Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368588E/A3823956CB2F11E9890D1B27F8AEA228/82AA23C48E6511EB87AB596BF8AEA228.roa
File: 82AA23C48E6511EB87AB596BF8AEA228.roa (raw, json)
Hash identifier: Awf3KcwUqHS+Tb+h21An3tUV9Zndn4ovZSX7QkhwLRI=
Subject key identifier: B8:FD:51:EC:BB:78:C4:F7:2E:1E:42:14:03:D3:DC:D9:C1:E1:92:AE
Certificate issuer: /CN=F368588EAF/serialNumber=5CADA32CFB001ABA6E4C9F5213D928765B15A337
Certificate serial: 0256
Authority key identifier: 5C:AD:A3:2C:FB:00:1A:BA:6E:4C:9F:52:13:D9:28:76:5B:15:A3:37
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/XK2jLPsAGrpuTJ9SE9kodlsVozc.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368588E/A3823956CB2F11E9890D1B27F8AEA228/82AA23C48E6511EB87AB596BF8AEA228.roa
Signing time: Fri 26 Mar 2021 19:00:20 +0000
ROA not before: Fri 26 Mar 2021 19:00:15 +0000
ROA not after: Mon 31 Mar 2031 19:00:15 +0000
asID: 715
IP address blocks: 196.250.252.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368588E/A3823956CB2F11E9890D1B27F8AEA228/XK2jLPsAGrpuTJ9SE9kodlsVozc.crl
rsync://rpki.afrinic.net/repository/member_repository/F368588E/A3823956CB2F11E9890D1B27F8AEA228/XK2jLPsAGrpuTJ9SE9kodlsVozc.mft
rsync://rpki.afrinic.net/repository/afrinic/XK2jLPsAGrpuTJ9SE9kodlsVozc.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 598 (0x256)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368588EAF/serialNumber=5CADA32CFB001ABA6E4C9F5213D928765B15A337
Validity
Not Before: Mar 26 19:00:15 2021 GMT
Not After : Mar 31 19:00:15 2031 GMT
Subject: CN=605e2f44-dee5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:95:f9:fb:c1:d3:f6:1e:2b:b5:7d:59:f8:06:
63:92:ae:2c:73:61:f8:40:5b:5e:ee:5d:2e:f0:fe:
bf:43:05:25:fa:83:9f:9e:83:1d:ee:7f:41:b8:36:
bc:cb:32:1c:78:b2:ff:c1:a6:f7:d2:1d:b6:71:c4:
c7:34:23:77:4c:18:73:69:26:e0:74:bd:0f:76:ce:
87:2f:19:34:cf:e6:65:f1:db:26:0d:7c:14:76:bc:
5f:cf:b0:24:f7:8f:a2:eb:ad:82:6c:25:c8:12:c6:
f8:81:20:d7:19:8f:a9:a1:3e:64:bd:c2:67:74:be:
30:18:49:06:1e:1f:d6:6a:7c:5d:06:00:b1:2b:1d:
f6:50:c3:62:1c:d1:20:e5:87:e9:f0:5e:07:f8:46:
68:51:ca:1b:8e:b3:e8:4e:30:30:e3:07:22:6e:19:
23:77:ce:88:e9:b5:f4:8b:bc:03:2c:e1:46:c2:b2:
90:bf:89:d3:76:15:50:5e:a3:09:f9:da:05:e7:8f:
20:5a:d4:fe:86:47:bb:4c:94:5b:71:c2:f0:b2:cb:
57:24:97:07:22:25:23:50:f5:ca:e6:c0:9f:47:19:
d1:70:88:88:9d:26:82:3c:75:dc:79:e9:08:34:93:
b6:fb:98:ff:dd:df:ac:82:36:e2:be:d4:0d:39:0a:
9f:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:FD:51:EC:BB:78:C4:F7:2E:1E:42:14:03:D3:DC:D9:C1:E1:92:AE
X509v3 Authority Key Identifier:
keyid:5C:AD:A3:2C:FB:00:1A:BA:6E:4C:9F:52:13:D9:28:76:5B:15:A3:37
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368588E/A3823956CB2F11E9890D1B27F8AEA228/XK2jLPsAGrpuTJ9SE9kodlsVozc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/XK2jLPsAGrpuTJ9SE9kodlsVozc.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368588E/A3823956CB2F11E9890D1B27F8AEA228/82AA23C48E6511EB87AB596BF8AEA228.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
196.250.252.0/22
Signature Algorithm: sha256WithRSAEncryption
80:84:b5:cf:35:0d:bb:a4:7d:78:3f:1d:37:59:14:d2:23:4d:
d5:b0:f7:0a:5c:c2:e0:d9:34:f5:97:a5:a4:29:7f:c0:20:b7:
41:23:d2:a2:5f:78:78:5b:c4:c3:12:3a:eb:6e:f2:c8:04:7f:
50:10:9d:0d:51:1b:d2:68:5d:5e:66:2e:42:7c:18:06:f5:59:
b0:11:3c:0a:6c:2b:a0:5d:cf:3a:cf:37:3c:18:87:51:a8:2c:
f6:e2:e3:c1:89:82:af:3b:31:9b:8b:5e:87:23:83:2d:a2:bf:
19:16:4d:0d:46:ce:00:ce:bb:c4:0a:84:77:63:5f:6f:f2:4c:
a7:55:8c:a1:d9:b8:df:c6:f3:ef:22:25:2e:a1:74:6a:4b:ac:
5e:be:df:39:be:4a:76:9c:b2:b0:b9:d4:e9:1b:1f:f2:b8:e5:
c8:91:01:24:4a:03:d2:61:e1:e8:2d:af:ff:1d:a8:b1:0e:fd:
40:ff:85:88:38:42:e4:d4:f2:c3:2e:c3:1e:7b:f1:ea:1c:ea:
59:e7:f2:22:d2:89:46:15:1f:b9:e9:a3:3e:be:aa:3f:8d:18:
02:ec:1c:0a:b1:da:00:5d:85:76:e0:2f:7b:69:7e:16:3e:41:
f7:9a:41:c1:99:57:67:56:79:b6:c4:4c:8f:55:e6:7d:0f:5a:
1c:ed:2f:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:03:47 2024 by rpki-client on console-ams.rpki-client.org