Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368588E/A3823956CB2F11E9890D1B27F8AEA228/E90920E88E6511EBBF85CD6BF8AEA228.roa
File: E90920E88E6511EBBF85CD6BF8AEA228.roa (raw, json)
Hash identifier: 2lqZqDUQcUKxveTR9cI5M5tuAOp//Ev36g7no9oTmfc=
Subject key identifier: D6:BB:88:A4:B4:18:66:A9:8C:7F:18:17:B0:4C:B7:57:E4:AD:57:E0
Certificate issuer: /CN=F368588EAF/serialNumber=5CADA32CFB001ABA6E4C9F5213D928765B15A337
Certificate serial: 025A
Authority key identifier: 5C:AD:A3:2C:FB:00:1A:BA:6E:4C:9F:52:13:D9:28:76:5B:15:A3:37
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/XK2jLPsAGrpuTJ9SE9kodlsVozc.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368588E/A3823956CB2F11E9890D1B27F8AEA228/E90920E88E6511EBBF85CD6BF8AEA228.roa
Signing time: Fri 26 Mar 2021 19:03:12 +0000
ROA not before: Fri 26 Mar 2021 19:03:06 +0000
ROA not after: Mon 31 Mar 2031 19:03:06 +0000
asID: 715
IP address blocks: 196.251.252.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368588E/A3823956CB2F11E9890D1B27F8AEA228/XK2jLPsAGrpuTJ9SE9kodlsVozc.crl
rsync://rpki.afrinic.net/repository/member_repository/F368588E/A3823956CB2F11E9890D1B27F8AEA228/XK2jLPsAGrpuTJ9SE9kodlsVozc.mft
rsync://rpki.afrinic.net/repository/afrinic/XK2jLPsAGrpuTJ9SE9kodlsVozc.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 602 (0x25a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368588EAF/serialNumber=5CADA32CFB001ABA6E4C9F5213D928765B15A337
Validity
Not Before: Mar 26 19:03:06 2021 GMT
Not After : Mar 31 19:03:06 2031 GMT
Subject: CN=605e2ff0-6c3f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:4c:fe:59:9a:f7:85:b7:63:d5:3f:49:fc:ae:
ed:90:1e:ab:ce:d1:44:54:9c:f1:72:b1:4c:ff:de:
f8:37:d1:06:4d:1a:88:7b:a8:4e:d9:71:15:37:07:
e0:a2:dd:94:0c:8a:c1:65:61:d4:0e:0c:71:b2:3b:
4d:2e:a6:70:22:57:92:c1:7b:ba:89:33:3f:6e:57:
35:7c:b4:4c:b9:c9:b2:25:24:0a:30:40:50:12:d6:
86:81:45:db:c0:f4:5e:5c:c4:6b:6b:91:27:a8:0f:
11:6a:4e:d2:94:c3:6f:12:2f:02:a2:6c:a5:72:23:
71:a3:62:cb:50:fc:04:a2:07:24:ac:25:08:63:1f:
8e:2a:4b:8e:14:72:85:27:3c:9c:c2:46:0b:02:dc:
57:1e:ac:ab:c5:b6:9a:7e:35:77:a3:59:55:db:ce:
9e:be:16:75:15:c3:a8:e6:d4:18:ad:22:e6:34:20:
50:3a:ea:21:c6:c0:8e:37:fe:e2:f3:2c:33:9c:a3:
9b:31:01:db:c2:6f:63:cb:6e:c7:45:98:91:01:3b:
8c:3a:45:6e:66:8f:f2:64:cf:70:76:4d:b6:f4:03:
70:73:2e:04:1d:b9:e4:4e:12:14:a6:a2:3d:d1:ae:
29:e0:00:5e:58:71:a1:58:c0:fa:78:b8:28:c6:c1:
02:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:BB:88:A4:B4:18:66:A9:8C:7F:18:17:B0:4C:B7:57:E4:AD:57:E0
X509v3 Authority Key Identifier:
keyid:5C:AD:A3:2C:FB:00:1A:BA:6E:4C:9F:52:13:D9:28:76:5B:15:A3:37
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368588E/A3823956CB2F11E9890D1B27F8AEA228/XK2jLPsAGrpuTJ9SE9kodlsVozc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/XK2jLPsAGrpuTJ9SE9kodlsVozc.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368588E/A3823956CB2F11E9890D1B27F8AEA228/E90920E88E6511EBBF85CD6BF8AEA228.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
196.251.252.0/22
Signature Algorithm: sha256WithRSAEncryption
43:41:cb:b0:51:c6:e3:02:24:d2:da:6a:20:33:24:0f:29:d4:
e3:a9:8d:a7:e2:7a:4c:87:e6:b9:ec:5f:f4:a2:3e:72:21:8c:
cf:c2:4f:3a:8c:70:1c:bb:22:69:4d:ec:0a:64:38:5e:9a:b9:
e1:1a:f9:51:c5:4e:70:9b:2c:76:1c:30:b4:6b:64:d6:1b:53:
2e:cb:9d:dd:d4:12:93:95:61:ea:48:aa:cb:eb:46:7a:14:ed:
5b:be:8a:39:88:0c:12:ea:86:68:70:45:54:d8:27:73:00:f5:
e4:24:4c:c8:c7:a6:86:a8:ba:c6:25:a5:dc:1f:1c:d7:4f:df:
23:6e:b9:34:2c:b7:03:01:11:f0:4a:ab:47:01:cc:9f:eb:10:
e0:44:de:08:b6:a6:8e:83:41:63:02:c2:6e:f3:a3:8a:08:04:
91:cd:00:15:b9:9b:91:b3:f7:bb:ad:e1:c4:41:fd:dc:cf:e2:
f7:dc:05:29:08:e0:3a:b7:55:3d:92:0e:2a:e6:50:c4:95:b2:
fd:bb:5b:85:fe:8d:a2:0b:ab:eb:2f:68:e8:69:e2:bd:38:af:
5a:91:06:ef:b1:8f:f6:91:79:68:9e:c7:50:45:4b:d6:00:36:
aa:47:11:b1:67:50:c2:81:0f:76:3b:de:fc:5d:33:91:ef:4c:
12:62:e1:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:08:57 2024 by rpki-client on console-fra.rpki-client.org