Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36E0F10/7701A0FCC4BC11E996368B11F8AEA228/568AD538C4DE11E98B4F332AF8AEA228.roa
File: 568AD538C4DE11E98B4F332AF8AEA228.roa (raw, json)
Hash identifier: xdylXUVfFEhVDV+HaHSM6/9fpN4hJ/I/a6cPF/dHfkg=
Subject key identifier: 3B:35:81:B6:34:F0:3E:33:FF:F4:1C:F0:27:E5:6B:81:33:D9:86:DC
Certificate issuer: /CN=F36E0F10AF/serialNumber=1483616A2FB6342535836C43FE9738D4F17E9F12
Certificate serial: 02
Authority key identifier: 14:83:61:6A:2F:B6:34:25:35:83:6C:43:FE:97:38:D4:F1:7E:9F:12
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/FINhai-2NCU1g2xD_pc41PF-nxI.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36E0F10/7701A0FCC4BC11E996368B11F8AEA228/568AD538C4DE11E98B4F332AF8AEA228.roa
Signing time: Thu 22 Aug 2019 13:11:24 +0000
ROA not before: Thu 22 Aug 2019 13:11:17 +0000
ROA not after: Wed 31 Dec 2025 13:11:17 +0000
asID: 37340
IP address blocks: 197.255.160.0/23 maxlen: 23
197.255.162.0/23 maxlen: 23
197.255.164.0/23 maxlen: 23
197.255.166.0/23 maxlen: 23
197.255.168.0/23 maxlen: 23
197.255.170.0/23 maxlen: 23
197.255.172.0/23 maxlen: 23
197.255.174.0/23 maxlen: 23
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36E0F10/7701A0FCC4BC11E996368B11F8AEA228/FINhai-2NCU1g2xD_pc41PF-nxI.crl
rsync://rpki.afrinic.net/repository/member_repository/F36E0F10/7701A0FCC4BC11E996368B11F8AEA228/FINhai-2NCU1g2xD_pc41PF-nxI.mft
rsync://rpki.afrinic.net/repository/afrinic/FINhai-2NCU1g2xD_pc41PF-nxI.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2 (0x2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36E0F10AF/serialNumber=1483616A2FB6342535836C43FE9738D4F17E9F12
Validity
Not Before: Aug 22 13:11:17 2019 GMT
Not After : Dec 31 13:11:17 2025 GMT
Subject: CN=5d5e947b-1373
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:16:d1:3f:b0:5e:f8:34:ca:19:e3:36:ab:09:
14:f0:97:12:35:51:aa:e4:16:44:be:e7:b0:54:71:
9b:92:2a:0d:4d:c3:ef:04:7e:e3:a4:98:e5:7e:35:
d6:ae:d8:5e:c4:fb:30:ef:3c:a1:7b:7b:2c:50:90:
84:c7:dd:52:c8:2f:c8:87:59:81:84:34:f7:e0:3f:
82:6f:c6:7f:dc:b2:4a:4e:41:39:69:b6:7c:49:76:
e2:b2:92:3f:38:4f:39:10:31:7c:c5:44:90:72:c4:
6a:b1:24:bc:93:bb:09:9c:65:84:10:b2:03:e4:f4:
0c:c2:b8:d5:66:88:23:1e:5e:34:b6:9b:42:9f:89:
98:ea:be:67:6a:27:fd:17:12:cc:19:d9:70:37:3b:
01:9d:07:c0:92:35:03:f5:e9:b6:73:59:ec:11:1f:
a7:19:3b:b2:b0:ef:48:51:97:f3:45:13:c3:a0:10:
fe:ac:df:45:52:fd:25:86:6f:df:a9:0e:73:c1:eb:
af:15:e3:7f:db:8e:e6:9c:cf:50:c4:9e:ff:45:24:
c0:bd:55:5f:0a:a9:03:61:fc:fa:ad:1d:db:e2:ef:
b0:b5:2a:b8:af:bc:9b:61:29:84:d6:da:3c:13:15:
0e:3f:dc:a0:d3:e8:5f:f2:f8:44:f0:8a:cb:70:f0:
bc:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:35:81:B6:34:F0:3E:33:FF:F4:1C:F0:27:E5:6B:81:33:D9:86:DC
X509v3 Authority Key Identifier:
keyid:14:83:61:6A:2F:B6:34:25:35:83:6C:43:FE:97:38:D4:F1:7E:9F:12
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36E0F10/7701A0FCC4BC11E996368B11F8AEA228/FINhai-2NCU1g2xD_pc41PF-nxI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/FINhai-2NCU1g2xD_pc41PF-nxI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36E0F10/7701A0FCC4BC11E996368B11F8AEA228/568AD538C4DE11E98B4F332AF8AEA228.roa
sbgp-ipAddrBlock: critical
IPv4:
197.255.160.0/20
Signature Algorithm: sha256WithRSAEncryption
b5:44:a0:1f:f4:9b:3c:e1:f3:95:f8:7d:27:f3:af:e9:1c:d3:
0a:5b:a1:9d:1b:81:01:82:f2:1c:2b:f1:42:91:4d:70:72:11:
65:50:ba:bc:d5:20:94:4f:78:bd:0e:91:fd:f6:69:9b:26:81:
ab:6e:89:68:84:3e:f8:1a:0e:fd:87:29:bf:83:d4:b3:69:57:
cf:df:81:80:af:55:ca:ca:bc:04:e7:3a:73:0c:f3:45:29:4b:
c2:09:21:bc:d4:db:55:90:44:3a:9f:10:4f:54:cb:0d:cf:6b:
f4:96:52:6e:17:ec:a7:4f:22:e4:e8:12:c3:26:34:30:5a:22:
9b:b2:e2:55:52:24:2d:6c:80:05:5a:38:3b:3a:a4:2c:55:d6:
12:61:21:db:62:e1:55:d7:ff:ab:e1:14:f2:58:7f:62:9a:8f:
5e:4a:79:46:2e:18:ad:31:e5:06:de:42:30:fa:6c:85:72:4f:
71:6f:fb:ca:06:cf:d8:90:8c:7e:9b:d6:e9:ad:d5:ac:c0:b5:
69:8c:75:e3:40:02:c1:6c:0a:30:cd:ae:c2:c4:f8:ee:41:ef:
cc:1b:23:ca:91:8e:a2:03:b9:fe:e4:5a:1f:90:26:dc:dc:c3:
bf:70:5c:a2:26:58:74:1e:1c:b7:92:3b:c8:2a:95:c5:df:75:
70:f5:5d:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:10:19 2024 by rpki-client on console-fra.rpki-client.org