Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F365C741/BE173EB406BD11E588824D08F8AEA228/CDA8B9DE23D711E5BADABA2AF8AEA228.roa
File: CDA8B9DE23D711E5BADABA2AF8AEA228.roa (raw, json)
Hash identifier: YbzTkgI3UmJsi9hJvJbU8OQ2bJ8AznZzEYZ8vLf0Wuc=
Subject key identifier: 45:39:34:FA:4F:C8:E1:99:62:16:8C:26:46:89:EF:88:13:78:D4:A0
Certificate issuer: /CN=F365C741AF/serialNumber=DFED1DB31869BDCCC967B540E22DB05642542F1D
Certificate serial: 2E
Authority key identifier: DF:ED:1D:B3:18:69:BD:CC:C9:67:B5:40:E2:2D:B0:56:42:54:2F:1D
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/3-0dsxhpvczJZ7VA4i2wVkJULx0.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F365C741/BE173EB406BD11E588824D08F8AEA228/CDA8B9DE23D711E5BADABA2AF8AEA228.roa
Signing time: Mon 06 Jul 2015 12:08:11 +0000
ROA not before: Mon 06 Jul 2015 12:09:00 +0000
ROA not after: Wed 31 Dec 2025 12:09:00 +0000
asID: 37100
IP address blocks: 41.217.212.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F365C741/BE173EB406BD11E588824D08F8AEA228/3-0dsxhpvczJZ7VA4i2wVkJULx0.crl
rsync://rpki.afrinic.net/repository/member_repository/F365C741/BE173EB406BD11E588824D08F8AEA228/3-0dsxhpvczJZ7VA4i2wVkJULx0.mft
rsync://rpki.afrinic.net/repository/afrinic/3-0dsxhpvczJZ7VA4i2wVkJULx0.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 46 (0x2e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F365C741AF/serialNumber=DFED1DB31869BDCCC967B540E22DB05642542F1D
Validity
Not Before: Jul 6 12:09:00 2015 GMT
Not After : Dec 31 12:09:00 2025 GMT
Subject: CN=559a6fab-1a94
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:f8:0a:86:84:16:9c:10:06:68:c2:88:87:33:
b0:b7:43:84:ab:77:d4:17:78:9f:60:d0:bb:c0:b3:
c3:ff:93:3d:5c:5c:8b:ae:8c:7c:44:df:ff:8d:f7:
84:f5:a4:0e:d6:51:be:b4:04:cc:a7:4e:4c:c8:11:
01:8f:5d:f1:e7:27:37:d4:77:96:de:22:5c:ac:7d:
3c:2d:37:01:3d:ac:cf:3e:4d:01:06:6f:ca:fb:53:
44:59:b0:b5:cc:13:45:cd:c7:24:6e:55:ec:d4:b4:
7b:4d:aa:c3:ce:d8:4c:1b:1f:7b:72:8e:dc:5c:ec:
bf:9f:1f:12:fd:2b:24:47:70:95:2a:62:77:5d:98:
84:b0:d8:45:28:72:50:00:7e:a9:74:64:75:6c:05:
52:0c:cf:e8:e4:66:d4:55:c0:8b:5d:25:99:b4:01:
34:8e:44:58:9e:62:2c:51:c8:35:91:26:8c:19:59:
b1:be:85:4a:e8:94:83:88:9d:ac:59:0f:92:4b:ee:
c0:3a:eb:93:66:8d:e6:50:9c:c3:98:3a:ed:59:74:
d9:78:3c:df:68:42:2d:10:ae:35:52:62:52:f4:e3:
7a:7f:33:04:b7:d6:4a:76:a7:ee:45:2d:cd:64:33:
6e:95:b5:94:f0:46:28:04:3c:e1:29:49:0f:54:1b:
12:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:39:34:FA:4F:C8:E1:99:62:16:8C:26:46:89:EF:88:13:78:D4:A0
X509v3 Authority Key Identifier:
keyid:DF:ED:1D:B3:18:69:BD:CC:C9:67:B5:40:E2:2D:B0:56:42:54:2F:1D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F365C741/BE173EB406BD11E588824D08F8AEA228/3-0dsxhpvczJZ7VA4i2wVkJULx0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/3-0dsxhpvczJZ7VA4i2wVkJULx0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F365C741/BE173EB406BD11E588824D08F8AEA228/CDA8B9DE23D711E5BADABA2AF8AEA228.roa
sbgp-ipAddrBlock: critical
IPv4:
41.217.212.0/22
Signature Algorithm: sha256WithRSAEncryption
58:a0:c3:2b:9f:f0:ff:20:27:aa:45:da:75:f2:5e:ac:18:de:
5f:e7:55:34:b8:ab:30:06:d4:b2:6a:54:eb:bb:c3:42:bb:9d:
6b:ab:59:f8:18:c7:7d:d0:fb:51:64:5a:4f:91:91:42:e3:8e:
8f:75:b4:92:e3:3f:b6:e3:03:7f:ce:e3:76:1e:67:5e:14:ce:
98:1c:cc:a9:6c:9b:ca:1d:a6:6f:dc:d2:d4:4e:eb:66:55:53:
9c:de:39:f3:47:d1:df:01:55:d6:9c:83:2c:b4:65:c9:d0:a6:
e5:9d:b8:25:d4:01:73:db:d7:7f:08:68:ea:45:67:a6:8b:d5:
ee:f9:cf:25:4d:b6:16:ce:21:5f:93:e6:96:45:92:fa:dc:b1:
9d:d7:71:0e:e9:e8:cd:4d:3d:b5:ab:9b:8e:d7:9d:7e:07:31:
5a:35:b2:8c:3b:21:22:96:28:e2:67:98:53:1e:c4:3f:43:5d:
bf:26:86:66:19:99:4b:4c:bb:31:2d:ec:18:f4:a7:21:bd:12:
1b:53:ba:56:d2:77:4b:15:fb:80:4a:7d:9d:e1:32:5f:03:34:
fe:68:9f:ce:fa:64:38:b2:88:ec:f1:02:cd:20:5a:71:41:ab:
bf:fa:38:62:7c:7a:cd:b6:dd:f8:7f:c4:0a:41:65:2d:c2:d5:
5f:a8:42:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 01:34:53 2024 by rpki-client on console-ams.rpki-client.org