Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F366FAD3/666F962464DF11E8AFE47627F8AEA228/5CDDF2D65F8411E9A487E246F8AEA228.roa
File: 5CDDF2D65F8411E9A487E246F8AEA228.roa (raw, json)
Hash identifier: W5D3/ionOUfSBEwoAu8Mc+CDPfPuMjEyhVg8cxMPW1Y=
Subject key identifier: 38:25:22:EA:3A:94:72:73:D4:67:8D:69:25:07:43:EA:5C:1B:A5:3F
Certificate issuer: /CN=F366FAD3AF/serialNumber=6B90FE34A8669A8838FD238CC65A1152C4416505
Certificate serial: 0158
Authority key identifier: 6B:90:FE:34:A8:66:9A:88:38:FD:23:8C:C6:5A:11:52:C4:41:65:05
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/a5D-NKhmmog4_SOMxloRUsRBZQU.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F366FAD3/666F962464DF11E8AFE47627F8AEA228/5CDDF2D65F8411E9A487E246F8AEA228.roa
Signing time: Mon 15 Apr 2019 13:42:51 +0000
ROA not before: Mon 15 Apr 2019 13:42:45 +0000
ROA not after: Sun 15 Apr 2029 13:42:45 +0000
asID: 328262
IP address blocks: 102.177.68.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F366FAD3/666F962464DF11E8AFE47627F8AEA228/a5D-NKhmmog4_SOMxloRUsRBZQU.crl
rsync://rpki.afrinic.net/repository/member_repository/F366FAD3/666F962464DF11E8AFE47627F8AEA228/a5D-NKhmmog4_SOMxloRUsRBZQU.mft
rsync://rpki.afrinic.net/repository/afrinic/a5D-NKhmmog4_SOMxloRUsRBZQU.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 344 (0x158)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F366FAD3AF/serialNumber=6B90FE34A8669A8838FD238CC65A1152C4416505
Validity
Not Before: Apr 15 13:42:45 2019 GMT
Not After : Apr 15 13:42:45 2029 GMT
Subject: CN=5cb48a5b-4d87
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:7d:63:4b:98:57:e7:1a:b5:0d:0f:2b:90:9f:
72:9d:2f:83:eb:e7:ef:fe:93:40:81:8e:2f:27:54:
62:0f:00:ed:95:4e:ad:69:e2:97:17:81:15:8e:eb:
65:f0:dc:81:7b:fa:54:6a:e2:5f:35:8b:42:de:82:
1c:4c:b7:5b:ef:43:89:21:8a:4d:ac:4e:8d:d9:fd:
45:28:df:51:00:4b:52:9f:ff:c6:4e:b5:36:e1:8c:
0c:b9:25:6b:31:54:f6:dc:c2:74:d4:5b:72:94:97:
c7:07:b9:bc:fd:91:e6:42:f2:c9:3f:0b:7c:93:ef:
92:01:31:43:63:97:2d:04:8e:36:92:a4:75:2c:ee:
d8:e7:a8:1a:dc:0d:c5:86:6b:8b:56:71:4d:27:85:
d6:7e:ed:f1:bf:a5:78:98:df:4f:fa:9f:33:c1:89:
95:64:25:89:a5:fa:f3:7c:7c:8d:07:a3:82:e5:30:
cc:54:b3:53:11:70:32:39:c8:f9:93:7a:d5:b7:00:
c0:f5:5b:b0:3e:25:75:fd:f4:5f:42:45:33:0d:7f:
f1:38:2b:f1:9a:0c:c6:8d:55:c1:c5:1a:20:5c:db:
ef:8c:35:0d:e9:22:98:a4:b7:2d:21:4d:61:d1:e3:
b8:3b:8a:f3:54:ed:18:28:15:21:16:da:60:e2:a3:
ed:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:25:22:EA:3A:94:72:73:D4:67:8D:69:25:07:43:EA:5C:1B:A5:3F
X509v3 Authority Key Identifier:
keyid:6B:90:FE:34:A8:66:9A:88:38:FD:23:8C:C6:5A:11:52:C4:41:65:05
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F366FAD3/666F962464DF11E8AFE47627F8AEA228/a5D-NKhmmog4_SOMxloRUsRBZQU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/a5D-NKhmmog4_SOMxloRUsRBZQU.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F366FAD3/666F962464DF11E8AFE47627F8AEA228/5CDDF2D65F8411E9A487E246F8AEA228.roa
sbgp-ipAddrBlock: critical
IPv4:
102.177.68.0/22
Signature Algorithm: sha256WithRSAEncryption
7c:80:a1:b1:e8:9d:74:13:56:dd:e9:6e:6a:fb:17:c1:ff:ea:
65:6b:c3:53:53:23:ba:6f:50:d4:9a:ea:e2:f5:0a:b1:19:ef:
e2:21:60:f7:e7:f7:3b:ab:03:3b:fe:d4:11:00:a2:f3:30:5c:
ef:d5:46:0d:1c:8b:e2:b7:e9:13:e9:e9:06:b2:90:fc:a6:92:
9d:f6:43:b4:75:18:be:8c:0c:20:8c:81:12:9a:83:e8:e4:87:
4c:df:7a:c2:f2:9d:2e:e0:80:2c:c8:33:02:13:73:40:1e:90:
34:4b:27:9a:19:0d:0d:e2:13:ec:0c:a7:7e:ee:c2:1e:7d:b8:
1e:10:ed:7a:81:ec:ba:87:69:26:fa:e5:98:10:02:74:5f:71:
1a:ae:11:8d:1b:71:6a:88:47:32:23:b2:9f:ff:c9:de:30:8e:
f3:6c:7b:c1:4f:f4:ef:2b:1f:60:7c:62:b6:4f:e5:d6:22:68:
42:5b:1b:ac:5a:9a:b5:11:32:32:fb:c6:d5:fa:9c:38:a8:f1:
13:2d:97:77:3e:2f:62:37:55:34:c1:64:47:1d:34:1c:09:8c:
55:c2:7d:49:46:8e:01:81:3d:38:44:bb:44:ed:4c:6c:cb:99:
73:74:7b:eb:b3:f8:bc:c3:d8:af:b6:03:cd:b3:33:ea:82:eb:
88:75:68:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:08:54 2024 by rpki-client on console-fra.rpki-client.org