Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3697F9B/C6DEF4DCE24611EA8D16EF50F8AEA228/E24D05EEE25311EA92AD155EF8AEA228.roa
File: E24D05EEE25311EA92AD155EF8AEA228.roa (raw, json)
Hash identifier: NhNBSTEDSsS8nv1gPk35pYlSA/j54gCUeglNVOfp5Jk=
Subject key identifier: 76:14:CF:5E:82:F5:91:F2:17:8A:39:9E:DC:26:D8:A4:26:18:B7:97
Certificate issuer: /CN=F3697F9BAF/serialNumber=6BE93D42375F5875A2F8CAD28098854162D25048
Certificate serial: 04
Authority key identifier: 6B:E9:3D:42:37:5F:58:75:A2:F8:CA:D2:80:98:85:41:62:D2:50:48
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/a-k9QjdfWHWi-MrSgJiFQWLSUEg.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3697F9B/C6DEF4DCE24611EA8D16EF50F8AEA228/E24D05EEE25311EA92AD155EF8AEA228.roa
Signing time: Wed 19 Aug 2020 19:40:50 +0000
ROA not before: Wed 19 Aug 2020 19:40:44 +0000
ROA not after: Sun 18 Aug 2030 19:40:44 +0000
asID: 8075
IP address blocks: 102.133.128.0/17 maxlen: 17
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3697F9B/C6DEF4DCE24611EA8D16EF50F8AEA228/a-k9QjdfWHWi-MrSgJiFQWLSUEg.crl
rsync://rpki.afrinic.net/repository/member_repository/F3697F9B/C6DEF4DCE24611EA8D16EF50F8AEA228/a-k9QjdfWHWi-MrSgJiFQWLSUEg.mft
rsync://rpki.afrinic.net/repository/afrinic/a-k9QjdfWHWi-MrSgJiFQWLSUEg.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 30 May 2024 00:04:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4 (0x4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3697F9BAF/serialNumber=6BE93D42375F5875A2F8CAD28098854162D25048
Validity
Not Before: Aug 19 19:40:44 2020 GMT
Not After : Aug 18 19:40:44 2030 GMT
Subject: CN=5f3d8042-99dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:66:9a:31:93:fe:f1:05:20:b9:19:3f:e9:de:
27:36:0d:08:16:39:c3:3e:5c:6b:14:a8:45:0a:89:
e4:7e:00:48:69:5c:98:90:ef:5e:3b:c9:87:0b:b8:
fe:2f:98:4e:3d:9c:73:25:9b:57:19:6a:17:44:a2:
cf:a6:91:71:23:84:99:de:c4:0a:56:8c:b7:f4:c0:
68:dc:f2:85:74:4b:6e:d7:c4:de:12:0b:86:36:9c:
74:c2:f0:00:f9:c3:e9:7a:ff:e3:ab:05:bb:ac:6c:
e9:d0:2b:51:a6:24:34:a4:3b:7c:0f:b4:59:7f:ab:
e3:45:15:a6:cd:31:ca:b7:69:94:e3:ec:1b:d3:8e:
08:cf:43:24:9e:23:76:97:ca:c3:05:d6:a5:f4:1e:
7a:bf:01:e1:c7:eb:86:f7:e8:ec:3d:31:61:ca:6a:
5e:8f:97:55:d9:22:0f:d0:00:98:22:ca:b4:38:25:
7d:38:34:88:ee:58:e2:31:a1:3c:b5:22:14:c5:97:
9a:83:2a:0e:55:79:1c:0d:5a:fd:69:11:f5:05:e8:
4a:3a:7e:6b:14:79:3c:32:16:a6:27:3b:09:f3:b0:
6a:1f:10:7c:8a:90:5d:67:de:7a:3d:b0:3a:97:fd:
b0:bc:79:f8:4c:d6:79:a5:3c:91:ff:e2:86:70:a2:
26:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:14:CF:5E:82:F5:91:F2:17:8A:39:9E:DC:26:D8:A4:26:18:B7:97
X509v3 Authority Key Identifier:
keyid:6B:E9:3D:42:37:5F:58:75:A2:F8:CA:D2:80:98:85:41:62:D2:50:48
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3697F9B/C6DEF4DCE24611EA8D16EF50F8AEA228/a-k9QjdfWHWi-MrSgJiFQWLSUEg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/a-k9QjdfWHWi-MrSgJiFQWLSUEg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3697F9B/C6DEF4DCE24611EA8D16EF50F8AEA228/E24D05EEE25311EA92AD155EF8AEA228.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.133.128.0/17
Signature Algorithm: sha256WithRSAEncryption
5c:00:87:f7:b0:4b:86:b1:b2:49:2c:44:f8:ab:09:e6:98:cc:
7d:3d:f2:55:74:bc:5a:9a:9c:73:20:cf:ed:90:b5:b3:d4:e2:
6e:17:8a:81:a4:64:06:e4:78:c7:58:28:48:96:b9:6a:93:b0:
19:7b:d5:34:1d:50:40:f4:4c:2c:3c:de:2e:81:2d:e4:89:61:
d5:40:19:b0:ab:10:2a:13:b0:34:e4:78:b7:57:9a:2f:6b:66:
05:d9:80:a9:74:75:98:33:2f:ea:f7:8f:8a:23:a7:38:a9:c4:
f3:e3:f6:a8:4c:72:b8:e7:54:a7:45:4e:e9:de:32:10:96:bc:
b2:9c:e9:81:5c:9c:24:fb:03:a6:e6:0f:65:57:e7:58:9a:34:
f8:93:80:70:14:2f:fc:94:3f:58:55:f9:01:60:eb:ea:f9:b8:
32:84:22:a8:a5:fd:e4:81:5d:3b:42:fd:82:d4:00:58:1f:03:
0d:b7:71:11:37:1e:3e:5f:ad:10:de:77:4e:61:d4:01:06:d8:
2c:f7:2c:49:27:5d:a8:a6:bd:4e:8b:cf:89:14:6a:e9:33:d8:
86:07:bb:08:42:4b:7b:e8:64:dc:eb:1f:34:9f:35:69:0d:58:
ad:5c:44:45:87:a6:4b:07:78:4d:9b:b2:a2:35:93:9e:75:c8:
d4:29:38:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 28 02:04:16 2024 by rpki-client on console-fra.rpki-client.org