Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F366FAD3/666F962464DF11E8AFE47627F8AEA228/2B44E2DA56FF11E98AB1737BF8AEA228.roa
File: 2B44E2DA56FF11E98AB1737BF8AEA228.roa (raw, json)
Hash identifier: KthwQ1M/ZZ2vEvLYbI5jDmjg5aaJSRqGQpQ+loYoav8=
Subject key identifier: 37:EE:EA:83:86:55:CE:2E:8D:16:4B:ED:83:0D:08:92:01:64:62:6E
Certificate issuer: /CN=F366FAD3AF/serialNumber=6B90FE34A8669A8838FD238CC65A1152C4416505
Certificate serial: 0149
Authority key identifier: 6B:90:FE:34:A8:66:9A:88:38:FD:23:8C:C6:5A:11:52:C4:41:65:05
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/a5D-NKhmmog4_SOMxloRUsRBZQU.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F366FAD3/666F962464DF11E8AFE47627F8AEA228/2B44E2DA56FF11E98AB1737BF8AEA228.roa
Signing time: Thu 04 Apr 2019 17:29:16 +0000
ROA not before: Thu 04 Apr 2019 17:29:11 +0000
ROA not after: Wed 04 Apr 2029 17:29:11 +0000
asID: 328262
IP address blocks: 102.177.64.0/21 maxlen: 21
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F366FAD3/666F962464DF11E8AFE47627F8AEA228/a5D-NKhmmog4_SOMxloRUsRBZQU.crl
rsync://rpki.afrinic.net/repository/member_repository/F366FAD3/666F962464DF11E8AFE47627F8AEA228/a5D-NKhmmog4_SOMxloRUsRBZQU.mft
rsync://rpki.afrinic.net/repository/afrinic/a5D-NKhmmog4_SOMxloRUsRBZQU.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 07 May 2024 00:04:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 329 (0x149)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F366FAD3AF/serialNumber=6B90FE34A8669A8838FD238CC65A1152C4416505
Validity
Not Before: Apr 4 17:29:11 2019 GMT
Not After : Apr 4 17:29:11 2029 GMT
Subject: CN=5ca63eeb-9e04
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:d1:e5:8e:12:b9:3f:01:bd:65:84:f4:5e:90:
41:44:fc:aa:b2:05:16:13:97:4a:b1:c1:23:53:bd:
fa:22:d8:35:4b:8a:32:62:f7:f7:49:7d:64:fb:27:
ac:5d:c8:ba:94:08:d4:99:10:d8:8f:d4:6e:1e:73:
b4:32:34:f5:52:50:a2:26:a7:d6:77:f3:aa:87:2c:
8d:d4:fa:7f:e7:ff:52:24:66:5f:b1:d3:44:76:40:
04:19:f5:68:ef:3e:3c:3d:7f:37:1e:46:be:20:7f:
6c:34:2e:ab:34:43:ed:2d:31:d5:4b:5d:e7:a6:1c:
81:0c:c3:d3:d4:82:28:e1:56:9e:de:74:05:1f:fc:
c3:c1:d3:97:e1:4e:fd:b4:02:7d:86:0e:c6:6e:e1:
79:f6:06:43:31:0d:bb:bc:28:51:e5:ba:3c:31:1b:
f4:50:21:49:3f:f3:22:f0:eb:17:a2:f5:fd:54:de:
e9:39:ae:ae:4c:81:57:5c:b0:07:f6:1f:9c:ac:03:
e5:61:11:7b:11:d2:e9:bf:77:d1:c6:1e:2c:6e:ba:
1d:a4:e4:b6:80:25:b0:78:f9:b1:df:d1:88:e2:16:
8b:68:b2:0a:52:0f:ca:63:0b:ac:ea:55:ed:cf:07:
1b:37:33:0e:a2:2d:42:5b:84:dc:e6:13:90:a6:a7:
2c:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:EE:EA:83:86:55:CE:2E:8D:16:4B:ED:83:0D:08:92:01:64:62:6E
X509v3 Authority Key Identifier:
keyid:6B:90:FE:34:A8:66:9A:88:38:FD:23:8C:C6:5A:11:52:C4:41:65:05
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F366FAD3/666F962464DF11E8AFE47627F8AEA228/a5D-NKhmmog4_SOMxloRUsRBZQU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/a5D-NKhmmog4_SOMxloRUsRBZQU.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F366FAD3/666F962464DF11E8AFE47627F8AEA228/2B44E2DA56FF11E98AB1737BF8AEA228.roa
sbgp-ipAddrBlock: critical
IPv4:
102.177.64.0/21
Signature Algorithm: sha256WithRSAEncryption
48:f1:be:90:3c:00:c5:c7:6e:7e:bd:18:f0:62:4b:17:da:81:
f3:2f:f9:d8:a0:34:42:2d:39:39:16:7f:28:4f:68:1a:60:60:
f6:a5:54:91:ef:95:96:fc:14:6c:32:f4:14:96:57:00:a5:10:
fe:d3:93:18:f5:1c:3c:c9:b3:9a:1c:8e:6e:f9:37:16:68:8f:
81:c2:2d:c3:e8:96:4f:79:a7:dc:d1:dd:31:8c:75:05:ba:df:
bd:c9:db:7e:d5:9e:a6:8a:32:0c:8f:6d:eb:e3:67:42:88:8d:
c5:49:7e:de:7c:66:50:06:34:61:2d:a2:70:39:de:89:9c:53:
32:9c:85:3a:b8:9f:e0:40:16:c5:ea:d7:a1:47:ca:06:b8:26:
a8:a1:bb:eb:ab:53:77:d2:0d:e0:c0:51:a8:0e:ff:4c:2d:8d:
49:74:95:7c:a5:26:60:ce:00:10:7a:4f:a1:47:53:64:9f:0c:
d5:5a:52:67:7f:4a:2a:30:1d:bc:d9:0d:3d:bd:1a:db:59:90:
91:06:99:88:1b:37:c4:07:33:33:30:d7:36:7a:74:a6:09:e2:
ba:fe:16:30:e0:8a:bc:9f:c5:1d:a4:37:bc:f4:35:86:b3:b0:
13:81:ee:37:b9:94:0a:42:22:0a:a7:d3:70:f3:c3:d8:91:2f:
a6:02:af:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 5 01:22:17 2024 by rpki-client on console-fra.rpki-client.org