Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36E3D7F/B705EAF241A611EA881A6728F8AEA228/3CE943A041AA11EAB894032BF8AEA228.roa
File: 3CE943A041AA11EAB894032BF8AEA228.roa (raw, json)
Hash identifier: fuNsRUefkA3mNS6Lr4CpD+r32CYonJX4P1Tf6yaBkBo=
Subject key identifier: C8:6D:65:BD:8B:9C:B6:99:B0:9E:BC:0F:9A:51:7F:5D:0D:2E:E9:CF
Certificate issuer: /CN=F36E3D7FAF/serialNumber=965C8C35B0F10F8EA5DBDA544F291B6CA9283B5D
Certificate serial: 06
Authority key identifier: 96:5C:8C:35:B0:F1:0F:8E:A5:DB:DA:54:4F:29:1B:6C:A9:28:3B:5D
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/llyMNbDxD46l29pUTykbbKkoO10.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36E3D7F/B705EAF241A611EA881A6728F8AEA228/3CE943A041AA11EAB894032BF8AEA228.roa
Signing time: Tue 28 Jan 2020 08:43:22 +0000
ROA not before: Tue 28 Jan 2020 08:43:17 +0000
ROA not after: Thu 31 Jan 2030 08:43:17 +0000
asID: 3491
IP address blocks: 41.79.248.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36E3D7F/B705EAF241A611EA881A6728F8AEA228/llyMNbDxD46l29pUTykbbKkoO10.crl
rsync://rpki.afrinic.net/repository/member_repository/F36E3D7F/B705EAF241A611EA881A6728F8AEA228/llyMNbDxD46l29pUTykbbKkoO10.mft
rsync://rpki.afrinic.net/repository/afrinic/llyMNbDxD46l29pUTykbbKkoO10.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6 (0x6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36E3D7FAF/serialNumber=965C8C35B0F10F8EA5DBDA544F291B6CA9283B5D
Validity
Not Before: Jan 28 08:43:17 2020 GMT
Not After : Jan 31 08:43:17 2030 GMT
Subject: CN=5e2ff429-92e3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:34:cb:57:a0:7c:c6:68:eb:cf:35:3c:4e:26:
a1:f5:e7:b9:22:d9:0d:60:e3:28:7a:b1:f4:12:46:
20:26:8c:fe:60:8f:53:60:5b:60:95:d7:d5:6d:e3:
ee:8a:c8:ea:54:c7:0c:4c:7a:ef:65:b2:8c:20:39:
47:19:55:2e:f9:2e:d6:5e:19:35:9a:43:52:8b:16:
58:9a:35:0f:0a:17:ac:5e:bc:8e:e8:4e:cf:ba:77:
43:79:48:44:f0:6d:a8:1a:f6:2f:97:c9:3f:88:05:
61:77:17:88:ec:50:b6:c7:9e:9d:a6:46:e6:e3:f2:
de:2e:41:10:eb:86:d4:c3:8f:a3:e0:48:b6:f4:f9:
74:17:c1:38:01:6d:32:76:93:34:dd:60:d5:39:fa:
03:4b:e9:a0:e0:fc:14:ee:25:15:a2:cf:7e:f7:98:
a9:65:18:cd:bd:93:e2:c7:b0:b8:76:38:d1:e3:16:
36:a2:b8:e7:7a:87:5f:cb:e6:13:6c:fa:74:50:66:
cd:e5:27:b9:4f:1b:14:09:f1:3a:a6:22:af:7d:69:
c1:a1:55:c3:30:c6:14:b1:f3:12:5b:91:ee:60:0f:
a2:19:be:d5:b3:d6:bd:6d:7a:28:40:25:44:75:de:
2c:3f:2c:4c:57:12:73:36:cd:3f:ca:d6:be:4c:a6:
31:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:6D:65:BD:8B:9C:B6:99:B0:9E:BC:0F:9A:51:7F:5D:0D:2E:E9:CF
X509v3 Authority Key Identifier:
keyid:96:5C:8C:35:B0:F1:0F:8E:A5:DB:DA:54:4F:29:1B:6C:A9:28:3B:5D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36E3D7F/B705EAF241A611EA881A6728F8AEA228/llyMNbDxD46l29pUTykbbKkoO10.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/llyMNbDxD46l29pUTykbbKkoO10.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36E3D7F/B705EAF241A611EA881A6728F8AEA228/3CE943A041AA11EAB894032BF8AEA228.roa
sbgp-ipAddrBlock: critical
IPv4:
41.79.248.0/24
Signature Algorithm: sha256WithRSAEncryption
6b:0e:15:aa:58:76:45:b3:7e:52:e4:34:72:9a:c1:85:98:49:
5b:fb:fb:54:f8:10:9a:75:0a:3d:68:ec:fd:c2:ed:6b:d0:32:
35:49:56:67:5e:20:36:b6:db:bd:bd:51:dd:b4:d1:d4:42:eb:
e7:48:01:cb:3d:6f:76:74:28:f4:b8:75:6e:90:ea:cc:a4:f2:
56:2f:fc:b1:f2:16:df:61:88:52:36:00:b2:18:fb:4d:2b:45:
87:fc:44:e6:ad:cc:a6:d5:fe:61:18:4c:10:59:d9:9e:32:ce:
53:2c:94:0e:93:d4:1e:06:be:e5:0c:e4:65:39:be:5d:6e:1e:
7d:e3:82:0e:46:7f:08:a3:4f:73:4c:5a:38:66:f6:fc:c6:91:
2e:98:0b:03:ab:dd:2a:6e:c5:5f:5b:bc:17:7e:e0:c3:18:4b:
7b:62:ed:98:74:3e:36:44:3b:87:76:a4:72:1e:f5:42:b2:a5:
fc:ad:73:fb:b6:55:da:af:d4:1d:d9:7b:25:4b:c1:77:66:8f:
89:57:78:6a:46:4e:6e:97:69:71:33:28:97:7f:23:9e:6b:fd:
4e:70:0a:22:16:16:82:68:be:70:ab:0c:25:6e:59:01:c0:a2:
f8:80:b8:ff:87:bd:27:4d:bf:cc:56:f1:64:ae:d4:6a:7a:c4:
a0:3d:1b:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:10:19 2024 by rpki-client on console-fra.rpki-client.org