Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36CC8EB/CD40B1EAB0ED11ECA48318825A40D577/A971279EB0EE11EC8D6592845A40D577.roa
File: A971279EB0EE11EC8D6592845A40D577.roa (raw, json)
Hash identifier: 0T+GuWqC72/c81r19BWbq4EQ4yHRxHBnW02fRB1Ftrs=
Subject key identifier: 64:50:E9:45:78:3B:D9:1B:B7:17:2F:93:4F:F3:95:88:71:A2:69:FB
Certificate issuer: /CN=F36CC8EBRI/serialNumber=E690FB656B8D7D0F0F676D9D127A32DF8D3A6D85
Certificate serial: 02
Authority key identifier: E6:90:FB:65:6B:8D:7D:0F:0F:67:6D:9D:12:7A:32:DF:8D:3A:6D:85
Authority info access: rsync://rpki.afrinic.net/repository/ripe/5pD7ZWuNfQ8PZ22dEnoy3406bYU.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36CC8EB/CD40B1EAB0ED11ECA48318825A40D577/A971279EB0EE11EC8D6592845A40D577.roa
Signing time: Thu 31 Mar 2022 12:32:44 +0000
ROA not before: Thu 31 Mar 2022 12:32:39 +0000
ROA not after: Wed 31 Mar 2027 12:32:39 +0000
asID: 29091
IP address blocks: 62.173.32.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36CC8EB/CD40B1EAB0ED11ECA48318825A40D577/5pD7ZWuNfQ8PZ22dEnoy3406bYU.crl
rsync://rpki.afrinic.net/repository/member_repository/F36CC8EB/CD40B1EAB0ED11ECA48318825A40D577/5pD7ZWuNfQ8PZ22dEnoy3406bYU.mft
rsync://rpki.afrinic.net/repository/ripe/5pD7ZWuNfQ8PZ22dEnoy3406bYU.cer
rsync://rpki.afrinic.net/repository/ripe/f3rBgIl5g-Kek3wKGHgDwHJ1VUU.crl
rsync://rpki.afrinic.net/repository/ripe/f3rBgIl5g-Kek3wKGHgDwHJ1VUU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/ripe-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 27 Jun 2024 00:25:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2 (0x2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36CC8EBRI/serialNumber=E690FB656B8D7D0F0F676D9D127A32DF8D3A6D85
Validity
Not Before: Mar 31 12:32:39 2022 GMT
Not After : Mar 31 12:32:39 2027 GMT
Subject: CN=62459f6b-9447
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:cf:ff:67:e0:a6:2a:7f:06:ac:4f:78:61:8a:
e4:9c:25:02:60:a2:88:db:22:3a:5e:90:c4:bc:c2:
7f:a2:95:f5:e4:4b:3b:d9:b9:8a:26:8f:37:86:7b:
f6:a6:6f:0d:53:65:ee:e9:68:82:39:bb:a0:13:93:
c5:36:35:06:79:0b:40:e0:5c:89:0f:12:60:33:14:
e7:0d:8f:cb:6b:35:22:0a:b9:dd:52:0c:f0:ba:22:
12:fd:9c:3b:aa:e0:0b:26:a4:19:a2:d6:6d:73:f4:
da:17:ec:24:de:77:71:9e:63:55:35:48:3e:06:5d:
cf:93:18:71:ba:12:06:ee:f5:f4:d6:d3:e5:d8:ba:
4e:cf:7d:02:67:b1:64:6f:0b:0c:69:3e:4b:b1:f4:
10:d5:1f:d9:ca:f3:d2:ca:60:9d:ac:e0:bc:72:57:
c5:46:a4:4f:f0:b7:e1:83:f3:92:58:00:bb:bc:b0:
9a:87:ec:ec:d8:28:3c:f7:42:0c:e1:5a:2a:84:53:
13:87:f5:52:1c:c4:05:1b:a2:3f:83:f0:dc:5d:45:
9f:ae:18:d0:d2:3b:35:d6:08:e7:a6:b6:8a:eb:03:
b9:ac:fd:8f:7a:40:37:66:ad:81:07:dd:ef:71:7c:
e4:33:4b:7c:14:09:b6:46:5b:bf:19:2d:84:35:88:
72:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:50:E9:45:78:3B:D9:1B:B7:17:2F:93:4F:F3:95:88:71:A2:69:FB
X509v3 Authority Key Identifier:
keyid:E6:90:FB:65:6B:8D:7D:0F:0F:67:6D:9D:12:7A:32:DF:8D:3A:6D:85
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36CC8EB/CD40B1EAB0ED11ECA48318825A40D577/5pD7ZWuNfQ8PZ22dEnoy3406bYU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/ripe/5pD7ZWuNfQ8PZ22dEnoy3406bYU.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36CC8EB/CD40B1EAB0ED11ECA48318825A40D577/A971279EB0EE11EC8D6592845A40D577.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
62.173.32.0/19
Signature Algorithm: sha256WithRSAEncryption
5e:da:10:90:11:28:08:99:3b:f3:e7:5b:32:03:9b:e8:4d:89:
ab:7c:3a:72:99:c3:fa:00:b5:79:b8:78:0e:03:62:95:fc:e2:
e6:cb:6d:8d:ac:6c:7e:06:4f:1f:23:f0:26:e9:63:59:4b:be:
19:0d:88:6b:24:74:fc:40:e6:d9:1a:ac:7f:a9:79:9b:4e:7b:
e7:c0:f7:f8:bf:6c:02:e6:c2:f3:1f:e9:5b:cf:48:50:68:65:
d5:9a:83:5c:6f:5b:4d:ff:87:03:d8:c6:9a:b3:da:e1:03:fc:
cf:9a:b0:53:d6:c9:01:c7:6d:2a:03:70:9d:7f:01:a3:9c:09:
3c:b3:6d:f6:94:ab:4e:8f:e8:64:06:a9:d4:f0:23:bf:e5:19:
02:51:89:a6:d5:1a:16:f9:13:8c:b1:18:b9:88:37:62:21:cd:
e3:b6:68:76:60:1e:39:b7:7b:ad:5b:5e:f2:5c:fa:da:f4:bd:
cb:25:fc:f2:d7:da:0d:4a:fb:6c:77:7d:ad:11:19:da:10:2a:
4f:f1:80:43:73:86:f7:35:7d:4b:86:76:25:f9:dc:f7:aa:f6:
b3:12:fd:b6:a3:99:6a:5b:87:15:0c:5d:42:cb:c3:61:57:0a:
83:44:4b:d5:fb:a9:da:dc:67:2f:24:a9:f9:22:4f:8d:2a:9f:
91:8c:b3:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 25 04:13:09 2024 by rpki-client on console-ams.rpki-client.org