Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36A44EA/90E3EB36890911E984EC3C5FF8AEA228/C2885C5A890C11E99FBFB061F8AEA228.roa
File: C2885C5A890C11E99FBFB061F8AEA228.roa (raw, json)
Hash identifier: Nc3QhHvVxfoVedVMaampsQ99yjqvi1tBTakd45JoFJw=
Subject key identifier: 16:B6:61:2B:58:28:81:B1:AE:AD:82:6F:B6:E5:E9:57:3D:23:42:4E
Certificate issuer: /CN=F36A44EAAF/serialNumber=9A57D1A048476C90D98C3CA698705D62D4DD44D3
Certificate serial: 02
Authority key identifier: 9A:57:D1:A0:48:47:6C:90:D9:8C:3C:A6:98:70:5D:62:D4:DD:44:D3
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/mlfRoEhHbJDZjDymmHBdYtTdRNM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36A44EA/90E3EB36890911E984EC3C5FF8AEA228/C2885C5A890C11E99FBFB061F8AEA228.roa
Signing time: Fri 07 Jun 2019 10:12:32 +0000
ROA not before: Fri 07 Jun 2019 10:12:23 +0000
ROA not after: Thu 07 Jun 2029 10:12:23 +0000
asID: 37564
IP address blocks: 154.66.152.0/21 maxlen: 22
196.220.160.0/19 maxlen: 20
197.231.232.0/22 maxlen: 23
2c0f:f5f0::/32 maxlen: 36
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36A44EA/90E3EB36890911E984EC3C5FF8AEA228/mlfRoEhHbJDZjDymmHBdYtTdRNM.crl
rsync://rpki.afrinic.net/repository/member_repository/F36A44EA/90E3EB36890911E984EC3C5FF8AEA228/mlfRoEhHbJDZjDymmHBdYtTdRNM.mft
rsync://rpki.afrinic.net/repository/afrinic/mlfRoEhHbJDZjDymmHBdYtTdRNM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2 (0x2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36A44EAAF/serialNumber=9A57D1A048476C90D98C3CA698705D62D4DD44D3
Validity
Not Before: Jun 7 10:12:23 2019 GMT
Not After : Jun 7 10:12:23 2029 GMT
Subject: CN=5cfa388f-afae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:29:e9:c1:e3:9d:0f:8c:a6:d2:7e:74:bc:c3:
78:90:05:50:13:a5:26:52:2c:97:84:46:67:c0:e7:
04:9d:70:09:ad:61:86:ae:1b:9b:65:fe:b5:3c:ee:
b5:71:96:dc:8f:38:85:34:a4:6c:5d:c7:5c:57:7b:
97:35:b8:e2:38:0a:cf:ea:d0:27:b5:a8:65:27:09:
db:fc:ad:3d:45:97:6a:41:46:22:ce:f3:7a:2a:43:
58:14:fd:23:8d:fc:96:84:ac:d2:a8:aa:15:df:65:
77:6d:59:d5:74:d1:3d:e6:c3:36:59:09:42:86:92:
6b:a9:11:4d:b6:2c:7e:dc:4b:1d:3f:6e:18:c0:93:
f3:ed:92:f6:67:38:3b:05:17:33:70:24:f0:e0:4b:
88:f2:58:ef:ee:e8:33:9e:48:ac:16:25:d2:e6:4a:
30:72:6f:0d:7d:4d:1d:7e:95:4e:57:d8:b3:a7:32:
5d:ba:68:d4:22:96:90:52:ed:fe:92:d9:9a:87:1c:
e3:39:56:cc:c3:1d:43:42:06:d2:a8:48:d9:b3:48:
54:ab:8a:dd:24:be:ed:e0:a1:0d:ef:37:7c:3c:9d:
33:d9:ae:40:3b:2d:15:20:c3:44:a5:76:27:1e:c5:
d1:41:c9:86:fe:89:d0:ea:b3:18:2c:63:4a:71:c9:
95:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:B6:61:2B:58:28:81:B1:AE:AD:82:6F:B6:E5:E9:57:3D:23:42:4E
X509v3 Authority Key Identifier:
keyid:9A:57:D1:A0:48:47:6C:90:D9:8C:3C:A6:98:70:5D:62:D4:DD:44:D3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36A44EA/90E3EB36890911E984EC3C5FF8AEA228/mlfRoEhHbJDZjDymmHBdYtTdRNM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/mlfRoEhHbJDZjDymmHBdYtTdRNM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36A44EA/90E3EB36890911E984EC3C5FF8AEA228/C2885C5A890C11E99FBFB061F8AEA228.roa
sbgp-ipAddrBlock: critical
IPv4:
154.66.152.0/21
196.220.160.0/19
197.231.232.0/22
IPv6:
2c0f:f5f0::/32
Signature Algorithm: sha256WithRSAEncryption
b4:99:57:0f:d5:c7:4d:ee:72:4c:bb:d9:51:a4:b2:9c:11:aa:
dd:0d:51:0f:88:c9:74:63:d9:ec:6d:d5:c7:a2:97:33:17:f0:
54:29:7a:cc:85:f3:65:d6:9f:e2:b7:95:25:cb:d7:aa:2d:35:
c2:dc:3c:5d:96:b6:de:2d:72:2d:a8:3e:77:a6:11:30:15:fb:
ef:88:b7:f9:e0:30:79:5a:9d:b5:e2:b4:28:98:d9:93:1c:b3:
ff:4b:b5:d5:b7:c8:4d:73:48:6d:77:23:a2:fa:5a:1b:7d:4c:
1e:38:9e:54:df:32:68:20:25:d2:1a:3c:51:61:78:f7:9c:82:
27:a8:6e:d0:e0:82:36:23:e9:22:33:1a:fa:f9:f9:e1:e2:47:
5e:92:0a:a2:92:be:a0:45:87:5a:1f:53:f6:13:fa:42:f0:c2:
b9:b7:35:61:ed:8e:af:fd:f2:68:f6:d8:8a:60:8c:2c:98:b0:
b9:a6:3f:2f:71:ab:ef:7c:e8:31:ca:d1:74:d6:75:08:8f:cd:
ca:24:d9:b0:9b:8c:f1:1a:53:72:f3:5e:55:83:5a:ac:6e:34:
f4:2a:fd:7e:d1:30:f5:99:6b:d1:c2:f0:e4:42:e5:a2:87:74:
0f:81:85:24:54:c1:b0:02:17:46:99:32:85:25:b8:61:00:e5:
58:ed:3a:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:10:14 2024 by rpki-client on console-fra.rpki-client.org