Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3697F9B/C6DEF4DCE24611EA8D16EF50F8AEA228/57CB6630E25411EA8C85A55EF8AEA228.roa
File: 57CB6630E25411EA8C85A55EF8AEA228.roa (raw, json)
Hash identifier: zokPSNjx8r4IpsyxRDDLa5MvDTlpaKfogK8lEwUhKrg=
Subject key identifier: 14:9E:F7:2A:31:EF:10:DC:2D:1A:90:3E:DE:1E:D7:AA:71:E9:D1:AA
Certificate issuer: /CN=F3697F9BAF/serialNumber=6BE93D42375F5875A2F8CAD28098854162D25048
Certificate serial: 08
Authority key identifier: 6B:E9:3D:42:37:5F:58:75:A2:F8:CA:D2:80:98:85:41:62:D2:50:48
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/a-k9QjdfWHWi-MrSgJiFQWLSUEg.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3697F9B/C6DEF4DCE24611EA8D16EF50F8AEA228/57CB6630E25411EA8C85A55EF8AEA228.roa
Signing time: Wed 19 Aug 2020 19:44:07 +0000
ROA not before: Wed 19 Aug 2020 19:44:02 +0000
ROA not after: Sun 18 Aug 2030 19:44:02 +0000
asID: 8075
IP address blocks: 102.37.0.0/17 maxlen: 17
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3697F9B/C6DEF4DCE24611EA8D16EF50F8AEA228/a-k9QjdfWHWi-MrSgJiFQWLSUEg.crl
rsync://rpki.afrinic.net/repository/member_repository/F3697F9B/C6DEF4DCE24611EA8D16EF50F8AEA228/a-k9QjdfWHWi-MrSgJiFQWLSUEg.mft
rsync://rpki.afrinic.net/repository/afrinic/a-k9QjdfWHWi-MrSgJiFQWLSUEg.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8 (0x8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3697F9BAF/serialNumber=6BE93D42375F5875A2F8CAD28098854162D25048
Validity
Not Before: Aug 19 19:44:02 2020 GMT
Not After : Aug 18 19:44:02 2030 GMT
Subject: CN=5f3d8107-f394
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:2c:90:f7:b1:ad:38:97:e8:35:ad:9a:ff:f1:
c8:5c:de:5a:97:cb:d7:92:76:8f:b1:4e:a0:96:ed:
46:1c:95:a0:cc:58:83:7e:09:71:75:c7:12:f7:90:
3f:93:cf:b3:9c:6e:44:e6:4e:a8:28:a4:72:46:c7:
8b:1e:69:95:30:ab:59:f4:40:5e:31:d7:52:b6:35:
e1:7f:b1:e5:f4:ce:10:13:9d:ac:58:45:a8:92:f5:
a6:47:0a:2d:a5:f4:fa:a2:5c:a3:77:f1:e4:ce:0c:
37:bd:1a:0f:88:4d:4f:2a:c3:bb:c2:3d:20:47:80:
dc:88:b4:b9:93:d1:56:0c:c1:96:65:6d:cd:52:ed:
84:7d:04:f7:fb:72:95:7c:a0:61:18:60:20:6a:83:
36:a6:3b:a2:b9:df:10:54:d0:e1:c9:9c:60:b8:15:
98:33:ee:cd:15:c9:fc:f1:14:26:64:3c:4e:01:89:
97:1e:46:a0:05:a6:6b:23:2f:b5:d6:7f:0b:1a:91:
ce:c1:49:38:7d:b6:aa:a5:a1:fc:6b:cd:78:68:f3:
9d:9d:83:3a:ff:de:d8:88:98:89:be:4d:63:e5:11:
a3:af:88:75:6e:b9:9c:e1:e9:57:66:ca:ab:e8:1a:
47:9d:f3:b9:0b:cc:33:e1:02:78:fc:21:38:c6:c4:
eb:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:9E:F7:2A:31:EF:10:DC:2D:1A:90:3E:DE:1E:D7:AA:71:E9:D1:AA
X509v3 Authority Key Identifier:
keyid:6B:E9:3D:42:37:5F:58:75:A2:F8:CA:D2:80:98:85:41:62:D2:50:48
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3697F9B/C6DEF4DCE24611EA8D16EF50F8AEA228/a-k9QjdfWHWi-MrSgJiFQWLSUEg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/a-k9QjdfWHWi-MrSgJiFQWLSUEg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3697F9B/C6DEF4DCE24611EA8D16EF50F8AEA228/57CB6630E25411EA8C85A55EF8AEA228.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.37.0.0/17
Signature Algorithm: sha256WithRSAEncryption
97:91:1f:7f:11:bf:24:6b:9a:d8:86:38:a3:e8:7f:0b:8e:38:
5f:d3:2c:65:32:9c:55:b8:d3:81:9f:80:4a:da:77:f4:fd:ac:
b3:b8:2f:15:65:a1:5b:3a:0f:db:f2:58:22:47:a6:07:57:bc:
69:0b:93:ea:16:6f:4b:b3:2c:f2:8f:87:9d:c3:d7:dc:b8:d8:
45:7b:e0:44:8b:f0:78:aa:cc:e8:90:45:2a:5d:d8:5e:82:99:
f7:72:a2:cf:69:d3:5c:fa:12:8e:2a:b4:30:77:02:48:df:36:
cd:e7:fd:40:05:33:35:aa:d4:f5:44:77:11:39:fd:f8:bc:c1:
54:3f:b5:88:2b:2b:fb:64:da:43:2d:c1:fb:fb:d1:f6:05:e8:
4f:7f:8e:f2:16:65:e5:7e:f6:8b:44:5c:ca:a7:bf:4e:a9:96:
e1:a9:19:e4:8d:84:60:ff:28:8b:fb:84:51:15:4d:32:e0:8c:
af:84:63:74:8f:1e:54:88:02:7f:8a:38:8b:66:61:53:91:49:
bb:be:e7:f0:21:6c:1a:ab:6c:23:45:98:6e:69:79:eb:65:86:
e9:18:54:a6:94:28:44:13:c5:a5:cf:36:c8:32:2c:e6:74:5c:
d2:ee:86:27:11:a2:b7:e2:be:be:b7:a8:a2:62:5f:a7:7b:62:
8a:78:5a:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:10:13 2024 by rpki-client on console-fra.rpki-client.org