Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F366DC11/8A879878967811EAA493725AF8AEA228/F2BE981A967811EA8430035BF8AEA228.roa
File: F2BE981A967811EA8430035BF8AEA228.roa (raw, json)
Hash identifier: dllLDZtxzSgyYd/WqilpdpG05+LSe4K0PZ7Qf+hqmSQ=
Subject key identifier: 7D:80:AD:26:F7:75:E8:23:16:AD:7D:08:57:E5:0C:21:53:29:27:F5
Certificate issuer: /CN=F366DC11AF/serialNumber=EC2A86368822A47F1397D8DCE5734C530272C965
Certificate serial: 02
Authority key identifier: EC:2A:86:36:88:22:A4:7F:13:97:D8:DC:E5:73:4C:53:02:72:C9:65
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/7CqGNogipH8Tl9jc5XNMUwJyyWU.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F366DC11/8A879878967811EAA493725AF8AEA228/F2BE981A967811EA8430035BF8AEA228.roa
Signing time: Fri 15 May 2020 06:54:40 +0000
ROA not before: Fri 15 May 2020 06:54:34 +0000
ROA not after: Tue 31 Dec 2030 06:54:34 +0000
asID: 328638
IP address blocks: 102.141.64.0/19 maxlen: 24
196.6.112.0/21 maxlen: 24
2c0f:f0a0::/32 maxlen: 48
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F366DC11/8A879878967811EAA493725AF8AEA228/7CqGNogipH8Tl9jc5XNMUwJyyWU.crl
rsync://rpki.afrinic.net/repository/member_repository/F366DC11/8A879878967811EAA493725AF8AEA228/7CqGNogipH8Tl9jc5XNMUwJyyWU.mft
rsync://rpki.afrinic.net/repository/afrinic/7CqGNogipH8Tl9jc5XNMUwJyyWU.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 26 Apr 2024 00:05:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2 (0x2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F366DC11AF/serialNumber=EC2A86368822A47F1397D8DCE5734C530272C965
Validity
Not Before: May 15 06:54:34 2020 GMT
Not After : Dec 31 06:54:34 2030 GMT
Subject: CN=5ebe3cb0-6b6e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:71:61:26:94:01:48:d2:b1:6c:52:c4:2d:1f:
aa:ef:70:3c:c3:da:d9:b7:bb:ae:81:d5:16:34:48:
9d:c6:af:6b:02:69:42:4f:25:d8:27:2d:56:80:0d:
e0:43:9b:25:a4:bd:39:bc:22:17:83:9b:0d:dc:46:
5c:0f:31:06:22:5b:5e:38:74:50:00:01:1a:eb:f1:
e9:c9:56:9a:3b:3f:d8:b6:1d:84:23:20:b0:76:fc:
fd:69:61:5a:ea:ba:15:73:e0:ea:97:80:04:d7:40:
1c:10:fe:85:95:4c:7c:8e:d7:d1:38:82:ae:95:32:
1a:43:24:2e:b1:39:64:cc:ed:72:53:bc:8b:23:90:
98:4a:53:5a:43:d2:82:d7:ab:7d:83:8a:f0:ac:37:
11:2f:22:f6:26:9b:ef:9a:ab:2c:66:b6:b7:88:b0:
86:b4:30:e2:82:88:de:49:52:e7:92:f8:22:0a:7f:
54:67:84:0a:56:80:0b:e2:bd:a0:f6:4b:bc:aa:f0:
02:c7:d8:c6:2e:31:d0:30:54:cf:5d:7c:19:bc:76:
16:e2:9a:fb:ca:ea:12:2f:fa:bd:60:a8:61:0b:ea:
3e:92:fd:79:b7:91:64:da:06:f8:d9:c8:c4:32:87:
f1:9f:d9:bf:33:3e:07:b0:74:ba:51:bb:b1:b5:08:
dd:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:80:AD:26:F7:75:E8:23:16:AD:7D:08:57:E5:0C:21:53:29:27:F5
X509v3 Authority Key Identifier:
keyid:EC:2A:86:36:88:22:A4:7F:13:97:D8:DC:E5:73:4C:53:02:72:C9:65
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F366DC11/8A879878967811EAA493725AF8AEA228/7CqGNogipH8Tl9jc5XNMUwJyyWU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/7CqGNogipH8Tl9jc5XNMUwJyyWU.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F366DC11/8A879878967811EAA493725AF8AEA228/F2BE981A967811EA8430035BF8AEA228.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.141.64.0/19
196.6.112.0/21
IPv6:
2c0f:f0a0::/32
Signature Algorithm: sha256WithRSAEncryption
93:75:f3:9d:56:5f:1e:c4:49:6b:61:d6:01:67:bd:2f:a9:31:
8b:89:96:09:e5:1e:ed:50:a3:0c:67:5f:b2:89:48:7c:e0:94:
48:36:4d:55:97:b7:6b:82:4f:f6:db:24:0e:f1:a3:a6:3b:1c:
80:b6:23:64:7c:62:70:05:42:a6:8a:70:fc:e4:da:92:3f:14:
14:c8:13:aa:e8:1f:1f:38:9e:9c:06:1a:e4:27:a4:7c:d0:d0:
ff:fd:b4:ca:69:86:45:34:e5:97:1c:6c:4f:6c:d7:1d:de:c6:
76:e0:90:fb:20:a2:6c:bf:02:27:1f:2e:5d:f1:a4:f8:2d:11:
7d:32:0d:44:0a:74:58:ce:8b:52:5b:f8:f6:be:5f:2c:43:83:
e9:12:d4:d8:60:14:0e:6e:2e:f2:92:68:53:fb:30:aa:63:a3:
9d:32:08:d6:eb:10:e4:4e:cf:7d:6a:42:64:36:31:39:cf:7d:
2a:2f:81:2b:39:6e:fd:ad:2e:15:3c:fc:11:54:03:b0:16:8f:
d8:e7:39:a4:d3:ec:06:8f:13:8a:3a:eb:b7:b3:a8:79:0e:ea:
dd:85:93:92:9a:1f:5f:c3:86:19:58:ea:4b:c3:0c:e2:7d:84:
60:ee:3c:b8:87:03:5d:31:35:4c:44:4a:81:d5:a9:27:50:41:
8e:80:5a:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 24 01:49:49 2024 by rpki-client on console-fra.rpki-client.org