Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36F6E4A/9D594F7241A611EA88863E28F8AEA228/C856574C41AB11EA9C27F52BF8AEA228.roa
File: C856574C41AB11EA9C27F52BF8AEA228.roa (raw, json)
Hash identifier: bz5TA1squK7Ifl9jqtLCRwvkOyW8Qa1kaJWgUXUsT5Y=
Subject key identifier: 20:DD:55:95:41:1C:39:72:F5:EB:8C:E2:2E:F7:2A:A7:D7:BE:74:A3
Certificate issuer: /CN=F36F6E4AAF/serialNumber=4FEE129D09AB850DA039E7F5BB24B6699A0F8179
Certificate serial: 02
Authority key identifier: 4F:EE:12:9D:09:AB:85:0D:A0:39:E7:F5:BB:24:B6:69:9A:0F:81:79
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/T-4SnQmrhQ2gOef1uyS2aZoPgXk.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36F6E4A/9D594F7241A611EA88863E28F8AEA228/C856574C41AB11EA9C27F52BF8AEA228.roa
Signing time: Tue 28 Jan 2020 08:54:25 +0000
ROA not before: Tue 28 Jan 2020 08:54:19 +0000
ROA not after: Thu 31 Jan 2030 08:54:19 +0000
asID: 3491
IP address blocks: 41.79.244.0/22 maxlen: 22
41.79.245.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36F6E4A/9D594F7241A611EA88863E28F8AEA228/T-4SnQmrhQ2gOef1uyS2aZoPgXk.crl
rsync://rpki.afrinic.net/repository/member_repository/F36F6E4A/9D594F7241A611EA88863E28F8AEA228/T-4SnQmrhQ2gOef1uyS2aZoPgXk.mft
rsync://rpki.afrinic.net/repository/afrinic/T-4SnQmrhQ2gOef1uyS2aZoPgXk.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2 (0x2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36F6E4AAF/serialNumber=4FEE129D09AB850DA039E7F5BB24B6699A0F8179
Validity
Not Before: Jan 28 08:54:19 2020 GMT
Not After : Jan 31 08:54:19 2030 GMT
Subject: CN=5e2ff6c1-7fac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:43:07:01:8b:87:25:7e:4b:81:e2:74:ce:ff:
91:03:8a:65:bf:ca:0b:3e:ae:3d:ea:e1:2f:7b:f6:
4f:14:86:ec:24:59:8f:d3:e5:32:58:3f:ca:9a:ab:
6b:a5:05:c7:ef:e1:49:c5:9f:12:2d:01:8a:43:67:
17:2d:6c:bf:43:fb:27:50:53:3a:a1:f2:87:eb:08:
8c:07:78:20:a1:37:8a:f4:59:55:b4:d4:f3:d8:87:
3b:5b:06:44:5c:b5:c3:62:92:60:d7:c0:df:b9:59:
f5:69:4e:11:59:74:d0:42:16:60:e3:91:28:ec:9e:
43:b7:35:25:a5:22:a1:15:cb:f6:42:6f:ba:0f:31:
91:4f:c9:1b:72:e6:c4:c5:1c:12:14:3c:c9:f6:33:
e1:5a:79:31:92:00:ce:2c:89:90:fc:8f:5e:3a:cc:
61:6e:9c:30:52:2f:41:c1:73:45:75:93:bd:23:9c:
92:f4:f3:57:07:ef:b9:a8:86:a7:69:d7:bf:c9:e9:
b4:05:f7:e5:18:ec:1c:ca:9a:9a:5c:41:e9:24:95:
16:7c:a0:ce:89:21:66:fa:c4:09:08:52:d6:03:dd:
b1:51:7a:36:94:c2:f5:da:31:2b:2b:8a:60:78:72:
7f:99:d5:66:b6:95:7d:8b:76:aa:d6:cd:5b:87:ac:
b6:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:DD:55:95:41:1C:39:72:F5:EB:8C:E2:2E:F7:2A:A7:D7:BE:74:A3
X509v3 Authority Key Identifier:
keyid:4F:EE:12:9D:09:AB:85:0D:A0:39:E7:F5:BB:24:B6:69:9A:0F:81:79
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36F6E4A/9D594F7241A611EA88863E28F8AEA228/T-4SnQmrhQ2gOef1uyS2aZoPgXk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/T-4SnQmrhQ2gOef1uyS2aZoPgXk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36F6E4A/9D594F7241A611EA88863E28F8AEA228/C856574C41AB11EA9C27F52BF8AEA228.roa
