Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36F8F4F/70CC1DFE2A7511ECAEB63359D8A014CE/55E869A0A5A011EDBCF0F088F1222468.roa
File: 55E869A0A5A011EDBCF0F088F1222468.roa (raw, json)
Hash identifier: KiiQW2jeRsEVFEZD3pw6RIC6ucN9czC8mZUMWNcCdzo=
Subject key identifier: 03:9C:35:FB:18:78:07:91:B8:65:FB:D1:63:88:F5:CC:42:44:2C:FE
Certificate issuer: /CN=F36F8F4FRI/serialNumber=5BC54F284822A717B1AD4C37CF69D096CE7F6773
Certificate serial: 01F5
Authority key identifier: 5B:C5:4F:28:48:22:A7:17:B1:AD:4C:37:CF:69:D0:96:CE:7F:67:73
Authority info access: rsync://rpki.afrinic.net/repository/ripe/W8VPKEgipxexrUw3z2nQls5_Z3M.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36F8F4F/70CC1DFE2A7511ECAEB63359D8A014CE/55E869A0A5A011EDBCF0F088F1222468.roa
Signing time: Sun 05 Feb 2023 21:59:17 +0000
ROA not before: Sun 05 Feb 2023 21:59:11 +0000
ROA not after: Wed 05 Feb 2025 21:59:11 +0000
asID: 21003
IP address blocks: 62.240.32.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36F8F4F/70CC1DFE2A7511ECAEB63359D8A014CE/W8VPKEgipxexrUw3z2nQls5_Z3M.crl
rsync://rpki.afrinic.net/repository/member_repository/F36F8F4F/70CC1DFE2A7511ECAEB63359D8A014CE/W8VPKEgipxexrUw3z2nQls5_Z3M.mft
rsync://rpki.afrinic.net/repository/ripe/W8VPKEgipxexrUw3z2nQls5_Z3M.cer
rsync://rpki.afrinic.net/repository/ripe/f3rBgIl5g-Kek3wKGHgDwHJ1VUU.crl
rsync://rpki.afrinic.net/repository/ripe/f3rBgIl5g-Kek3wKGHgDwHJ1VUU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/ripe-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:30:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 501 (0x1f5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36F8F4FRI/serialNumber=5BC54F284822A717B1AD4C37CF69D096CE7F6773
Validity
Not Before: Feb 5 21:59:11 2023 GMT
Not After : Feb 5 21:59:11 2025 GMT
Subject: CN=63e026b5-85f2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:10:ef:f7:92:2f:3f:9a:44:01:d8:5f:20:7c:
fb:c3:66:9a:bd:39:14:c9:97:5b:bd:a2:d3:38:d4:
d8:53:8e:cb:c5:ed:1e:a1:ba:18:f7:79:43:74:6b:
a9:f1:19:66:eb:2e:39:32:5c:06:ba:88:13:8d:98:
6b:7d:fb:8c:19:c7:34:d9:ba:9b:f0:fb:7b:11:1a:
73:18:22:4a:d2:d9:ab:db:0f:79:50:db:0e:fc:20:
27:fa:f6:f1:23:5e:79:0e:13:60:f2:b1:76:03:07:
5d:5b:84:db:7e:7b:2b:fe:07:56:4f:29:d7:f5:5a:
6a:81:cf:20:4c:f9:98:23:ca:da:23:2f:8c:a3:a8:
21:00:40:ae:b2:ae:b0:92:48:d0:f4:d2:23:fc:08:
a3:4c:37:4e:b4:c1:6a:02:5f:70:45:7f:d2:f7:23:
31:f0:1e:04:ef:04:c9:35:59:13:9b:da:5c:aa:8a:
06:eb:da:4e:ef:e8:70:f7:ad:5e:b9:ee:7b:e0:e3:
bc:53:77:30:ad:da:62:ad:5d:68:45:f2:98:6b:4f:
35:eb:9f:0a:d1:21:fa:bc:df:50:49:cf:1d:53:6b:
cb:a6:2f:57:51:0f:eb:72:ec:6b:36:e6:82:61:39:
7f:7f:a4:c0:11:eb:3e:65:1e:f2:08:96:57:ea:f6:
09:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:9C:35:FB:18:78:07:91:B8:65:FB:D1:63:88:F5:CC:42:44:2C:FE
X509v3 Authority Key Identifier:
keyid:5B:C5:4F:28:48:22:A7:17:B1:AD:4C:37:CF:69:D0:96:CE:7F:67:73
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36F8F4F/70CC1DFE2A7511ECAEB63359D8A014CE/W8VPKEgipxexrUw3z2nQls5_Z3M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/ripe/W8VPKEgipxexrUw3z2nQls5_Z3M.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36F8F4F/70CC1DFE2A7511ECAEB63359D8A014CE/55E869A0A5A011EDBCF0F088F1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
62.240.32.0/19
Signature Algorithm: sha256WithRSAEncryption
70:40:d2:59:9c:89:d9:69:09:6e:94:89:1d:b9:e4:88:64:5f:
f8:68:88:3b:05:00:65:73:81:a0:5e:d7:86:54:54:ad:39:3e:
72:9b:e4:b6:5d:cd:34:15:88:2e:9b:c8:22:34:c7:22:e9:6d:
aa:a7:af:e1:9f:fa:26:2c:ea:08:46:6b:6c:c0:5f:f2:44:36:
8f:c5:b1:58:74:60:37:e8:c8:9f:94:a5:1e:9c:88:10:20:91:
37:e8:0d:7b:a4:12:16:fd:ff:47:11:e2:12:16:45:f3:ef:e7:
f2:d2:23:5f:28:aa:cd:dd:16:3e:3d:9d:f9:33:95:68:ea:a4:
34:18:1b:fd:e9:5a:63:b0:2f:6c:f3:4d:36:be:3f:b4:5c:25:
df:c1:3b:69:08:9f:94:bc:ad:6a:f0:ff:40:af:39:b9:33:63:
95:55:5b:88:60:8e:25:20:cf:a6:52:3f:7c:97:97:74:94:a8:
b0:44:fa:c8:45:8e:d9:a8:b7:fb:c1:0d:d8:fb:c9:c7:cb:b0:
49:47:32:76:f7:fc:a9:4c:f7:e1:5f:9d:e9:91:55:a8:05:15:
85:42:1c:9b:56:3a:6a:5e:b3:35:ca:bb:25:45:21:99:cf:b5:
a9:78:4e:8c:b8:ee:d0:3e:86:ef:0a:fe:0d:39:7e:fd:02:d3:
e1:21:ac:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 03:53:00 2024 by rpki-client on console-fra.rpki-client.org