Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36B9EC5/D0311CE092AB11E9B028C80BF8AEA228/457616CC92AC11E9AA1A230CF8AEA228.roa
File: 457616CC92AC11E9AA1A230CF8AEA228.roa (raw, json)
Hash identifier: a111sZs2PjYe+Z7xTRVrDgikHwjH0gy6/kJWglkiGK8=
Subject key identifier: E7:50:28:FA:DF:6F:D3:D3:90:F2:E2:F2:2B:72:80:FB:31:0B:4A:33
Certificate issuer: /CN=F36B9EC5AF/serialNumber=996BE437C1BF0EA80FC2D74FE795D597DD7CDFF6
Certificate serial: 02
Authority key identifier: 99:6B:E4:37:C1:BF:0E:A8:0F:C2:D7:4F:E7:95:D5:97:DD:7C:DF:F6
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/mWvkN8G_DqgPwtdP55XVl9183_Y.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36B9EC5/D0311CE092AB11E9B028C80BF8AEA228/457616CC92AC11E9AA1A230CF8AEA228.roa
Signing time: Wed 19 Jun 2019 16:07:01 +0000
ROA not before: Wed 19 Jun 2019 16:06:54 +0000
ROA not after: Mon 31 Dec 2029 16:06:54 +0000
asID: 37686
IP address blocks: 196.220.64.0/19 maxlen: 23
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36B9EC5/D0311CE092AB11E9B028C80BF8AEA228/mWvkN8G_DqgPwtdP55XVl9183_Y.crl
rsync://rpki.afrinic.net/repository/member_repository/F36B9EC5/D0311CE092AB11E9B028C80BF8AEA228/mWvkN8G_DqgPwtdP55XVl9183_Y.mft
rsync://rpki.afrinic.net/repository/afrinic/mWvkN8G_DqgPwtdP55XVl9183_Y.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 27 Nov 2024 00:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2 (0x2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36B9EC5AF/serialNumber=996BE437C1BF0EA80FC2D74FE795D597DD7CDFF6
Validity
Not Before: Jun 19 16:06:54 2019 GMT
Not After : Dec 31 16:06:54 2029 GMT
Subject: CN=5d0a5da5-4919
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:3b:02:f7:25:6d:d3:e5:b0:37:be:99:6c:e6:
d0:91:23:b0:75:28:28:d6:44:1f:f0:24:b4:70:c6:
37:23:d0:51:fc:33:0a:a3:57:8e:0c:92:52:17:1d:
c7:49:90:bd:fc:ca:b2:53:81:b6:3f:98:c2:57:40:
dc:d8:f5:ac:a6:85:90:fe:63:7b:c6:64:5a:d6:b0:
0c:12:a2:62:01:92:09:b4:2a:9a:e8:97:55:ba:40:
df:7d:9c:41:5e:59:83:a0:78:17:06:a8:93:31:0c:
77:84:6c:5f:4e:01:f1:b2:49:d9:2a:d5:73:ce:6e:
c6:77:96:d9:aa:bd:ff:a7:6d:36:3b:11:e6:85:31:
3e:a3:d5:f7:25:a8:a3:96:07:d6:c9:35:71:24:6d:
25:8c:6f:dd:6f:87:05:cc:52:29:b0:12:3d:5d:e5:
fa:cc:df:1c:5f:ed:b4:85:13:6d:fb:f8:0d:e7:f3:
3c:5d:c9:b2:8a:94:61:1a:bc:ba:3d:88:8a:6e:6d:
5d:16:32:20:e3:2c:8b:5a:3f:56:22:2c:76:3b:7b:
ba:56:43:60:0e:74:be:1a:5b:d0:6b:07:3a:25:15:
96:9d:e8:28:68:87:bc:6e:9b:66:6d:d7:63:62:00:
bb:10:64:49:94:6b:42:19:71:24:48:23:a2:5f:e2:
aa:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:50:28:FA:DF:6F:D3:D3:90:F2:E2:F2:2B:72:80:FB:31:0B:4A:33
X509v3 Authority Key Identifier:
keyid:99:6B:E4:37:C1:BF:0E:A8:0F:C2:D7:4F:E7:95:D5:97:DD:7C:DF:F6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36B9EC5/D0311CE092AB11E9B028C80BF8AEA228/mWvkN8G_DqgPwtdP55XVl9183_Y.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/mWvkN8G_DqgPwtdP55XVl9183_Y.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36B9EC5/D0311CE092AB11E9B028C80BF8AEA228/457616CC92AC11E9AA1A230CF8AEA228.roa
sbgp-ipAddrBlock: critical
IPv4:
196.220.64.0/19
Signature Algorithm: sha256WithRSAEncryption
56:16:b1:92:a9:f3:c0:a0:94:3d:dd:88:e1:20:1b:a8:47:5d:
e3:08:a6:7b:22:83:b2:2b:02:15:c9:fd:0f:ca:38:cd:4d:ee:
e7:a0:26:38:a9:ae:2d:5a:ba:18:4f:da:ff:28:50:14:b7:25:
57:3a:bc:9c:88:bd:58:08:ed:56:d0:ae:5b:36:c2:38:8e:4d:
f9:44:fe:37:d3:d2:3f:c5:16:65:23:a7:78:54:37:ec:90:f2:
32:d6:e0:24:75:ac:41:33:51:74:93:c6:f3:dc:a5:dc:4b:b5:
7c:90:d7:d6:0a:96:db:a0:7b:45:20:e7:69:e7:40:c1:75:49:
6e:73:68:04:57:8e:98:1c:77:67:76:7d:6f:b7:35:ad:17:36:
ca:05:7e:5c:a7:7a:ea:09:4d:91:6c:e3:b1:9a:0a:79:e5:c6:
ee:7d:a0:4f:a6:4c:fb:93:c5:ad:51:f7:e4:36:b9:0f:21:46:
77:91:15:29:96:d4:0e:66:c5:8d:58:f2:03:54:7b:7e:0e:83:
b6:87:af:f6:9f:bf:55:72:07:ec:5b:5a:cf:5f:6d:e5:c2:da:
ff:c0:4c:95:4c:73:bf:fa:34:b4:85:e6:42:6e:2f:e7:41:d4:
2f:49:32:81:3c:59:6b:b8:de:5b:a6:0c:27:b8:f2:7d:f4:53:
1b:1d:57:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 03:00:11 2024 by rpki-client on console-fra.rpki-client.org