Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36FF546/872A395091ED11E9976B227DF8AEA228/FB654B0091EF11E99DA90E7FF8AEA228.roa
File: FB654B0091EF11E99DA90E7FF8AEA228.roa (raw, json)
Hash identifier: nhD+pe2BQnxbsRGwyft8O4mm+dCir5b5n7iU0KS6i3g=
Subject key identifier: 23:56:7B:5E:2F:FF:88:10:AE:78:C8:3D:F6:5E:5A:FB:F3:B2:FF:31
Certificate issuer: /CN=F36FF546AF/serialNumber=CD083AF5D271A0F2DDAB0F150BEB005F38A946B1
Certificate serial: 02
Authority key identifier: CD:08:3A:F5:D2:71:A0:F2:DD:AB:0F:15:0B:EB:00:5F:38:A9:46:B1
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/zQg69dJxoPLdqw8VC-sAXzipRrE.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36FF546/872A395091ED11E9976B227DF8AEA228/FB654B0091EF11E99DA90E7FF8AEA228.roa
Signing time: Tue 18 Jun 2019 17:39:12 +0000
ROA not before: Tue 18 Jun 2019 17:39:07 +0000
ROA not after: Sat 18 Jun 2039 17:39:07 +0000
asID: 6968
IP address blocks: 196.29.56.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36FF546/872A395091ED11E9976B227DF8AEA228/zQg69dJxoPLdqw8VC-sAXzipRrE.crl
rsync://rpki.afrinic.net/repository/member_repository/F36FF546/872A395091ED11E9976B227DF8AEA228/zQg69dJxoPLdqw8VC-sAXzipRrE.mft
rsync://rpki.afrinic.net/repository/afrinic/zQg69dJxoPLdqw8VC-sAXzipRrE.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2 (0x2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36FF546AF/serialNumber=CD083AF5D271A0F2DDAB0F150BEB005F38A946B1
Validity
Not Before: Jun 18 17:39:07 2019 GMT
Not After : Jun 18 17:39:07 2039 GMT
Subject: CN=5d0921bf-0d59
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:79:4a:03:18:e4:57:b4:77:f7:4f:a2:1e:87:
9e:28:dc:3b:23:3a:20:3c:ea:4d:65:86:12:50:9a:
e4:d0:4e:00:f9:3e:d6:22:58:0d:48:b7:db:87:2c:
8f:47:fb:1a:8a:ef:04:3d:62:a6:ba:54:50:97:11:
22:f7:9a:2e:ea:67:d5:c6:a7:c5:40:1b:96:01:53:
dd:36:68:c0:f6:a2:33:b4:98:99:dc:8b:29:c3:dc:
12:a7:74:44:68:a9:cd:f4:22:4f:10:2b:f7:59:f5:
ff:97:d6:18:8c:b3:9f:02:c6:fa:9c:54:dd:c6:8a:
c8:d6:af:ed:b5:c9:d7:05:81:6a:1e:6c:e8:ab:b9:
e0:3a:b6:7d:6e:f4:b1:c5:40:9e:ea:74:35:b0:cd:
72:c9:e3:5d:42:33:62:8a:ab:c7:df:45:3b:7e:71:
73:6f:76:93:ca:4e:24:6b:b4:73:24:69:bf:25:2c:
50:2f:28:d6:43:3b:5c:ef:82:24:ba:ef:67:12:e7:
f9:96:ef:26:fb:d0:b8:3a:13:b5:4e:76:1b:d1:e4:
d7:7c:65:01:fe:c7:d2:86:c0:12:0c:ae:b0:ce:09:
3e:75:a2:c1:ca:1b:db:75:75:2f:90:61:16:a5:c1:
75:81:25:16:9a:1d:64:fd:9c:1b:2e:21:95:38:ba:
37:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:56:7B:5E:2F:FF:88:10:AE:78:C8:3D:F6:5E:5A:FB:F3:B2:FF:31
X509v3 Authority Key Identifier:
keyid:CD:08:3A:F5:D2:71:A0:F2:DD:AB:0F:15:0B:EB:00:5F:38:A9:46:B1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36FF546/872A395091ED11E9976B227DF8AEA228/zQg69dJxoPLdqw8VC-sAXzipRrE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/zQg69dJxoPLdqw8VC-sAXzipRrE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36FF546/872A395091ED11E9976B227DF8AEA228/FB654B0091EF11E99DA90E7FF8AEA228.roa
sbgp-ipAddrBlock: critical
IPv4:
196.29.56.0/21
Signature Algorithm: sha256WithRSAEncryption
de:a0:8c:c8:0f:df:1a:ac:9f:4a:49:18:e5:80:46:ca:8b:b4:
c1:29:01:6d:aa:2c:ec:a4:12:6e:6c:52:0a:2e:4b:e7:fb:1c:
dc:32:30:68:e1:92:9f:78:68:78:39:4e:64:c6:61:92:d7:1d:
d7:62:b1:a4:44:83:69:e2:97:a1:19:d2:2c:cb:cb:71:e5:f6:
72:27:f8:3b:95:00:21:e3:67:da:71:7f:fc:21:b0:97:3d:8a:
db:d1:6e:cf:83:ba:bb:1d:c8:9b:ec:c7:6b:bb:be:5b:d5:0c:
29:4c:53:74:83:4b:dc:20:58:88:df:3f:23:47:90:1d:cf:a4:
f3:b9:de:66:de:7b:ab:1a:fd:de:97:6b:60:33:90:75:b9:9d:
7d:28:68:2f:60:4e:8b:c6:56:ea:59:55:14:8f:8e:64:c6:9d:
92:c6:2a:04:20:da:0e:2b:84:8d:53:30:7c:6c:2d:2e:53:37:
e3:fc:15:53:63:a7:76:0c:ee:36:dd:5b:85:dc:76:98:16:e2:
04:10:30:a8:74:90:95:2b:c2:b2:0e:78:4a:35:4c:c7:28:67:
3e:59:ef:78:d7:90:33:a9:3e:09:79:41:55:54:54:03:df:da:
23:7c:28:bc:e1:a2:67:ef:57:36:e5:c3:85:fc:f1:64:9b:85:
af:f4:3d:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:10:20 2024 by rpki-client on console-fra.rpki-client.org