Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F365C895/056264AE85DD11E9B4EDE70BF8AEA228/14A1446E85E011E98CAAA10DF8AEA228.roa
File: 14A1446E85E011E98CAAA10DF8AEA228.roa (raw, json)
Hash identifier: Sgkr/to7RBtXBA77fd9LenKbclUgWxlt/gVGw8PMj9A=
Subject key identifier: 06:C1:BA:F0:46:CD:E5:5B:91:A8:21:F5:06:88:D3:B3:D6:82:B3:F5
Certificate issuer: /CN=F365C895AF/serialNumber=10C70628F7215FFA2EC3BDFE459686F45CBEE52E
Certificate serial: 02
Authority key identifier: 10:C7:06:28:F7:21:5F:FA:2E:C3:BD:FE:45:96:86:F4:5C:BE:E5:2E
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/EMcGKPchX_ouw73-RZaG9Fy-5S4.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F365C895/056264AE85DD11E9B4EDE70BF8AEA228/14A1446E85E011E98CAAA10DF8AEA228.roa
Signing time: Mon 03 Jun 2019 09:15:08 +0000
ROA not before: Mon 03 Jun 2019 09:15:03 +0000
ROA not after: Sat 30 Jun 2029 09:15:03 +0000
asID: 328174
IP address blocks: 102.165.188.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F365C895/056264AE85DD11E9B4EDE70BF8AEA228/EMcGKPchX_ouw73-RZaG9Fy-5S4.crl
rsync://rpki.afrinic.net/repository/member_repository/F365C895/056264AE85DD11E9B4EDE70BF8AEA228/EMcGKPchX_ouw73-RZaG9Fy-5S4.mft
rsync://rpki.afrinic.net/repository/afrinic/EMcGKPchX_ouw73-RZaG9Fy-5S4.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 10 May 2024 00:04:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2 (0x2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F365C895AF/serialNumber=10C70628F7215FFA2EC3BDFE459686F45CBEE52E
Validity
Not Before: Jun 3 09:15:03 2019 GMT
Not After : Jun 30 09:15:03 2029 GMT
Subject: CN=5cf4e51c-3d2e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:ae:36:8f:4f:f9:1a:52:5e:69:ad:5c:07:44:
a0:7e:e5:c0:99:93:10:f7:bd:7c:34:03:7f:b3:d4:
91:6d:8e:50:c7:b9:10:c8:f7:27:08:ac:ec:9a:81:
28:96:02:1e:65:c1:df:09:d2:83:72:ac:ce:f0:9e:
fa:b5:e3:94:5a:ea:9c:25:eb:26:3e:61:cd:08:68:
8e:8c:c6:1f:2e:32:fc:58:67:f0:e1:3c:cc:3d:4c:
04:4e:46:e4:dc:d2:30:85:ed:0e:b1:bc:ad:9b:e0:
e3:82:96:d4:fd:17:c3:ee:8d:df:c6:f4:f2:ee:8f:
32:ff:ba:7a:b9:b4:a4:14:9b:c8:06:38:46:f5:d2:
14:2d:db:1d:33:f0:86:5d:0f:a7:07:f0:41:23:f4:
d8:95:c5:27:c3:cf:ee:9a:a8:8b:62:a1:1e:2f:ee:
36:08:08:fe:c7:66:61:f7:57:f9:7c:bb:48:5d:24:
ea:87:d0:12:13:95:7e:d7:bd:53:cc:a5:77:43:c4:
3e:55:01:2b:85:4f:36:81:16:6c:27:c7:35:9a:fe:
07:79:de:1b:94:48:a3:39:d7:74:21:18:0e:9d:81:
f1:0b:c7:a8:f2:45:bb:9c:c7:91:15:33:2f:cf:47:
63:00:50:5e:04:2b:a9:89:4d:84:6a:29:d0:f9:af:
58:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:C1:BA:F0:46:CD:E5:5B:91:A8:21:F5:06:88:D3:B3:D6:82:B3:F5
X509v3 Authority Key Identifier:
keyid:10:C7:06:28:F7:21:5F:FA:2E:C3:BD:FE:45:96:86:F4:5C:BE:E5:2E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F365C895/056264AE85DD11E9B4EDE70BF8AEA228/EMcGKPchX_ouw73-RZaG9Fy-5S4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/EMcGKPchX_ouw73-RZaG9Fy-5S4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F365C895/056264AE85DD11E9B4EDE70BF8AEA228/14A1446E85E011E98CAAA10DF8AEA228.roa
sbgp-ipAddrBlock: critical
IPv4:
102.165.188.0/24
Signature Algorithm: sha256WithRSAEncryption
47:8d:6a:c5:7b:61:5f:89:bb:b2:40:2a:d6:91:68:64:b2:88:
af:2b:ff:fa:2f:19:b4:18:84:81:1e:44:04:34:25:92:86:0f:
f5:69:9b:98:90:71:74:3f:4e:f7:ba:a0:88:e2:fd:e1:e9:df:
13:b7:b7:c9:a5:41:3c:ba:86:5e:c6:83:39:d9:57:57:5d:16:
15:28:cf:bc:f4:0a:dc:35:74:af:a1:0b:65:bd:31:e7:04:58:
d5:12:74:62:b3:42:57:a1:d1:d7:6e:1c:3d:05:67:fa:60:7e:
5e:dd:25:6d:de:0a:07:50:d5:8f:09:4c:0d:3f:ad:0b:22:7b:
5c:c6:75:80:a6:3c:8c:dc:03:14:84:ce:25:d8:54:a0:37:5a:
a3:8b:55:75:ff:bc:b7:ac:68:ee:fc:a2:f1:0c:eb:35:b3:a9:
b9:14:12:23:30:16:8a:7f:c1:e7:0c:77:a0:65:2f:bb:9b:3f:
45:9f:9f:46:9c:7b:b3:e6:93:b8:41:51:1d:fa:28:6e:01:9e:
b5:2f:4e:c8:3c:c8:57:91:94:41:17:65:06:db:97:e4:cc:d5:
1e:e4:83:e2:cb:bf:47:be:a4:3e:02:46:d5:78:fc:d5:79:69:
ba:b7:b0:46:9c:a3:f6:2b:bf:34:ec:e8:f5:1b:e6:e4:a7:90:
22:c5:c3:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 8 01:49:49 2024 by rpki-client on console-fra.rpki-client.org