Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36E3D7F/B705EAF241A611EA881A6728F8AEA228/94C2EE9641AA11EA85D3412BF8AEA228.roa
File: 94C2EE9641AA11EA85D3412BF8AEA228.roa (raw, json)
Hash identifier: wI6B0FUFvicsDSeJBIFQAYisnvi3aQ6m9wmYnSaVpos=
Subject key identifier: 67:C6:13:FC:BD:15:D6:24:60:A1:F4:53:AF:29:58:03:42:67:B2:0E
Certificate issuer: /CN=F36E3D7FAF/serialNumber=965C8C35B0F10F8EA5DBDA544F291B6CA9283B5D
Certificate serial: 0A
Authority key identifier: 96:5C:8C:35:B0:F1:0F:8E:A5:DB:DA:54:4F:29:1B:6C:A9:28:3B:5D
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/llyMNbDxD46l29pUTykbbKkoO10.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36E3D7F/B705EAF241A611EA881A6728F8AEA228/94C2EE9641AA11EA85D3412BF8AEA228.roa
Signing time: Tue 28 Jan 2020 08:45:49 +0000
ROA not before: Tue 28 Jan 2020 08:45:42 +0000
ROA not after: Thu 31 Jan 2030 08:45:42 +0000
asID: 3491
IP address blocks: 41.79.250.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36E3D7F/B705EAF241A611EA881A6728F8AEA228/llyMNbDxD46l29pUTykbbKkoO10.crl
rsync://rpki.afrinic.net/repository/member_repository/F36E3D7F/B705EAF241A611EA881A6728F8AEA228/llyMNbDxD46l29pUTykbbKkoO10.mft
rsync://rpki.afrinic.net/repository/afrinic/llyMNbDxD46l29pUTykbbKkoO10.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10 (0xa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36E3D7FAF/serialNumber=965C8C35B0F10F8EA5DBDA544F291B6CA9283B5D
Validity
Not Before: Jan 28 08:45:42 2020 GMT
Not After : Jan 31 08:45:42 2030 GMT
Subject: CN=5e2ff4bd-1112
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:c2:a1:96:61:f4:3b:4b:41:eb:61:a8:ea:e0:
29:e4:03:65:c2:c1:c3:96:a1:ed:75:71:08:ad:ac:
20:5c:a5:9f:f8:9b:d0:47:30:b6:4d:cf:a6:b8:22:
c3:a7:47:f4:ce:11:8c:6f:d1:17:5b:0a:57:c9:d8:
59:c5:dd:17:40:29:a9:7c:37:51:de:cc:4f:96:e1:
63:3a:46:b5:e9:5b:a4:6f:12:1d:9a:2e:3d:dd:1b:
1b:38:5f:56:29:d0:da:d6:16:e0:75:0f:b4:03:ac:
01:d9:bd:20:12:e8:56:6e:4b:4e:c8:76:84:fc:d8:
ff:7f:3f:73:89:42:5c:82:79:92:70:b3:44:dc:7d:
1b:38:ca:3d:72:90:d4:9a:3b:8f:23:f7:e6:48:d5:
24:f1:ce:24:1a:07:4f:48:3e:ef:7e:13:87:8a:f1:
22:d4:e5:20:a0:47:94:11:b4:fe:33:fe:46:2e:a1:
74:e3:c5:84:f4:58:fa:6c:cb:8a:c6:42:8c:8b:9a:
df:61:f1:24:42:a9:43:a2:e5:c6:93:03:d9:9b:bf:
aa:80:9e:d2:3d:24:a2:e3:9d:c0:b1:66:14:16:72:
9f:3d:df:4d:cf:ea:e0:fa:9c:72:91:c7:45:bd:d3:
b1:5b:d2:81:a1:ca:37:12:00:ea:2b:80:86:8e:64:
32:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:C6:13:FC:BD:15:D6:24:60:A1:F4:53:AF:29:58:03:42:67:B2:0E
X509v3 Authority Key Identifier:
keyid:96:5C:8C:35:B0:F1:0F:8E:A5:DB:DA:54:4F:29:1B:6C:A9:28:3B:5D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36E3D7F/B705EAF241A611EA881A6728F8AEA228/llyMNbDxD46l29pUTykbbKkoO10.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/llyMNbDxD46l29pUTykbbKkoO10.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36E3D7F/B705EAF241A611EA881A6728F8AEA228/94C2EE9641AA11EA85D3412BF8AEA228.roa
sbgp-ipAddrBlock: critical
IPv4:
41.79.250.0/24
Signature Algorithm: sha256WithRSAEncryption
5a:08:c7:90:e0:27:3e:a9:75:13:98:d7:eb:89:31:a9:93:f0:
3e:03:49:2d:a5:de:c8:77:e4:55:b9:99:bb:31:23:74:20:01:
4a:f8:45:8e:02:47:1e:42:7d:28:46:c2:cb:5f:2f:13:0f:23:
18:31:0d:c9:22:ed:ea:58:17:92:fd:df:66:34:78:12:46:97:
e6:0a:4e:c3:81:c7:ff:b1:a4:35:ff:ee:f6:ab:0a:e3:e0:13:
2f:1d:8a:4d:d9:e3:2a:bb:99:bf:4a:20:d7:3d:0d:8f:37:48:
9f:c7:d0:0a:56:41:1d:e2:51:11:3d:84:99:51:db:27:7d:4d:
28:be:b0:ae:5b:61:ed:7f:9c:2a:0e:f4:54:58:f2:bb:8e:7e:
ec:24:a3:3a:ea:a5:cb:27:dc:c1:01:05:0b:09:f4:1f:3d:3e:
19:39:76:8b:0c:53:f5:5b:85:7c:79:d5:2f:04:ab:a3:df:70:
a1:63:d1:0f:6e:4e:55:e4:5b:25:e4:5f:f8:3c:de:4b:d1:09:
06:63:86:58:96:62:43:8a:a1:be:56:a0:1e:c7:4f:49:72:53:
2b:b6:fd:b7:91:c0:69:21:e1:99:dd:14:98:38:8e:ac:5d:a0:
8f:9e:2f:ef:c8:95:fa:2e:21:6c:8c:4a:7a:ea:f5:1b:59:b6:
7b:fe:eb:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:10:19 2024 by rpki-client on console-fra.rpki-client.org