Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36EC7CE/82014A10989911E9B7396A33F8AEA228/82A311068E9D11EA936A3D74F8AEA228.roa
File: 82A311068E9D11EA936A3D74F8AEA228.roa (raw, json)
Hash identifier: 2fJIX7cXKI9q+Xtr5M7y3JF2k9yaJVXpVCcsMHvm1sY=
Subject key identifier: 3D:13:CB:16:40:EA:31:DC:0D:54:DC:CB:23:7A:11:24:6E:49:FD:A3
Certificate issuer: /CN=F36EC7CEAF/serialNumber=0E040ABF4F945F30D77DA28BBF028B6AC49D042C
Certificate serial: 015D
Authority key identifier: 0E:04:0A:BF:4F:94:5F:30:D7:7D:A2:8B:BF:02:8B:6A:C4:9D:04:2C
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/DgQKv0-UXzDXfaKLvwKLasSdBCw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36EC7CE/82014A10989911E9B7396A33F8AEA228/82A311068E9D11EA936A3D74F8AEA228.roa
Signing time: Tue 05 May 2020 06:56:15 +0000
ROA not before: Tue 05 May 2020 06:56:09 +0000
ROA not after: Thu 31 May 2040 06:56:09 +0000
asID: 327795
IP address blocks: 102.223.8.0/22 maxlen: 32
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36EC7CE/82014A10989911E9B7396A33F8AEA228/DgQKv0-UXzDXfaKLvwKLasSdBCw.crl
rsync://rpki.afrinic.net/repository/member_repository/F36EC7CE/82014A10989911E9B7396A33F8AEA228/DgQKv0-UXzDXfaKLvwKLasSdBCw.mft
rsync://rpki.afrinic.net/repository/afrinic/DgQKv0-UXzDXfaKLvwKLasSdBCw.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 349 (0x15d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36EC7CEAF/serialNumber=0E040ABF4F945F30D77DA28BBF028B6AC49D042C
Validity
Not Before: May 5 06:56:09 2020 GMT
Not After : May 31 06:56:09 2040 GMT
Subject: CN=5eb10e0e-48a3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:55:51:67:ab:08:c3:3b:1b:41:ab:e2:e5:d2:
aa:40:bb:d8:3d:4a:24:0b:da:9e:b6:a1:e0:26:02:
23:a4:67:23:09:14:ea:24:c2:ec:bf:46:98:ff:6b:
01:9e:a1:85:48:5b:ae:58:19:39:cc:b2:9f:8a:8a:
56:e4:a4:26:20:1f:f0:21:3f:5c:fb:8b:2a:dd:cf:
89:98:34:f0:59:f3:f1:33:3d:02:2e:ce:a8:de:a9:
84:13:2b:65:60:b3:60:50:bf:b3:ec:d0:6d:b6:21:
3c:c2:c3:6f:e7:c9:42:89:eb:b2:85:05:e1:bf:86:
7a:20:4c:ee:52:2e:c1:15:01:39:59:8a:91:1a:7d:
0c:8f:01:20:25:2f:3c:ca:53:d5:ce:60:f5:89:94:
5b:79:e5:ac:77:19:33:f7:a8:b9:3b:81:46:e4:1e:
a0:8e:d9:07:42:a8:f2:23:97:a8:b4:14:58:b1:8b:
08:a6:5c:15:a5:a0:cc:74:1a:40:ee:a8:83:52:50:
b3:e9:6a:38:8c:77:5c:4a:9f:9f:9c:c3:e1:d7:fc:
a9:c1:35:3e:37:9d:09:ad:3c:66:18:2a:7e:d6:fa:
da:ad:45:49:20:4a:73:56:70:96:36:7d:d1:85:55:
2f:ac:56:28:eb:73:a6:d0:3a:c0:13:13:08:b6:a2:
51:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:13:CB:16:40:EA:31:DC:0D:54:DC:CB:23:7A:11:24:6E:49:FD:A3
X509v3 Authority Key Identifier:
keyid:0E:04:0A:BF:4F:94:5F:30:D7:7D:A2:8B:BF:02:8B:6A:C4:9D:04:2C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36EC7CE/82014A10989911E9B7396A33F8AEA228/DgQKv0-UXzDXfaKLvwKLasSdBCw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/DgQKv0-UXzDXfaKLvwKLasSdBCw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36EC7CE/82014A10989911E9B7396A33F8AEA228/82A311068E9D11EA936A3D74F8AEA228.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.223.8.0/22
Signature Algorithm: sha256WithRSAEncryption
9e:4c:03:b5:c0:2f:ea:fd:af:10:c4:52:f1:82:64:36:6e:68:
00:eb:71:83:5c:6a:dd:cf:a0:39:30:45:55:3d:85:c8:37:fc:
44:5b:38:4a:49:7f:a6:c0:72:9e:16:57:bc:61:38:bd:d9:dd:
b0:ce:c8:e8:5b:31:cb:db:22:be:57:3c:e1:c6:99:0e:db:e7:
25:96:f0:7c:5d:c0:0f:29:c4:21:a9:79:80:1a:9e:e8:37:9b:
57:bc:97:61:22:24:d1:58:1a:ff:db:6e:e2:46:db:e4:00:6c:
fc:2d:e2:aa:a2:18:81:0a:d3:0b:c1:91:08:d6:e7:6c:cd:44:
91:71:89:fc:81:b6:59:35:47:68:48:c4:30:a6:67:49:52:84:
0c:cc:1d:3a:36:bd:45:03:3f:99:8c:c5:93:6b:e1:06:f0:a3:
e7:22:89:63:5a:e8:55:c3:30:7e:56:51:b5:a0:38:41:e7:a7:
02:ac:cc:ff:61:3e:59:e8:8f:e6:14:4f:0a:15:6d:1f:96:e2:
46:a8:f4:19:3e:46:e8:29:17:40:87:2a:19:8b:bf:0b:73:67:
df:34:8d:b0:8e:ca:2a:b7:d5:1a:f1:b5:ed:c6:98:56:96:53:
93:e9:34:f7:7f:72:6e:21:96:24:c5:bc:f0:5f:40:fd:77:40:
9f:c8:e4:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:10:19 2024 by rpki-client on console-fra.rpki-client.org