Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36F6E4A/9D594F7241A611EA88863E28F8AEA228/D2CA8558427911EAA3FED044F8AEA228.roa
File: D2CA8558427911EAA3FED044F8AEA228.roa (raw, json)
Hash identifier: wurkYmqla/v4WBGYx1KQBTG96SHI4XZxvbfOZjy6dDc=
Subject key identifier: 9A:36:4C:C0:31:66:47:52:CC:7D:F3:65:A6:B7:2E:68:5F:66:92:DD
Certificate issuer: /CN=F36F6E4AAF/serialNumber=4FEE129D09AB850DA039E7F5BB24B6699A0F8179
Certificate serial: 08
Authority key identifier: 4F:EE:12:9D:09:AB:85:0D:A0:39:E7:F5:BB:24:B6:69:9A:0F:81:79
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/T-4SnQmrhQ2gOef1uyS2aZoPgXk.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36F6E4A/9D594F7241A611EA88863E28F8AEA228/D2CA8558427911EAA3FED044F8AEA228.roa
Signing time: Wed 29 Jan 2020 09:29:19 +0000
ROA not before: Wed 29 Jan 2020 09:29:13 +0000
ROA not after: Thu 31 Jan 2030 09:29:13 +0000
asID: 31713
IP address blocks: 41.79.245.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36F6E4A/9D594F7241A611EA88863E28F8AEA228/T-4SnQmrhQ2gOef1uyS2aZoPgXk.crl
rsync://rpki.afrinic.net/repository/member_repository/F36F6E4A/9D594F7241A611EA88863E28F8AEA228/T-4SnQmrhQ2gOef1uyS2aZoPgXk.mft
rsync://rpki.afrinic.net/repository/afrinic/T-4SnQmrhQ2gOef1uyS2aZoPgXk.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8 (0x8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36F6E4AAF/serialNumber=4FEE129D09AB850DA039E7F5BB24B6699A0F8179
Validity
Not Before: Jan 29 09:29:13 2020 GMT
Not After : Jan 31 09:29:13 2030 GMT
Subject: CN=5e31506e-e395
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:bf:cf:6a:72:fe:c9:9d:34:bf:0e:06:3c:9d:
2a:0f:66:2f:a6:14:e0:ee:52:c3:70:82:c3:80:90:
d9:91:33:30:be:a2:3d:4b:17:4d:d6:ff:e5:0c:82:
53:31:f4:43:7b:a8:0d:57:e4:71:77:51:88:24:f4:
0b:22:75:56:f2:b9:45:df:5a:b2:fe:79:ab:bb:6b:
f9:d6:ed:9e:a5:81:25:81:13:5a:44:8d:d0:7d:87:
5e:50:b2:f0:1c:80:80:74:ec:18:fe:c7:7b:7b:d5:
72:18:f2:89:c1:d9:a8:e3:b8:c1:8c:c9:28:90:60:
81:fc:2a:75:8e:4e:c8:67:7f:89:8b:a1:14:a5:ae:
4a:ef:fa:75:ef:86:7f:f1:78:2a:ab:76:50:d4:b8:
c1:69:9e:94:7a:5f:5f:03:53:89:3b:31:7a:ea:05:
89:30:7b:0f:f6:55:39:66:11:cd:ba:a8:55:e5:ff:
5c:75:3e:e1:9e:72:43:df:f3:87:71:38:bd:04:12:
a2:07:dd:0a:28:5a:4d:52:85:2a:f7:17:e9:6a:19:
be:40:b6:42:03:13:21:89:6b:9f:c7:ed:48:51:f4:
31:11:bf:e3:98:bf:17:ec:f5:dc:75:84:4f:4f:f6:
17:69:70:c3:fd:0f:58:22:25:4f:7f:48:0f:41:72:
e2:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:36:4C:C0:31:66:47:52:CC:7D:F3:65:A6:B7:2E:68:5F:66:92:DD
X509v3 Authority Key Identifier:
keyid:4F:EE:12:9D:09:AB:85:0D:A0:39:E7:F5:BB:24:B6:69:9A:0F:81:79
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36F6E4A/9D594F7241A611EA88863E28F8AEA228/T-4SnQmrhQ2gOef1uyS2aZoPgXk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/T-4SnQmrhQ2gOef1uyS2aZoPgXk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36F6E4A/9D594F7241A611EA88863E28F8AEA228/D2CA8558427911EAA3FED044F8AEA228.roa
sbgp-ipAddrBlock: critical
IPv4:
41.79.245.0/24
Signature Algorithm: sha256WithRSAEncryption
02:3e:ac:77:f4:75:40:7b:5a:06:3d:73:bc:91:55:1b:b1:52:
0b:08:df:1d:82:5f:63:a7:eb:b7:0f:d8:a9:77:9a:3e:6a:9c:
c8:b3:bc:86:e4:e6:ae:29:31:69:0e:49:e1:48:ed:1c:95:a5:
7c:e8:d4:dc:3d:8e:ed:fb:d3:d0:bc:57:08:61:d8:c5:db:36:
99:bf:4e:b9:72:81:36:7f:1a:da:9f:3c:b3:05:b4:56:a4:fb:
d7:42:9c:ae:69:62:37:ff:f5:ee:6d:b5:22:08:02:95:62:47:
67:55:63:e1:f4:62:24:f9:40:07:65:cc:4a:d4:d4:3c:a3:83:
41:ec:98:5a:b5:64:09:53:5d:ba:74:b6:bf:c3:2e:3e:6e:e5:
ce:cf:16:38:02:2a:bf:8b:de:5f:fd:6b:e7:19:9b:97:f4:ec:
b1:38:13:f2:02:f3:d3:04:8f:83:33:8b:02:6e:8b:1c:a7:58:
36:1f:8e:1f:34:bc:aa:e7:9d:4e:46:b4:80:16:b0:28:b8:f3:
b7:1b:58:b9:13:b6:87:25:ae:f7:b7:f9:e6:e4:44:26:7f:2d:
f3:93:1d:d8:30:50:f9:18:dd:37:da:e7:41:95:6b:fa:e3:9d:
fb:04:f4:c6:1d:53:7c:f5:75:cb:56:f0:85:df:c7:a6:42:9e:
9e:25:28:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:10:19 2024 by rpki-client on console-fra.rpki-client.org