:04:f3:e7:09:23:0e:e6:92:f6:d8:4a:4f:
51:2a:85:73:fd:e5:09:51:10:47:98:d2:88:ad:ef:13:8d:8d:
de:da:63:9e:d7:8a:ea:43:73:c4:78:b0:3f:96:80:e8:6c:c8:
11:c0:ae:0a:3a:0a:29:3b:e5:50:a8:f1:04:e3:c5:f0:ea:15:
b6:d0:b7:c9:35:ca:ba:b7:2c:e0:43:f4:89:51:69:9a:1e:70:
45:ba:c2:a4:a3:51:db:39:27:5b:98:31:4c:3a:e1:28:0f:57:
0a:9f:b3:e0:1f:9e:e3:03:88:9e:ac:f9:cc:09:2b:42:24:e1:
f0:76:dc:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:08:53 2024 by rpki-client on console-fra.rpki-client.org