Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36E373D/4D22ACD68B7311E9A49A4368F8AEA228/417B7412681D11EABAE8A23BF8AEA228.roa
File: 417B7412681D11EABAE8A23BF8AEA228.roa (raw, json)
Hash identifier: EcSboq3Auo5ZSfF9dSrc6D9TXAo4UTRY5/uzWoCkLSY=
Subject key identifier: 4A:F2:9F:75:CE:8E:6D:53:73:AA:E4:D3:A6:A3:D9:9C:54:F8:C2:5B
Certificate issuer: /CN=F36E373DAF/serialNumber=FD8E045884B1669EBD430AE566721D97404A6CE8
Certificate serial: 0130
Authority key identifier: FD:8E:04:58:84:B1:66:9E:BD:43:0A:E5:66:72:1D:97:40:4A:6C:E8
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/_Y4EWISxZp69QwrlZnIdl0BKbOg.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36E373D/4D22ACD68B7311E9A49A4368F8AEA228/417B7412681D11EABAE8A23BF8AEA228.roa
Signing time: Tue 17 Mar 2020 07:02:25 +0000
ROA not before: Tue 17 Mar 2020 07:02:21 +0000
ROA not after: Sun 17 Mar 2030 07:02:21 +0000
asID: 327733
IP address blocks: 154.72.11.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36E373D/4D22ACD68B7311E9A49A4368F8AEA228/_Y4EWISxZp69QwrlZnIdl0BKbOg.crl
rsync://rpki.afrinic.net/repository/member_repository/F36E373D/4D22ACD68B7311E9A49A4368F8AEA228/_Y4EWISxZp69QwrlZnIdl0BKbOg.mft
rsync://rpki.afrinic.net/repository/afrinic/_Y4EWISxZp69QwrlZnIdl0BKbOg.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 304 (0x130)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36E373DAF/serialNumber=FD8E045884B1669EBD430AE566721D97404A6CE8
Validity
Not Before: Mar 17 07:02:21 2020 GMT
Not After : Mar 17 07:02:21 2030 GMT
Subject: CN=5e707601-bc9b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:29:86:98:9a:98:60:62:93:1f:6e:8b:ab:1a:
de:3d:2f:c7:f3:80:93:05:e9:31:b3:ad:6d:c0:2f:
12:3d:cf:e7:bd:08:1d:7c:25:a2:3f:cc:eb:17:d5:
b4:f6:7c:b8:f7:31:33:59:c8:19:5d:17:32:46:14:
b6:38:4d:7f:70:7e:f7:ea:79:6e:dc:a7:bc:55:ad:
70:bf:c3:f2:4d:64:68:d4:2e:cd:3a:5d:8e:cb:e5:
11:34:00:34:76:03:07:dd:e6:52:f8:f2:9b:c7:76:
97:bb:ac:c2:75:5f:55:1d:d9:ab:1e:01:1d:e1:24:
51:61:50:1c:5f:89:e9:bb:81:3f:82:ea:f5:22:3a:
d8:71:d9:a1:bf:56:02:e8:65:4f:19:8a:70:80:46:
f4:51:70:f9:6b:39:03:1b:32:11:3b:e5:94:0e:83:
6f:2b:ad:6b:b9:12:fe:20:06:9a:18:7f:ca:e1:91:
c7:6f:73:9b:13:cf:0c:9a:53:8c:ff:c2:88:d0:2b:
b1:a3:38:53:fb:4a:8e:c4:88:59:37:d1:7c:74:99:
35:ed:e5:4c:22:39:1e:ad:5a:c7:81:3d:e5:22:ba:
2c:a4:10:21:87:97:12:48:77:a3:b1:be:5e:f0:df:
32:d4:a3:52:5b:ea:04:5f:41:a7:83:40:a3:1e:ae:
e1:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:F2:9F:75:CE:8E:6D:53:73:AA:E4:D3:A6:A3:D9:9C:54:F8:C2:5B
X509v3 Authority Key Identifier:
keyid:FD:8E:04:58:84:B1:66:9E:BD:43:0A:E5:66:72:1D:97:40:4A:6C:E8
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36E373D/4D22ACD68B7311E9A49A4368F8AEA228/_Y4EWISxZp69QwrlZnIdl0BKbOg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/_Y4EWISxZp69QwrlZnIdl0BKbOg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36E373D/4D22ACD68B7311E9A49A4368F8AEA228/417B7412681D11EABAE8A23BF8AEA228.roa
sbgp-ipAddrBlock: critical
IPv4:
154.72.11.0/24
Signature Algorithm: sha256WithRSAEncryption
83:34:2f:84:eb:98:dd:cd:6c:df:6a:c3:fb:3e:bd:78:d6:91:
8e:90:59:d7:ea:85:fb:85:29:6c:b0:8b:42:7e:d8:fc:bf:86:
7e:5f:d8:41:f7:f9:6c:f4:e1:a2:62:01:d6:be:18:a6:75:bc:
70:25:86:5b:15:b3:26:cf:75:29:c2:cb:44:ed:59:a5:a4:70:
17:49:1b:db:d3:38:00:c7:2e:da:e9:64:e6:84:24:d3:09:26:
a3:43:45:56:56:9d:35:11:27:fc:ee:f4:ad:fc:4e:73:e5:a8:
e7:36:93:ea:36:fe:34:e4:72:71:e4:3b:c2:82:61:a2:bc:a4:
2a:40:93:96:f8:a8:f3:8c:b7:32:55:d7:4f:17:a3:27:65:91:
34:5f:e6:6f:64:bc:10:6c:28:c7:ec:a0:4e:2d:5b:6b:b5:e2:
54:18:49:2d:5a:6d:84:8f:b1:26:cc:c7:c4:cf:a5:19:7f:97:
71:4c:8d:f4:10:e3:3d:e3:95:91:95:3e:f2:41:74:01:91:f4:
49:63:31:e6:54:b6:43:fa:09:0e:d1:27:e0:c6:e0:26:c0:a9:
0a:b7:45:15:46:2f:bc:5d:ea:dc:25:23:bf:0b:42:3b:fe:db:
0b:9e:bc:68:b5:6b:6e:4e:04:42:e0:3b:fb:fc:8a:29:20:25:
2d:64:04:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:10:19 2024 by rpki-client on console-fra.rpki-client.org