Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36DB4B4/CEEEADECB46111E5B4A90854F8AEA228/F0D40794B46211E5A330CA55F8AEA228.roa
File: F0D40794B46211E5A330CA55F8AEA228.roa (raw, json)
Hash identifier: t2nsrO2U23DwtiWKoe3fqAaOO4rdHwgErkagqsJpKHc=
Subject key identifier: 6A:8A:5E:76:30:7C:42:1E:64:E2:29:35:2A:F0:55:D4:E5:F4:AE:5F
Certificate issuer: /CN=F36DB4B4AF/serialNumber=CFD1CE11582E70F8D51B7870725C15EF67E0C651
Certificate serial: 02
Authority key identifier: CF:D1:CE:11:58:2E:70:F8:D5:1B:78:70:72:5C:15:EF:67:E0:C6:51
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/z9HOEVgucPjVG3hwclwV72fgxlE.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36DB4B4/CEEEADECB46111E5B4A90854F8AEA228/F0D40794B46211E5A330CA55F8AEA228.roa
Signing time: Wed 06 Jan 2016 10:49:21 +0000
ROA not before: Wed 06 Jan 2016 10:49:17 +0000
ROA not after: Wed 31 Dec 2036 10:49:17 +0000
asID: 37100
IP address blocks: 41.207.232.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36DB4B4/CEEEADECB46111E5B4A90854F8AEA228/z9HOEVgucPjVG3hwclwV72fgxlE.crl
rsync://rpki.afrinic.net/repository/member_repository/F36DB4B4/CEEEADECB46111E5B4A90854F8AEA228/z9HOEVgucPjVG3hwclwV72fgxlE.mft
rsync://rpki.afrinic.net/repository/afrinic/z9HOEVgucPjVG3hwclwV72fgxlE.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2 (0x2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36DB4B4AF/serialNumber=CFD1CE11582E70F8D51B7870725C15EF67E0C651
Validity
Not Before: Jan 6 10:49:17 2016 GMT
Not After : Dec 31 10:49:17 2036 GMT
Subject: CN=568cf130-40b6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:d0:05:96:15:25:6c:65:bc:be:bf:f2:16:f5:
bc:d9:4d:76:3c:aa:20:1e:ac:a1:0a:62:69:c6:b3:
60:55:3e:74:e2:39:45:38:2d:89:dd:e8:e3:32:1c:
69:9e:c2:2b:46:5b:1d:2c:ec:f0:57:31:87:b7:b5:
fe:00:19:68:0d:9f:15:e3:0f:ce:b4:3f:dc:3c:03:
c7:1b:78:a0:b6:83:24:d4:4a:bf:34:c2:0d:46:54:
b8:60:4e:7f:bc:ce:da:bb:2b:d4:76:4b:d2:96:79:
96:3e:95:15:73:b3:2a:29:d0:9b:9e:c7:1c:83:d9:
2a:08:0f:01:51:f0:c8:67:e7:12:da:ca:e9:12:1f:
2c:c7:0b:80:a4:2f:7c:d7:30:7e:b2:fc:12:df:cf:
a1:d8:20:a7:fe:d9:df:18:e5:bc:7a:8b:b8:1d:2c:
66:22:af:4f:95:93:aa:6a:82:1d:8e:47:5e:da:ec:
0f:89:f3:f8:2a:36:9e:08:68:71:19:b0:ff:06:f5:
4b:0b:4c:e4:49:8f:e7:0b:f7:a8:02:bc:0b:83:fd:
bf:83:60:70:00:88:bd:a8:b7:5c:60:8b:ee:48:7e:
94:2c:cc:11:d6:59:ca:99:79:6f:5f:07:b1:0c:b8:
59:60:2d:36:3a:26:0b:cf:45:28:9b:f0:f5:cc:b8:
ec:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:8A:5E:76:30:7C:42:1E:64:E2:29:35:2A:F0:55:D4:E5:F4:AE:5F
X509v3 Authority Key Identifier:
keyid:CF:D1:CE:11:58:2E:70:F8:D5:1B:78:70:72:5C:15:EF:67:E0:C6:51
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36DB4B4/CEEEADECB46111E5B4A90854F8AEA228/z9HOEVgucPjVG3hwclwV72fgxlE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/z9HOEVgucPjVG3hwclwV72fgxlE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36DB4B4/CEEEADECB46111E5B4A90854F8AEA228/F0D40794B46211E5A330CA55F8AEA228.roa
sbgp-ipAddrBlock: critical
IPv4:
41.207.232.0/22
Signature Algorithm: sha256WithRSAEncryption
9c:bc:dc:dd:f6:cf:13:68:07:a0:09:c5:09:55:8d:af:8f:da:
fb:42:48:3c:ad:41:82:62:6f:65:5b:26:9d:f0:b2:c1:48:43:
2f:17:87:1d:81:65:d1:54:07:d6:b3:5d:95:78:80:2e:e2:43:
bf:a2:df:6f:66:7a:be:00:9f:da:db:52:22:cd:19:49:fc:89:
0f:e3:31:99:a7:7c:3c:25:aa:da:43:22:54:49:dd:56:4b:ad:
57:35:5b:02:d6:01:05:f2:8c:16:b0:36:4f:e3:3c:b6:2f:bc:
45:57:92:17:e4:04:69:a3:71:26:b2:a3:f5:e2:4f:d7:b3:44:
3c:c1:af:ca:c2:ec:29:bf:bb:6f:4f:0c:2a:26:e7:22:9e:24:
54:7d:da:68:7c:82:7a:6b:e9:17:6d:1a:70:19:6b:eb:60:18:
b8:0e:c3:8c:0e:9b:82:76:cf:a3:83:bb:c9:3d:aa:96:3c:46:
c3:8c:bf:ac:e5:b4:87:6c:24:9b:b2:2f:18:c4:ff:2a:0d:05:
6e:98:37:48:a2:83:62:1b:2d:38:7a:21:7e:5b:22:e3:cf:c2:
27:5c:a1:7d:e7:a3:bd:de:3e:c3:b7:85:7c:74:ee:23:d8:ad:
93:df:da:9e:9a:1b:88:78:b4:f7:74:5f:21:a9:34:08:ab:cd:
54:e4:08:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:10:18 2024 by rpki-client on console-fra.rpki-client.org