sbgp-ipAddrBlock: critical
IPv4:
41.79.244.0/22
Signature Algorithm: sha256WithRSAEncryption
5e:ea:95:d2:f0:68:2f:12:65:04:fc:f9:bf:5e:9e:8c:f1:b4:
6d:1c:53:3b:06:51:f7:86:66:af:fb:08:f5:7e:4f:56:f9:b8:
f5:67:d4:7a:60:53:15:52:22:7a:27:84:cc:d1:bb:22:45:60:
ee:cc:5e:b5:2f:32:9d:bc:7b:23:04:94:2e:c5:7c:97:16:ae:
bb:00:e4:45:60:57:86:db:3f:31:32:f7:c6:d6:5b:3e:a2:b1:
97:d8:1a:2f:33:be:70:5c:c8:8c:3d:86:b7:9b:65:b3:88:43:
f7:0a:72:df:16:a5:e2:83:3b:ac:97:d9:83:8b:e4:5d:16:fb:
f4:8b:ae:90:fe:aa:4f:5c:5a:69:ce:af:bf:cc:d9:15:22:d7:
5d:c2:d7:0d:f8:75:90:2e:7c:3a:2c:81:ff:64:d4:7e:fe:60:
78:7c:fb:eb:9a:00:67:c1:53:2a:41:32:4d:d6:62:75:15:5c:
0f:db:4b:13:f6:f9:19:a4:0d:1b:93:1d:df:c1:48:96:fb:e7:
8d:db:9f:ca:d5:b1:54:3f:c2:e9:3d:f9:a9:b1:84:ca:f9:69:
1c:3c:a9:43:dd:2f:81:44:f0:06:9b:5d:3f:a2:d6:8a:81:c9:
ca:97:b6:c4:c7:c9:8a:c8:21:28:36:41:f8:f5:d4:1b:dc:0a:
6d:e4:b3:62
-----BEGIN CERTIFICATE-----
MIIFSzCCBDOgAwIBAgIBAjANBgkqhkiG9w0BAQsFADBIMRMwEQYDVQQDEwpGMzZG
NkU0QUFGMTEwLwYDVQQFEyg0RkVFMTI5RDA5QUI4NTBEQTAzOUU3RjVCQjI0QjY2
OTlBMEY4MTc5MB4XDTIwMDEyODA4NTQxOVoXDTMwMDEzMTA4NTQxOVowGDEWMBQG
A1UEAxMNNWUyZmY2YzEtN2ZhYzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBAK1DBwGLhyV+S4HidM7/kQOKZb/KCz6uPerhL3v2TxSG7CRZj9PlMlg/ypqr
a6UFx+/hScWfEi0BikNnFy1sv0P7J1BTOqHyh+sIjAd4IKE3ivRZVbTU89iHO1sG
RFy1w2KSYNfA37lZ9WlOEVl00EIWYOORKOyeQ7c1JaUioRXL9kJvug8xkU/JG3Lm
xMUcEhQ8yfYz4Vp5MZIAziyJkPyPXjrMYW6cMFIvQcFzRXWTvSOckvTzVwfvuaiG
p2nXv8nptAX35RjsHMqamlxB6SSVFnygzokhZvrECQhS1gPdsVF6NpTC9doxKyuK
YHhyf5nVZraVfYt2qtbNW4estgECAwEAAaOCAm4wggJqMB0GA1UdDgQWBBQg3VWV
QRw5cvXrjOIu9yqn1750ozAfBgNVHSMEGDAWgBRP7hKdCauFDaA55/W7JLZpmg+B
eTAOBgNVHQ8BAf8EBAMCB4AwgZUGA1UdHwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6
Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVyX3JlcG9zaXRvcnkv
RjM2RjZFNEEvOUQ1OTRGNzI0MUE2MTFFQTg4ODYzRTI4RjhBRUEyMjgvVC00U25R
bXJoUTJnT2VmMXV5UzJhWm9QZ1hrLmNybDBnBggrBgEFBQcBAQRbMFkwVwYIKwYB
BQUHMAKGS3JzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L2Fmcmlu
aWMvVC00U25RbXJoUTJnT2VmMXV5UzJhWm9QZ1hrLmNlcjBPBgNVHSABAf8ERTBD
MEEGCCsGAQUFBw4CMDUwMwYIKwYBBQUHAgEWJ2h0dHBzOi8vcnBraS5hZnJpbmlj
Lm5ldC9wb2xpY3kvQ1BTLnBkZjCBpAYIKwYBBQUHAQsEgZcwgZQwgZEGCCsGAQUF
BzALhoGEcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVy
X3JlcG9zaXRvcnkvRjM2RjZFNEEvOUQ1OTRGNzI0MUE2MTFFQTg4ODYzRTI4RjhB
RUEyMjgvQzg1NjU3NEM0MUFCMTFFQTlDMjdGNTJCRjhBRUEyMjgucm9hMB8GCCsG
AQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCKU/0MA0GCSqGSIb3DQEBCwUAA4IBAQBe
6pXS8GgvEmUE/Pm/Xp6M8bRtHFM7BlH3hmav+wj1fk9W+bj1Z9R6YFMVUiJ6J4TM
0bsiRWDuzF61LzKdvHsjBJQuxXyXFq67AORFYFeG2z8xMvfG1ls+orGX2BovM75w
XMiMPYa3m2WziEP3CnLfFqXigzusl9mDi+RdFvv0i66Q/qpPXFppzq+/zNkVItdd
wtcN+HWQLnw6LIH/ZNR+/mB4fPvrmgBnwVMqQTJN1mJ1FVwP20sT9vkZpA0bkx3f
wUiW++eN25/K1bFUP8LpPfmpsYTK+WkcPKlD3S+BRPAGm10/otaKgcnKl7bEx8mK
yCEoNkH49dQb3Apt5LNi
-----END CERTIFICATE-----
Generated at Fri Nov 22 02:10:19 2024 by rpki-client on console-fra.rpki-client.org