Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36E373D/4D22ACD68B7311E9A49A4368F8AEA228/238CE30A681D11EA8E2A7D3BF8AEA228.roa
File: 238CE30A681D11EA8E2A7D3BF8AEA228.roa (raw, json)
Hash identifier: ydKx4ungEUC7wspHHxXIcDKz2U1m9S6af+pOZ0cF1vY=
Subject key identifier: FD:C2:91:96:77:E3:1B:1F:CC:E9:5C:B4:8D:B9:2D:9A:41:58:06:0D
Certificate issuer: /CN=F36E373DAF/serialNumber=FD8E045884B1669EBD430AE566721D97404A6CE8
Certificate serial: 012E
Authority key identifier: FD:8E:04:58:84:B1:66:9E:BD:43:0A:E5:66:72:1D:97:40:4A:6C:E8
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/_Y4EWISxZp69QwrlZnIdl0BKbOg.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36E373D/4D22ACD68B7311E9A49A4368F8AEA228/238CE30A681D11EA8E2A7D3BF8AEA228.roa
Signing time: Tue 17 Mar 2020 07:01:35 +0000
ROA not before: Tue 17 Mar 2020 07:01:27 +0000
ROA not after: Sun 17 Mar 2030 07:01:27 +0000
asID: 327733
IP address blocks: 154.72.10.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36E373D/4D22ACD68B7311E9A49A4368F8AEA228/_Y4EWISxZp69QwrlZnIdl0BKbOg.crl
rsync://rpki.afrinic.net/repository/member_repository/F36E373D/4D22ACD68B7311E9A49A4368F8AEA228/_Y4EWISxZp69QwrlZnIdl0BKbOg.mft
rsync://rpki.afrinic.net/repository/afrinic/_Y4EWISxZp69QwrlZnIdl0BKbOg.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 302 (0x12e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36E373DAF/serialNumber=FD8E045884B1669EBD430AE566721D97404A6CE8
Validity
Not Before: Mar 17 07:01:27 2020 GMT
Not After : Mar 17 07:01:27 2030 GMT
Subject: CN=5e7075cf-ead3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:55:d0:5f:74:01:5b:67:04:0d:17:29:c5:14:
99:85:ef:0f:81:c5:3c:1e:10:3c:a5:e6:a0:f2:95:
48:aa:c6:2b:41:7d:be:5c:37:27:ee:bd:b3:04:7e:
0b:43:96:95:3e:70:1e:15:67:43:5c:6a:fb:a0:fc:
2f:8a:22:5f:9a:54:0d:73:66:36:20:13:2b:33:24:
96:e8:8a:13:eb:e9:a1:1e:9d:4b:61:93:94:a9:35:
a2:c7:fc:cd:88:56:c7:37:c9:ef:01:98:1e:f1:ce:
2f:e3:b0:a8:20:7d:c8:24:6a:12:f9:46:79:ad:42:
5f:01:07:bc:91:e8:cc:26:15:60:b4:21:3d:da:59:
d8:e0:42:b8:46:0d:37:57:30:e4:f1:55:d1:1e:18:
5d:82:2e:ac:fa:52:97:f4:21:91:64:3c:e4:52:ff:
00:07:57:13:db:90:9c:43:0e:8b:84:3d:18:de:db:
92:e5:9c:d1:ab:ce:7b:98:ec:50:99:6d:9a:d2:7b:
81:b6:36:52:7d:f1:23:f3:dc:19:1a:15:05:80:43:
9b:17:8c:06:5c:b9:16:73:9e:74:f6:67:d4:67:23:
61:b7:b2:9f:6d:b7:6a:0f:e9:cc:20:95:83:30:8c:
0d:a3:8f:f1:9d:14:d8:c6:ee:a2:e5:2d:78:a6:44:
a2:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:C2:91:96:77:E3:1B:1F:CC:E9:5C:B4:8D:B9:2D:9A:41:58:06:0D
X509v3 Authority Key Identifier:
keyid:FD:8E:04:58:84:B1:66:9E:BD:43:0A:E5:66:72:1D:97:40:4A:6C:E8
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36E373D/4D22ACD68B7311E9A49A4368F8AEA228/_Y4EWISxZp69QwrlZnIdl0BKbOg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/_Y4EWISxZp69QwrlZnIdl0BKbOg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36E373D/4D22ACD68B7311E9A49A4368F8AEA228/238CE30A681D11EA8E2A7D3BF8AEA228.roa
sbgp-ipAddrBlock: critical
IPv4:
154.72.10.0/24
Signature Algorithm: sha256WithRSAEncryption
85:27:64:9f:7e:25:98:47:d6:d5:e2:83:99:fc:ae:a0:c2:90:
ae:14:22:03:bd:17:ac:7a:5a:9f:05:28:8e:54:8e:7c:8f:c0:
2f:0c:ac:9e:a7:95:e3:44:97:5d:4d:54:cc:6e:86:60:11:40:
79:d4:5a:e4:6d:eb:37:c7:ba:03:b8:0c:0b:72:3c:7a:80:bd:
db:29:c2:d4:dc:b0:46:d3:35:51:4a:4d:52:85:a3:e1:c6:48:
20:57:f3:72:4a:79:0c:40:1b:d5:a5:bb:db:de:72:ed:a9:8b:
06:d2:08:aa:c7:ae:c5:45:7c:97:a1:ac:f9:ef:07:6f:28:ff:
76:0d:80:2b:35:4a:e1:50:6b:57:30:34:73:21:c4:cd:58:b6:
5f:95:45:dd:c3:ab:53:2d:1a:66:e5:68:01:91:58:17:6b:41:
ad:81:7b:84:3f:7c:31:b1:da:2f:67:11:99:4f:95:59:2e:2d:
db:6c:68:c3:e0:19:f9:5e:39:72:17:35:61:63:c8:32:af:37:
6a:1c:1c:04:53:b0:ae:d5:d6:2c:14:ab:9c:5e:6c:c1:aa:5c:
2b:bb:ec:b5:2e:e0:98:e0:2e:82:ed:bc:38:05:d4:9a:e7:30:
d5:52:92:97:83:e1:a6:1d:d4:d0:43:65:36:5f:b3:08:df:10:
71:aa:11:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:05:30 2024 by rpki-client on console-ams.rpki-client.org