Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36FEA6B/7B27920E8B8211E9888B6F73F8AEA228/DB963EBAA95011E9B922BA68F8AEA228.roa
File: DB963EBAA95011E9B922BA68F8AEA228.roa (raw, json)
Hash identifier: vNERaKTpGQ3bPaoxkOtKP33r5596Gf5AbL5hU7WDtMM=
Subject key identifier: 6B:7A:8E:5D:9C:3E:B3:07:D3:00:BC:74:90:4A:39:3D:C1:C9:AE:BE
Certificate issuer: /CN=F36FEA6BAF/serialNumber=93C2C99AF0EC4D1A4643497F5F8CBDC7EC45748F
Certificate serial: 2F
Authority key identifier: 93:C2:C9:9A:F0:EC:4D:1A:46:43:49:7F:5F:8C:BD:C7:EC:45:74:8F
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/k8LJmvDsTRpGQ0l_X4y9x-xFdI8.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36FEA6B/7B27920E8B8211E9888B6F73F8AEA228/DB963EBAA95011E9B922BA68F8AEA228.roa
Signing time: Thu 18 Jul 2019 11:40:36 +0000
ROA not before: Thu 18 Jul 2019 11:40:32 +0000
ROA not after: Wed 18 Jul 2029 11:40:32 +0000
asID: 0
IP address blocks: 196.223.5.0/24 maxlen: 32
2001:43f8::/48 maxlen: 128
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36FEA6B/7B27920E8B8211E9888B6F73F8AEA228/k8LJmvDsTRpGQ0l_X4y9x-xFdI8.crl
rsync://rpki.afrinic.net/repository/member_repository/F36FEA6B/7B27920E8B8211E9888B6F73F8AEA228/k8LJmvDsTRpGQ0l_X4y9x-xFdI8.mft
rsync://rpki.afrinic.net/repository/afrinic/k8LJmvDsTRpGQ0l_X4y9x-xFdI8.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 27 Apr 2024 00:04:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 47 (0x2f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36FEA6BAF/serialNumber=93C2C99AF0EC4D1A4643497F5F8CBDC7EC45748F
Validity
Not Before: Jul 18 11:40:32 2019 GMT
Not After : Jul 18 11:40:32 2029 GMT
Subject: CN=5d305ab4-f834
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:29:3f:e6:36:23:6d:4d:e1:9c:45:a8:2d:34:
2b:36:8e:88:4b:ca:32:83:16:55:a5:11:49:87:48:
88:11:05:e8:75:7d:25:a1:21:7b:62:59:09:1c:b6:
46:d4:0b:e4:a6:94:32:77:f6:40:2a:d7:a8:13:25:
b3:a4:5e:c4:82:27:b0:32:9f:08:e4:eb:5f:9c:ec:
71:85:b1:79:90:1e:cd:d5:9b:0d:c3:da:a4:02:fe:
71:1c:19:72:cb:88:84:00:6f:16:a6:3e:ad:44:96:
57:f7:13:cd:28:34:ea:3d:a7:38:86:4e:95:9d:46:
b5:e8:79:92:2b:25:da:82:17:66:45:ac:d4:53:35:
d4:bc:30:23:70:93:13:61:26:d7:09:66:2a:52:55:
72:25:7b:ad:f8:7e:27:89:c1:e0:21:98:28:82:d8:
a7:4c:c4:f8:bc:82:7b:73:02:00:a5:63:40:06:e2:
00:7e:a6:c5:5d:28:68:ec:6f:bd:bf:50:d6:0a:a4:
35:23:0e:34:c3:e7:f8:2f:31:b0:ec:d4:00:74:9f:
bf:a8:e3:f0:c0:dd:60:05:77:58:59:f7:4e:0c:eb:
c8:e7:b7:d3:d4:a3:65:77:d1:4e:93:03:4e:d4:ed:
3e:b0:a4:44:f1:2e:b4:6b:ce:ec:2b:8a:66:85:a8:
d2:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:7A:8E:5D:9C:3E:B3:07:D3:00:BC:74:90:4A:39:3D:C1:C9:AE:BE
X509v3 Authority Key Identifier:
keyid:93:C2:C9:9A:F0:EC:4D:1A:46:43:49:7F:5F:8C:BD:C7:EC:45:74:8F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36FEA6B/7B27920E8B8211E9888B6F73F8AEA228/k8LJmvDsTRpGQ0l_X4y9x-xFdI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/k8LJmvDsTRpGQ0l_X4y9x-xFdI8.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36FEA6B/7B27920E8B8211E9888B6F73F8AEA228/DB963EBAA95011E9B922BA68F8AEA228.roa
sbgp-ipAddrBlock: critical
IPv4:
196.223.5.0/24
IPv6:
2001:43f8::/48
Signature Algorithm: sha256WithRSAEncryption
88:9a:f1:73:76:b1:11:52:24:a9:46:24:10:16:ca:5c:72:53:
0f:2b:ed:11:3a:a6:42:99:2d:37:99:2d:08:6d:c9:d0:82:d0:
51:35:67:b3:7b:d0:84:c2:e0:38:0c:72:66:30:47:6d:6b:cc:
4f:94:3b:69:1d:20:f2:6f:b0:2c:21:1d:21:47:19:e8:7e:6e:
c6:fb:6b:e8:c9:98:3a:96:e8:76:e2:40:2f:e6:a0:99:a2:3a:
75:b3:1d:f5:36:3a:5b:56:68:e3:c7:42:21:c4:e2:38:8d:2d:
20:64:bb:3e:33:6f:a1:4e:0e:89:ff:70:39:c4:2a:6a:80:19:
dd:97:ab:18:da:78:52:5f:c1:7f:9c:87:71:5d:f4:da:8c:eb:
87:10:4d:b2:39:02:dc:31:2e:3b:87:da:4d:b5:c5:2e:b1:41:
a6:aa:57:99:d1:1a:1f:62:75:b3:7d:66:68:a3:db:ae:8c:9f:
51:4e:d6:81:dc:05:29:d2:31:70:35:0a:81:0e:c4:83:c0:d8:
38:22:79:45:11:f8:62:2a:5e:ca:29:1f:b0:12:dc:f3:b7:b4:
9b:79:27:60:7d:3b:df:97:d3:d2:68:a0:18:2f:d4:48:8f:f3:
cc:38:27:68:0a:cc:5c:3a:ee:58:f3:e0:4b:08:7c:55:5b:02:
47:18:d0:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 25 02:05:23 2024 by rpki-client on console-fra.rpki-client.org