Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3680C14/64AB2F2A5AE011E69FCD5032F8AEA228/E2BB418E5AE011E6B12CB232F8AEA228.roa
File: E2BB418E5AE011E6B12CB232F8AEA228.roa (raw, json)
Hash identifier: rYL0yLjgbsJHyi2c/s6e6baIvNnm5sncSc2RxGJWEfA=
Subject key identifier: 37:F9:A8:FC:2D:28:CE:88:DA:35:C4:32:28:4C:5A:8C:01:00:D8:4C
Certificate issuer: /CN=F3680C14AF/serialNumber=BCDFF0C9D28F1AB45062F493BB3566CAC142646D
Certificate serial: 02
Authority key identifier: BC:DF:F0:C9:D2:8F:1A:B4:50:62:F4:93:BB:35:66:CA:C1:42:64:6D
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/vN_wydKPGrRQYvSTuzVmysFCZG0.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3680C14/64AB2F2A5AE011E69FCD5032F8AEA228/E2BB418E5AE011E6B12CB232F8AEA228.roa
Signing time: Fri 05 Aug 2016 07:47:41 +0000
ROA not before: Fri 05 Aug 2016 07:47:26 +0000
ROA not after: Thu 31 Dec 2026 07:47:26 +0000
asID: 327966
IP address blocks: 197.159.88.0/21 maxlen: 24
2c0f:f588::/32 maxlen: 48
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3680C14/64AB2F2A5AE011E69FCD5032F8AEA228/vN_wydKPGrRQYvSTuzVmysFCZG0.crl
rsync://rpki.afrinic.net/repository/member_repository/F3680C14/64AB2F2A5AE011E69FCD5032F8AEA228/vN_wydKPGrRQYvSTuzVmysFCZG0.mft
rsync://rpki.afrinic.net/repository/afrinic/vN_wydKPGrRQYvSTuzVmysFCZG0.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 28 Apr 2024 00:42:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2 (0x2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3680C14AF/serialNumber=BCDFF0C9D28F1AB45062F493BB3566CAC142646D
Validity
Not Before: Aug 5 07:47:26 2016 GMT
Not After : Dec 31 07:47:26 2026 GMT
Subject: CN=57a4449c-86c2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:ff:6a:11:ed:3f:35:ab:27:46:8e:0b:24:96:
04:15:5c:8c:3a:d7:0f:ab:84:9c:06:dd:65:79:b6:
d2:df:c7:47:29:ff:17:9f:00:a5:c6:3e:aa:d4:10:
cd:78:19:6c:b4:0e:1f:f5:2f:20:d1:83:6b:55:38:
0f:48:77:94:65:f8:c7:a7:9c:5a:30:89:f0:e7:cb:
a3:27:02:95:32:f3:84:2a:87:4c:bb:1c:3f:83:97:
2a:90:48:f9:11:83:a5:81:4f:4f:14:79:f6:e8:11:
a9:e8:9b:17:c1:6a:60:1a:1b:87:6e:ad:2c:03:55:
95:a4:e3:d7:5b:25:97:61:3d:9f:8a:0b:8e:bf:bd:
32:47:9e:3b:5e:4c:af:93:3f:c9:ed:00:19:44:33:
d5:da:c8:cc:e1:a1:12:c1:cd:86:dd:1b:ab:cf:44:
81:10:da:4e:b6:17:47:44:0d:a9:3b:1e:90:78:6c:
45:6b:f7:d9:05:f4:87:63:00:07:9b:13:15:65:63:
e2:16:74:96:4c:d9:79:ee:73:be:a6:e7:bd:c4:db:
1b:21:31:c7:e1:87:00:58:d9:ea:34:22:fd:0c:d2:
58:9c:f4:f2:d6:a7:5f:68:16:23:d7:7c:93:cd:7e:
99:3b:f9:c4:f4:fe:62:9d:e9:87:3f:3a:0b:bc:6f:
09:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:F9:A8:FC:2D:28:CE:88:DA:35:C4:32:28:4C:5A:8C:01:00:D8:4C
X509v3 Authority Key Identifier:
keyid:BC:DF:F0:C9:D2:8F:1A:B4:50:62:F4:93:BB:35:66:CA:C1:42:64:6D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3680C14/64AB2F2A5AE011E69FCD5032F8AEA228/vN_wydKPGrRQYvSTuzVmysFCZG0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/vN_wydKPGrRQYvSTuzVmysFCZG0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3680C14/64AB2F2A5AE011E69FCD5032F8AEA228/E2BB418E5AE011E6B12CB232F8AEA228.roa
sbgp-ipAddrBlock: critical
IPv4:
197.159.88.0/21
IPv6:
2c0f:f588::/32
Signature Algorithm: sha256WithRSAEncryption
1c:e3:1d:21:cf:7a:97:f3:88:9a:1b:e7:45:ef:24:74:8e:43:
a3:94:d5:ae:83:a2:3d:1e:f7:24:77:70:f6:99:e0:fb:e1:fc:
b0:46:0c:83:84:7f:e3:f0:92:7b:74:a4:21:18:31:0a:33:8b:
41:51:e8:a4:d2:71:85:ba:f9:2c:a1:33:57:2c:51:e6:08:27:
38:fd:f7:57:d9:4f:9c:25:11:2d:e4:e1:60:01:fc:ab:7f:40:
8d:8e:30:5a:55:b0:60:60:33:ca:31:89:68:55:df:5e:e3:f9:
64:85:72:34:1f:a7:ff:11:e0:d5:c9:72:8f:43:8a:b6:ac:01:
92:3b:5a:95:0b:96:96:bc:ee:69:76:3e:53:5b:f6:62:2a:ae:
9a:a3:12:08:d6:c5:0f:aa:62:f0:f9:84:f8:13:ec:db:d6:f4:
6e:eb:6a:59:48:d8:ac:ce:82:ea:8a:a3:35:c4:e5:b9:d6:79:
96:07:f9:e6:71:49:d9:78:2e:4c:d6:9c:f7:b4:50:03:19:4e:
d6:b8:0a:4c:4e:5b:32:c9:94:d3:6f:cc:3b:34:33:fa:53:aa:
8e:56:30:06:a6:99:2d:23:db:47:b5:42:b5:34:78:65:71:0f:
72:2f:20:e8:ec:03:fa:42:09:7b:8d:7d:85:af:70:c2:91:7f:
96:80:78:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 26 13:36:11 2024 by rpki-client on console-ams.rpki-client.org