Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F367C385/A3D2CE00C5E511EAAB62B122F8AEA228/3EAACEF8C60111EAA251483EF8AEA228.roa
File: 3EAACEF8C60111EAA251483EF8AEA228.roa (raw, json)
Hash identifier: Nv6f6c3Twv+vS/nsoIGBs8lzaY3R98pljU3B+YdTgI4=
Subject key identifier: 26:7D:9E:43:EE:E2:9F:1C:30:AF:6E:DB:D9:F7:B0:80:FB:8E:81:A2
Certificate issuer: /CN=F367C385AF/serialNumber=CF6F4D60D0D5C2E6D379A711D1B6AF01130C2A6C
Certificate serial: 07
Authority key identifier: CF:6F:4D:60:D0:D5:C2:E6:D3:79:A7:11:D1:B6:AF:01:13:0C:2A:6C
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/z29NYNDVwubTeacR0bavARMMKmw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F367C385/A3D2CE00C5E511EAAB62B122F8AEA228/3EAACEF8C60111EAA251483EF8AEA228.roa
Signing time: Tue 14 Jul 2020 18:38:44 +0000
ROA not before: Tue 14 Jul 2020 18:38:40 +0000
ROA not after: Sun 14 Jul 2030 18:38:40 +0000
asID: 328320
IP address blocks: 102.128.80.0/20 maxlen: 21
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F367C385/A3D2CE00C5E511EAAB62B122F8AEA228/z29NYNDVwubTeacR0bavARMMKmw.crl
rsync://rpki.afrinic.net/repository/member_repository/F367C385/A3D2CE00C5E511EAAB62B122F8AEA228/z29NYNDVwubTeacR0bavARMMKmw.mft
rsync://rpki.afrinic.net/repository/afrinic/z29NYNDVwubTeacR0bavARMMKmw.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7 (0x7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F367C385AF/serialNumber=CF6F4D60D0D5C2E6D379A711D1B6AF01130C2A6C
Validity
Not Before: Jul 14 18:38:40 2020 GMT
Not After : Jul 14 18:38:40 2030 GMT
Subject: CN=5f0dfbb4-bfd9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f7:6f:2e:b6:e5:c9:d7:e7:80:7a:d7:da:11:6b:
21:42:c2:c9:27:bc:39:f3:11:fe:e0:7c:d3:4a:ab:
77:bb:a6:0c:68:bc:a2:28:ee:26:5f:dd:9b:33:12:
83:e5:66:45:e9:82:a4:83:97:83:54:f7:a4:9e:5e:
4e:6e:60:e0:6d:cb:f6:de:60:4e:2c:38:01:12:9d:
65:3b:4b:56:6e:a0:01:45:e0:9e:a1:cc:89:8f:78:
be:07:30:3e:7b:c8:a4:2f:b8:ea:75:ee:98:cd:6f:
49:3f:a6:a8:46:de:e7:ea:c4:ea:f7:b3:89:ed:15:
f8:d7:de:43:19:45:3f:4d:87:c3:f3:e0:28:e8:07:
1a:96:d6:b5:5f:fe:63:1b:19:fe:0f:82:b3:0b:a1:
04:70:c9:cf:c1:8e:09:98:54:ea:6b:6d:ea:0d:b2:
d4:27:9d:0d:f6:84:af:3d:11:60:c8:9b:6e:ed:7e:
28:88:c9:e3:f2:f6:8b:d1:ef:b1:35:6a:08:55:12:
94:4e:44:94:dd:68:a0:51:fb:fa:4c:0f:d4:a5:b9:
ed:e1:e8:e2:bc:10:43:9b:28:2f:9d:8e:4c:f3:0e:
f8:56:15:5e:86:0b:e4:41:b4:a8:d2:d9:bf:4f:9f:
f6:28:f6:1b:3c:84:17:c0:2b:75:a4:bf:ee:ea:90:
95:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:7D:9E:43:EE:E2:9F:1C:30:AF:6E:DB:D9:F7:B0:80:FB:8E:81:A2
X509v3 Authority Key Identifier:
keyid:CF:6F:4D:60:D0:D5:C2:E6:D3:79:A7:11:D1:B6:AF:01:13:0C:2A:6C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F367C385/A3D2CE00C5E511EAAB62B122F8AEA228/z29NYNDVwubTeacR0bavARMMKmw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/z29NYNDVwubTeacR0bavARMMKmw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F367C385/A3D2CE00C5E511EAAB62B122F8AEA228/3EAACEF8C60111EAA251483EF8AEA228.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.128.80.0/20
Signature Algorithm: sha256WithRSAEncryption
b6:9b:84:84:24:91:13:25:fb:33:68:2a:aa:a5:4c:ea:6c:75:
c5:25:2f:41:5b:a9:3e:43:5b:1d:af:1d:da:eb:33:d7:50:42:
35:54:52:9b:04:7f:94:84:c4:4d:a9:a9:b7:93:6d:75:2f:64:
2d:14:17:b2:9a:73:86:35:c0:fa:bc:63:01:2d:86:2b:67:ad:
76:3f:f9:17:25:07:03:ac:0c:02:dc:e7:7e:90:b5:45:c6:33:
97:b7:d3:ee:d1:e3:a2:98:17:4b:b3:e2:5f:20:d7:75:a7:3a:
d6:1e:ff:84:53:31:37:e8:53:23:7c:21:fe:14:4a:1a:46:6d:
16:3b:95:b2:19:eb:9d:20:e5:99:7f:e9:3a:5e:3f:de:c6:a6:
32:b1:e1:dd:91:8c:2d:cc:9c:9c:9c:cf:fa:15:4a:87:4b:e1:
86:67:e8:1a:0f:ab:76:34:aa:d7:f7:47:39:3a:56:0b:b6:e9:
c8:fd:31:8f:60:1b:a5:ba:6a:77:7a:27:f3:3b:1e:cb:bb:ee:
4e:98:c3:5a:f3:63:8c:45:f5:91:bd:3e:1c:18:ae:b2:da:37:
52:dd:e3:2c:bd:ba:6c:b0:bd:33:e7:a8:d2:b8:a5:60:67:09:
5e:b6:f9:3b:84:46:99:6b:d4:21:e5:df:44:67:19:4a:b8:50:
f7:be:d1:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:08:54 2024 by rpki-client on console-fra.rpki-client.org