Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682104/09CCB94CA76311EABBC1911CF8AEA228/6C4D89A6AA6111EAA182A376F8AEA228.roa
File: 6C4D89A6AA6111EAA182A376F8AEA228.roa (raw, json)
Hash identifier: LzwfcfPXYn9F1fPoqK07og6GatpFFd+at5aM7HIpiWg=
Subject key identifier: 86:F8:11:BD:7F:74:12:8B:5E:53:10:4A:1B:EE:3C:D0:A6:77:29:2D
Certificate issuer: /CN=F3682104AF/serialNumber=8B1026953ECF7C4CE139FE9A59BDD7228A153544
Certificate serial: 13
Authority key identifier: 8B:10:26:95:3E:CF:7C:4C:E1:39:FE:9A:59:BD:D7:22:8A:15:35:44
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/ixAmlT7PfEzhOf6aWb3XIooVNUQ.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682104/09CCB94CA76311EABBC1911CF8AEA228/6C4D89A6AA6111EAA182A376F8AEA228.roa
Signing time: Tue 09 Jun 2020 14:56:40 +0000
ROA not before: Tue 09 Jun 2020 14:56:35 +0000
ROA not after: Tue 31 Dec 2030 14:56:35 +0000
asID: 33771
IP address blocks: 197.176.0.0/13 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3682104/09CCB94CA76311EABBC1911CF8AEA228/ixAmlT7PfEzhOf6aWb3XIooVNUQ.crl
rsync://rpki.afrinic.net/repository/member_repository/F3682104/09CCB94CA76311EABBC1911CF8AEA228/ixAmlT7PfEzhOf6aWb3XIooVNUQ.mft
rsync://rpki.afrinic.net/repository/afrinic/ixAmlT7PfEzhOf6aWb3XIooVNUQ.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 19 (0x13)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682104AF/serialNumber=8B1026953ECF7C4CE139FE9A59BDD7228A153544
Validity
Not Before: Jun 9 14:56:35 2020 GMT
Not After : Dec 31 14:56:35 2030 GMT
Subject: CN=5edfa327-ec47
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:16:0d:ff:48:56:d4:95:31:6f:dd:28:b3:1b:
52:8a:a5:73:e8:05:d4:72:07:a9:ed:9f:ae:84:b1:
17:64:2a:52:45:d9:07:79:bd:be:54:5d:e1:28:7c:
75:b1:bc:13:f4:3b:b8:15:1f:1f:7e:14:39:9c:e1:
56:f9:8e:d5:15:93:40:b3:d3:7a:da:6f:cc:b9:2a:
23:50:c5:7b:1a:ec:99:88:3f:0d:92:7b:cb:ab:c9:
7d:1a:d4:d2:22:01:7c:d6:d0:80:5e:7b:86:c3:09:
7d:a3:b5:a8:cb:aa:25:06:f9:0f:b5:f6:7d:cc:a4:
9f:a8:a9:79:e5:8c:e2:56:1d:19:97:cc:27:85:e6:
e3:cf:5e:32:00:68:b8:30:87:55:00:db:fa:93:b9:
b7:c1:a6:71:d0:dd:d9:74:b8:5b:40:f2:e2:6c:34:
25:e6:9d:fd:30:f7:dc:5c:d9:74:70:21:c7:00:c8:
0e:ea:f3:6b:72:5e:57:d9:49:ea:60:03:6b:e1:bf:
50:b3:67:3c:5d:6a:b3:1b:f3:17:29:d6:3b:6d:30:
6d:c4:bd:9b:75:15:5d:7b:dd:52:cb:10:43:84:ca:
f7:15:90:6b:de:72:1d:b2:6c:5c:db:11:46:c8:1a:
0f:d4:e0:b1:2c:db:ba:ac:a9:15:e5:0c:9b:d8:57:
e4:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:F8:11:BD:7F:74:12:8B:5E:53:10:4A:1B:EE:3C:D0:A6:77:29:2D
X509v3 Authority Key Identifier:
keyid:8B:10:26:95:3E:CF:7C:4C:E1:39:FE:9A:59:BD:D7:22:8A:15:35:44
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682104/09CCB94CA76311EABBC1911CF8AEA228/ixAmlT7PfEzhOf6aWb3XIooVNUQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/ixAmlT7PfEzhOf6aWb3XIooVNUQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682104/09CCB94CA76311EABBC1911CF8AEA228/6C4D89A6AA6111EAA182A376F8AEA228.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
197.176.0.0/13
Signature Algorithm: sha256WithRSAEncryption
99:29:a8:99:3b:c6:5a:d6:d0:a5:b7:2a:6a:25:3c:4e:30:a1:
4f:e3:e0:a5:17:47:c6:a6:55:58:4b:e5:05:8e:45:40:a6:c4:
aa:ae:52:9c:59:4d:20:ad:3e:cc:fe:55:83:1e:81:17:78:9a:
a8:86:ca:fe:a3:83:59:cf:dd:e6:a0:fe:f9:e3:0d:ce:af:46:
a2:5c:46:47:17:04:9b:3a:47:fe:74:54:0f:50:32:ed:3b:32:
95:15:35:48:7d:72:01:6c:04:cb:74:0d:c9:1e:68:8a:6a:63:
a0:e4:5b:ec:04:d3:bd:44:99:73:67:d1:3a:a3:fb:9e:0c:b8:
70:77:f0:ac:b7:b8:e2:4d:5d:f8:6b:79:7b:41:51:19:7d:14:
b5:87:bc:2a:11:b8:64:66:b1:1f:98:22:12:1f:ef:63:b5:c2:
f5:1e:e6:e8:60:79:5e:05:25:2f:cf:d3:67:bb:f0:2d:b5:02:
e5:9f:68:67:ff:b7:6b:f0:fd:c7:1a:7e:b4:01:5b:3f:28:77:
1d:00:d2:70:00:16:34:d3:6a:87:c0:6f:24:c5:5c:69:69:c4:
9c:31:24:0c:f2:75:0a:db:86:5d:53:7c:b9:82:81:d3:82:c4:
b1:eb:14:15:b4:5f:7d:1c:f7:d8:e8:c2:de:50:49:09:a9:9a:
0a:e0:e6:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:08:54 2024 by rpki-client on console-fra.rpki-client.org