Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F366F191/1DA5A51E07F711E79CDBB30AF8AEA228/E7F9C2D60E4C11E795956341F8AEA228.roa
File: E7F9C2D60E4C11E795956341F8AEA228.roa (raw, json)
Hash identifier: emeNnLebc/Q9zvHY298LJgCEJ9keSysC0t/xMmR8occ=
Subject key identifier: A9:7E:46:18:C9:4A:DF:6C:66:DD:35:E7:54:DD:97:18:C7:DF:00:2E
Certificate issuer: /CN=F366F191AF/serialNumber=A73EBD8DE928D2204414F80E9C129C959D7C4489
Certificate serial: 0A
Authority key identifier: A7:3E:BD:8D:E9:28:D2:20:44:14:F8:0E:9C:12:9C:95:9D:7C:44:89
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/pz69jeko0iBEFPgOnBKclZ18RIk.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F366F191/1DA5A51E07F711E79CDBB30AF8AEA228/E7F9C2D60E4C11E795956341F8AEA228.roa
Signing time: Tue 21 Mar 2017 15:41:56 +0000
ROA not before: Tue 21 Mar 2017 15:41:46 +0000
ROA not after: Tue 18 Mar 2036 15:41:46 +0000
asID: 36924
IP address blocks: 2c0f:f038::/32 maxlen: 48
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F366F191/1DA5A51E07F711E79CDBB30AF8AEA228/pz69jeko0iBEFPgOnBKclZ18RIk.crl
rsync://rpki.afrinic.net/repository/member_repository/F366F191/1DA5A51E07F711E79CDBB30AF8AEA228/pz69jeko0iBEFPgOnBKclZ18RIk.mft
rsync://rpki.afrinic.net/repository/afrinic/pz69jeko0iBEFPgOnBKclZ18RIk.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10 (0xa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F366F191AF/serialNumber=A73EBD8DE928D2204414F80E9C129C959D7C4489
Validity
Not Before: Mar 21 15:41:46 2017 GMT
Not After : Mar 18 15:41:46 2036 GMT
Subject: CN=58d149c4-e89b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:30:2b:74:aa:31:51:e1:36:9b:7d:3d:ec:47:
3e:b1:8e:23:58:00:e7:24:d2:9a:7e:76:69:5f:92:
18:e2:cd:db:ed:bd:b4:36:12:11:92:fe:22:26:ad:
da:0a:7b:83:4d:be:68:1f:aa:d0:72:20:d3:6c:80:
bb:3b:bd:2e:14:a2:0d:50:7e:34:72:94:60:60:99:
54:a5:bf:35:e5:d4:06:94:13:d0:10:2a:dc:d1:4d:
6c:b0:ba:dd:8f:71:f7:f6:e8:ea:a1:28:0d:6a:8f:
77:e4:db:08:89:91:41:52:6c:b9:95:88:62:59:c2:
0b:8b:8e:a1:ae:2d:be:31:fd:5e:2a:38:82:1e:df:
fc:53:ed:a8:aa:04:ce:76:e2:b6:83:83:d8:06:b8:
03:41:52:dd:db:3c:ec:d7:7f:fd:af:30:94:2d:bb:
be:76:c8:70:28:cc:b3:30:15:db:b6:2a:b8:67:5e:
a8:3f:12:85:26:50:04:b3:3d:0e:a8:75:c1:6d:98:
cb:f8:20:87:4e:8f:74:1c:a6:e8:5b:ac:9a:2d:bd:
74:a0:ad:ff:bf:c3:d9:57:ac:42:3e:e6:4f:15:51:
5a:5c:7f:c8:9d:4e:9c:f4:83:3f:9b:ba:db:28:6b:
eb:00:a4:ce:85:1c:f1:64:eb:f2:b5:88:24:a1:f8:
b9:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:7E:46:18:C9:4A:DF:6C:66:DD:35:E7:54:DD:97:18:C7:DF:00:2E
X509v3 Authority Key Identifier:
keyid:A7:3E:BD:8D:E9:28:D2:20:44:14:F8:0E:9C:12:9C:95:9D:7C:44:89
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F366F191/1DA5A51E07F711E79CDBB30AF8AEA228/pz69jeko0iBEFPgOnBKclZ18RIk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/pz69jeko0iBEFPgOnBKclZ18RIk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F366F191/1DA5A51E07F711E79CDBB30AF8AEA228/E7F9C2D60E4C11E795956341F8AEA228.roa
sbgp-ipAddrBlock: critical
IPv6:
2c0f:f038::/32
Signature Algorithm: sha256WithRSAEncryption
3b:d6:e9:8c:85:25:af:ca:ca:40:f4:0f:82:82:e1:3b:8d:21:
ac:88:9e:b0:08:8b:52:4a:c6:93:ec:0e:d0:a8:66:6a:de:a9:
49:cb:0b:25:4b:e9:95:6e:d4:f3:3b:00:44:96:1e:a4:d8:c0:
46:f5:32:b1:ce:af:93:d7:26:21:2e:2f:f5:5d:86:a5:ba:19:
5b:87:57:e2:22:ae:e7:b6:1e:4a:ac:c8:0c:ff:99:a6:fa:12:
a8:ab:2d:e0:6d:05:17:1d:48:af:1a:87:a8:36:c2:57:d3:7a:
42:fd:1c:dc:1b:e8:04:56:dc:14:9e:5e:dd:4a:af:5b:df:45:
6e:6a:9e:5e:b7:a3:70:a2:b4:3a:73:ed:1d:aa:64:fb:ca:54:
8c:e6:03:8b:5c:e7:f4:53:1b:75:b1:ca:a1:9b:7e:93:8f:a8:
8a:66:d7:c1:1f:5f:82:b4:1a:6b:3c:64:9a:28:32:f4:ac:86:
19:5c:82:57:10:6f:8f:70:62:13:79:92:d5:4e:48:18:2b:cf:
b8:59:64:46:36:31:b8:ad:5a:81:bc:04:4a:d7:8b:af:1e:48:
76:15:c3:9e:fa:24:94:d4:17:98:ed:27:57:2a:f9:87:a6:f2:
3d:9f:2e:cd:a2:99:3e:0e:06:b8:8c:83:44:ae:45:ee:7e:e9:
cc:37:83:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:03:43 2024 by rpki-client on console-ams.rpki-client.org