Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36914A7/C4286154FBFD11E9B772CE47F8AEA228/1AF2F83CFBFE11E992573048F8AEA228.roa
File: 1AF2F83CFBFE11E992573048F8AEA228.roa (raw, json)
Hash identifier: oouCj0bsgLv2TuhXp8fmEvLXf8LLF9rpmnAY9E+k4nY=
Subject key identifier: 15:52:34:E5:83:C5:DA:FE:17:C3:60:BB:74:79:48:F2:C4:D9:70:0B
Certificate issuer: /CN=F36914A7AF/serialNumber=CA9416BEBC956B4AD58C1CAC1C1D469F68335052
Certificate serial: 02
Authority key identifier: CA:94:16:BE:BC:95:6B:4A:D5:8C:1C:AC:1C:1D:46:9F:68:33:50:52
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/ypQWvryVa0rVjBysHB1Gn2gzUFI.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36914A7/C4286154FBFD11E9B772CE47F8AEA228/1AF2F83CFBFE11E992573048F8AEA228.roa
Signing time: Thu 31 Oct 2019 16:47:21 +0000
ROA not before: Thu 31 Oct 2019 16:47:14 +0000
ROA not after: Wed 31 Oct 2029 16:47:14 +0000
asID: 37567
IP address blocks: 2001:43f8:1420::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36914A7/C4286154FBFD11E9B772CE47F8AEA228/ypQWvryVa0rVjBysHB1Gn2gzUFI.crl
rsync://rpki.afrinic.net/repository/member_repository/F36914A7/C4286154FBFD11E9B772CE47F8AEA228/ypQWvryVa0rVjBysHB1Gn2gzUFI.mft
rsync://rpki.afrinic.net/repository/afrinic/ypQWvryVa0rVjBysHB1Gn2gzUFI.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2 (0x2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36914A7AF/serialNumber=CA9416BEBC956B4AD58C1CAC1C1D469F68335052
Validity
Not Before: Oct 31 16:47:14 2019 GMT
Not After : Oct 31 16:47:14 2029 GMT
Subject: CN=5dbb1018-bf8a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:88:ea:7f:e0:03:58:6b:b2:e9:ff:12:59:c8:
c7:e9:d2:ed:bd:da:a6:b8:9c:1a:f9:ad:73:74:fa:
a8:32:bf:d1:dd:63:98:5b:21:33:40:3a:b0:b9:0f:
99:10:16:c4:04:83:47:fc:2e:a8:14:d4:86:b6:2a:
e2:60:6d:4b:3a:6e:61:b0:30:0f:82:8c:f2:b9:d1:
de:00:e2:34:00:87:3d:a6:1b:18:9d:80:6c:7a:ca:
55:bc:cc:44:11:8c:94:de:1a:63:be:60:7f:1c:7a:
d4:14:13:e7:34:e3:3e:00:4e:5e:5d:f1:12:b6:4f:
f9:d3:bd:8a:c1:d9:3a:9d:25:c4:c5:62:33:99:1f:
34:15:cb:e3:b4:b2:81:9c:c6:ee:da:f8:e3:00:f6:
8c:fa:74:c3:81:75:c3:50:a7:8d:cc:c5:7b:d4:cc:
2a:e0:c5:c1:7f:69:e7:c7:c6:1b:14:73:e4:9d:60:
27:1d:f6:b7:34:95:e1:ff:04:22:dc:cf:87:d1:60:
06:6d:93:e8:e0:bf:60:40:e3:a4:b1:75:8b:56:11:
26:68:ac:e1:ca:35:1b:3a:03:e3:67:19:8a:fd:6a:
f1:35:c7:5f:28:75:6d:62:8a:11:68:5d:ff:18:50:
c0:45:e0:ac:72:86:bc:8e:85:96:90:c2:a0:d5:7e:
16:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:52:34:E5:83:C5:DA:FE:17:C3:60:BB:74:79:48:F2:C4:D9:70:0B
X509v3 Authority Key Identifier:
keyid:CA:94:16:BE:BC:95:6B:4A:D5:8C:1C:AC:1C:1D:46:9F:68:33:50:52
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36914A7/C4286154FBFD11E9B772CE47F8AEA228/ypQWvryVa0rVjBysHB1Gn2gzUFI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/ypQWvryVa0rVjBysHB1Gn2gzUFI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36914A7/C4286154FBFD11E9B772CE47F8AEA228/1AF2F83CFBFE11E992573048F8AEA228.roa
sbgp-ipAddrBlock: critical
IPv6:
2001:43f8:1420::/48
Signature Algorithm: sha256WithRSAEncryption
9c:04:05:c6:1c:0f:25:09:6d:6d:98:f6:80:14:3e:69:7a:c9:
48:e7:84:ca:db:f3:3d:47:d6:3a:11:d2:ae:a9:91:45:1b:a7:
f9:60:1f:29:62:25:44:9c:2b:10:7a:f1:43:6b:ea:33:b5:af:
c0:e8:0c:66:2b:5d:ea:38:13:87:8d:e9:12:3f:0e:d5:54:15:
7e:2d:6e:0c:d6:47:87:e1:bb:ac:e5:1b:11:c1:47:dc:5e:83:
55:7c:86:cf:3a:cc:93:62:41:0d:7d:29:20:60:64:8e:16:bd:
db:44:c6:3a:f2:42:45:77:cb:5e:8b:68:c9:4d:00:3b:3d:1b:
27:b1:96:f4:ac:23:89:41:01:22:e0:d7:ba:ae:2a:aa:10:57:
c6:f9:af:d3:b1:43:8a:b1:de:dd:5f:34:70:2f:dd:b4:8c:56:
13:ba:36:0e:81:c5:7f:df:63:47:97:42:d2:65:53:5d:dd:10:
ea:35:b7:67:5a:53:e3:58:78:43:00:56:14:5b:60:26:93:7e:
f2:04:70:30:73:0f:e2:bf:a6:54:a3:b9:bc:8b:8b:a1:0e:d4:
3b:4f:45:2f:56:d6:b8:d2:ce:d2:e6:60:25:06:94:2c:d7:af:
d7:55:f0:26:0c:fd:01:45:48:c9:2a:77:01:b5:d8:64:3c:8d:
e3:fd:05:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:10:13 2024 by rpki-client on console-fra.rpki-client.org