Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3697F9B/C6DEF4DCE24611EA8D16EF50F8AEA228/8B23E96CE25411EAABDED95EF8AEA228.roa
File: 8B23E96CE25411EAABDED95EF8AEA228.roa (raw, json)
Hash identifier: G1N7VCX3quzWOxjZ6v2ZRD1s53UOL4I3nt3IbyrQuyg=
Subject key identifier: 7C:A8:54:00:7C:52:AA:47:69:EC:92:5D:4A:F1:57:2E:1B:FA:CB:55
Certificate issuer: /CN=F3697F9BAF/serialNumber=6BE93D42375F5875A2F8CAD28098854162D25048
Certificate serial: 0A
Authority key identifier: 6B:E9:3D:42:37:5F:58:75:A2:F8:CA:D2:80:98:85:41:62:D2:50:48
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/a-k9QjdfWHWi-MrSgJiFQWLSUEg.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3697F9B/C6DEF4DCE24611EA8D16EF50F8AEA228/8B23E96CE25411EAABDED95EF8AEA228.roa
Signing time: Wed 19 Aug 2020 19:45:33 +0000
ROA not before: Wed 19 Aug 2020 19:45:28 +0000
ROA not after: Sun 18 Aug 2030 19:45:28 +0000
asID: 8075
IP address blocks: 102.37.128.0/17 maxlen: 17
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3697F9B/C6DEF4DCE24611EA8D16EF50F8AEA228/a-k9QjdfWHWi-MrSgJiFQWLSUEg.crl
rsync://rpki.afrinic.net/repository/member_repository/F3697F9B/C6DEF4DCE24611EA8D16EF50F8AEA228/a-k9QjdfWHWi-MrSgJiFQWLSUEg.mft
rsync://rpki.afrinic.net/repository/afrinic/a-k9QjdfWHWi-MrSgJiFQWLSUEg.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10 (0xa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3697F9BAF/serialNumber=6BE93D42375F5875A2F8CAD28098854162D25048
Validity
Not Before: Aug 19 19:45:28 2020 GMT
Not After : Aug 18 19:45:28 2030 GMT
Subject: CN=5f3d815d-360c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:da:e8:db:20:c0:31:87:4d:a3:e7:74:8d:8b:
78:8d:66:7a:83:7d:83:ec:19:8c:e1:8e:0e:07:92:
cf:e9:3e:72:09:7b:72:18:a2:12:8c:f2:46:5a:3a:
fa:dd:c2:0b:c1:91:9b:9d:77:e0:02:6e:51:8b:e4:
4e:f4:20:7d:45:40:76:3c:36:1f:06:d2:0b:a0:be:
35:55:b9:55:cf:fb:0b:33:e2:01:b0:84:bf:47:b8:
94:1f:2f:28:c4:2a:25:fb:86:1d:58:39:f9:75:4b:
16:f8:eb:9f:18:f1:bd:1d:a2:5a:1e:19:35:fb:a1:
bc:0b:ab:dd:63:6b:36:a6:3f:f1:98:f8:79:d2:31:
97:ed:4e:7f:69:da:89:b7:53:14:9e:cd:99:99:be:
98:a7:2c:b5:ca:53:e4:ba:8b:4a:18:e9:c7:9c:dd:
59:ea:83:d8:f0:59:3d:5e:ba:14:43:46:aa:10:34:
8a:e6:f7:7f:a8:15:60:05:f2:e7:4e:e2:f4:c1:d7:
e8:67:0b:b9:3a:a4:32:a9:84:15:52:8c:0a:1a:eb:
f3:77:b1:6d:fa:7a:20:59:79:f0:03:c1:41:20:94:
a3:7a:7b:28:ad:75:6c:1a:fa:67:a3:d9:44:70:70:
4d:52:e3:df:68:6e:35:c4:16:81:91:36:50:c7:26:
67:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:A8:54:00:7C:52:AA:47:69:EC:92:5D:4A:F1:57:2E:1B:FA:CB:55
X509v3 Authority Key Identifier:
keyid:6B:E9:3D:42:37:5F:58:75:A2:F8:CA:D2:80:98:85:41:62:D2:50:48
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3697F9B/C6DEF4DCE24611EA8D16EF50F8AEA228/a-k9QjdfWHWi-MrSgJiFQWLSUEg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/a-k9QjdfWHWi-MrSgJiFQWLSUEg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3697F9B/C6DEF4DCE24611EA8D16EF50F8AEA228/8B23E96CE25411EAABDED95EF8AEA228.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.37.128.0/17
Signature Algorithm: sha256WithRSAEncryption
7e:03:2f:2d:b7:66:57:7a:9d:26:8f:d7:c2:e0:b9:d8:13:95:
50:64:79:ad:f9:a1:82:f2:cf:3c:a1:e3:35:db:a3:4f:58:85:
e8:05:3b:b9:64:92:cd:06:1e:e3:e6:c0:c7:b1:55:53:b9:53:
2d:b4:a1:77:e8:ef:20:a9:ef:a7:0b:7a:fc:86:17:51:d8:a0:
22:b6:80:2b:2d:06:bd:d9:e9:e4:01:24:7b:0b:ad:53:57:b6:
eb:25:88:3a:32:2c:c4:71:82:9b:f8:9e:0e:f9:b1:4d:eb:43:
3b:2f:df:91:a5:a6:b7:4c:a6:e1:a5:49:45:a0:b6:75:69:aa:
71:74:62:01:9d:9f:15:96:75:fd:1b:ae:c1:2c:dc:5e:0a:dc:
d0:73:83:da:d0:80:4c:01:19:ec:aa:72:d3:5c:15:68:5d:3b:
72:4a:5a:a5:da:c4:fa:e1:a5:23:40:71:91:0b:af:25:df:c1:
9d:43:5c:18:aa:0f:b2:39:eb:f0:e7:8c:84:00:c5:4c:12:90:
e3:3b:70:1f:79:99:06:74:7a:da:6d:4c:82:cc:3b:f7:ef:93:
fe:9d:8c:6c:1c:5a:3b:e4:d1:62:5d:42:e9:29:db:b5:62:f1:
ea:5b:d1:5f:e9:fe:50:03:7e:ff:ce:ff:21:35:1c:59:06:d6:
66:09:28:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:05:15 2024 by rpki-client on console-ams.rpki-client.org