Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36EC7CE/82014A10989911E9B7396A33F8AEA228/25FEFCBCDF7011E997CFF03AF8AEA228.roa
File: 25FEFCBCDF7011E997CFF03AF8AEA228.roa (raw, json)
Hash identifier: NtIZQtczAvdXKaNMIz0m1Q59Z9nMLMNC/p7wM9puv2w=
Subject key identifier: 85:55:C8:64:22:46:A7:25:C0:31:C7:1E:1C:C5:49:1A:6A:03:3E:7A
Certificate issuer: /CN=F36EC7CEAF/serialNumber=0E040ABF4F945F30D77DA28BBF028B6AC49D042C
Certificate serial: 70
Authority key identifier: 0E:04:0A:BF:4F:94:5F:30:D7:7D:A2:8B:BF:02:8B:6A:C4:9D:04:2C
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/DgQKv0-UXzDXfaKLvwKLasSdBCw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36EC7CE/82014A10989911E9B7396A33F8AEA228/25FEFCBCDF7011E997CFF03AF8AEA228.roa
Signing time: Wed 25 Sep 2019 08:40:38 +0000
ROA not before: Wed 25 Sep 2019 08:40:33 +0000
ROA not after: Tue 25 Sep 2040 08:40:33 +0000
asID: 327795
IP address blocks: 197.149.176.0/22 maxlen: 32
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36EC7CE/82014A10989911E9B7396A33F8AEA228/DgQKv0-UXzDXfaKLvwKLasSdBCw.crl
rsync://rpki.afrinic.net/repository/member_repository/F36EC7CE/82014A10989911E9B7396A33F8AEA228/DgQKv0-UXzDXfaKLvwKLasSdBCw.mft
rsync://rpki.afrinic.net/repository/afrinic/DgQKv0-UXzDXfaKLvwKLasSdBCw.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 112 (0x70)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36EC7CEAF/serialNumber=0E040ABF4F945F30D77DA28BBF028B6AC49D042C
Validity
Not Before: Sep 25 08:40:33 2019 GMT
Not After : Sep 25 08:40:33 2040 GMT
Subject: CN=5d8b2806-45c2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:35:28:b5:70:cc:8d:d4:e0:ac:f3:51:02:c6:
f2:73:5f:ee:0d:94:a8:3a:25:1b:6f:42:5d:08:9a:
c6:79:05:b1:87:21:9c:6c:3d:c0:c6:8a:92:01:38:
11:a4:95:38:31:b8:10:7f:46:92:0d:9b:01:76:81:
a1:60:a6:63:be:91:20:cf:45:cc:b2:1e:78:95:01:
f9:7c:c4:ee:d5:87:d7:48:03:b6:fb:0d:a7:da:31:
37:a9:9c:e5:30:6c:63:a8:87:0d:50:66:b0:87:1b:
f0:37:70:b9:03:a6:45:f2:04:a7:37:18:85:d2:02:
7c:63:ea:ba:cc:a9:30:93:c5:97:91:44:6b:d9:04:
eb:26:6b:be:00:bc:7f:b3:dc:8d:e3:d4:d5:79:eb:
08:c8:eb:78:97:98:9c:89:cd:1f:0b:de:cd:58:47:
b7:7f:31:3d:85:37:7b:d4:77:15:ee:8b:e1:47:93:
7d:86:6b:df:0f:dc:33:8e:f3:06:b5:db:13:0a:86:
62:40:e7:2e:2b:63:d3:e9:68:b6:6c:1c:58:bd:e5:
63:d8:a2:1b:da:ac:92:30:7a:a9:1f:e0:69:ac:4c:
70:15:e2:c7:15:e1:40:69:83:e7:b6:e4:0a:cd:81:
d5:bd:94:11:b0:b8:6a:64:fe:80:cd:98:55:94:9d:
3a:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:55:C8:64:22:46:A7:25:C0:31:C7:1E:1C:C5:49:1A:6A:03:3E:7A
X509v3 Authority Key Identifier:
keyid:0E:04:0A:BF:4F:94:5F:30:D7:7D:A2:8B:BF:02:8B:6A:C4:9D:04:2C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36EC7CE/82014A10989911E9B7396A33F8AEA228/DgQKv0-UXzDXfaKLvwKLasSdBCw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/DgQKv0-UXzDXfaKLvwKLasSdBCw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36EC7CE/82014A10989911E9B7396A33F8AEA228/25FEFCBCDF7011E997CFF03AF8AEA228.roa
sbgp-ipAddrBlock: critical
IPv4:
197.149.176.0/22
Signature Algorithm: sha256WithRSAEncryption
7d:aa:8d:c6:12:05:5f:f8:e5:7c:38:99:78:35:12:ae:b2:30:
62:cd:9f:f6:db:b1:d1:35:10:ec:c9:a5:b7:4b:8b:8d:a6:ba:
1e:d4:c8:30:0b:0f:63:c6:cf:dc:2e:38:09:4b:3b:6c:56:aa:
b3:6f:12:a9:98:b0:22:18:03:52:7a:ec:81:7f:e4:4f:42:0c:
38:2f:54:28:bf:ed:e0:81:9c:52:8a:dc:7b:54:37:d8:c1:f4:
13:90:61:5f:2d:9e:2b:e8:f3:a8:66:8a:e8:95:45:a4:4d:fa:
df:fc:5d:15:fb:bf:e2:07:42:81:79:a4:65:1b:c9:fa:cc:2a:
26:cc:34:e7:98:36:97:fa:b4:3c:1c:0e:5e:4a:a1:65:e9:83:
10:d2:05:81:e1:a5:c0:a1:f4:d9:a9:1f:46:0f:57:2f:6e:fd:
16:09:e9:b4:51:81:87:ab:e3:0b:6e:e1:84:60:fa:f5:55:36:
98:04:25:28:d6:f2:61:82:4a:c6:8e:32:9b:12:00:a4:c7:a9:
11:4e:cb:17:d4:5e:03:d2:9f:f3:fa:5a:63:9a:04:8b:7f:d9:
5a:29:c0:1a:61:6b:3d:de:1f:ed:eb:7c:aa:d0:7d:31:62:53:
42:30:37:9c:28:36:a4:14:65:3b:6a:45:b8:49:e8:3a:e2:4a:
04:8e:ac:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:10:19 2024 by rpki-client on console-fra.rpki-client.org