Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36152D2/5CF1A0AED56A11E99775464BF8AEA228/21BD81763EC811EE8B7946734AD9E6FC.roa
File: 21BD81763EC811EE8B7946734AD9E6FC.roa (raw, json)
Hash identifier: VtpPsjIQ6asKfxUhbuH75a5ObTnCjtxuvTF4JyOA/iw=
Subject key identifier: 7E:58:67:D3:17:2D:36:0B:1B:B4:4F:EA:97:48:79:71:9B:41:11:93
Certificate issuer: /CN=F36152D2AF/serialNumber=5A467BB4937EAC6BEFB96B4F4FE35BD7FD2A40FA
Certificate serial: 05CF
Authority key identifier: 5A:46:7B:B4:93:7E:AC:6B:EF:B9:6B:4F:4F:E3:5B:D7:FD:2A:40:FA
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/WkZ7tJN-rGvvuWtPT-Nb1_0qQPo.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36152D2/5CF1A0AED56A11E99775464BF8AEA228/21BD81763EC811EE8B7946734AD9E6FC.roa
Signing time: Sat 19 Aug 2023 19:39:38 +0000
ROA not before: Sat 19 Aug 2023 19:39:30 +0000
ROA not after: Tue 19 Nov 2030 19:39:30 +0000
asID: 37215
IP address blocks: 2c0e:7e80::/28 maxlen: 48
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36152D2/5CF1A0AED56A11E99775464BF8AEA228/WkZ7tJN-rGvvuWtPT-Nb1_0qQPo.crl
rsync://rpki.afrinic.net/repository/member_repository/F36152D2/5CF1A0AED56A11E99775464BF8AEA228/WkZ7tJN-rGvvuWtPT-Nb1_0qQPo.mft
rsync://rpki.afrinic.net/repository/afrinic/WkZ7tJN-rGvvuWtPT-Nb1_0qQPo.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1487 (0x5cf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36152D2AF/serialNumber=5A467BB4937EAC6BEFB96B4F4FE35BD7FD2A40FA
Validity
Not Before: Aug 19 19:39:30 2023 GMT
Not After : Nov 19 19:39:30 2030 GMT
Subject: CN=64e11a79-069e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:ce:1a:34:09:11:d6:5f:0a:3d:4e:4c:9f:73:
0e:bc:5f:48:e8:f0:97:fb:70:25:88:44:ed:28:cd:
32:a3:b7:59:0a:1d:b8:f9:c9:06:97:4a:69:3d:9f:
fc:20:0a:84:4e:c6:b4:a9:0f:2f:3b:b8:be:18:d7:
ef:6f:65:9c:13:8f:8d:b3:ff:97:3e:03:44:fa:85:
8a:5b:5b:0b:48:dd:1a:cf:7f:23:77:76:5e:32:17:
c4:3c:16:68:09:9c:55:0c:d7:39:85:fd:6a:31:a4:
8c:e4:a8:28:5d:00:e2:b3:f7:4e:aa:2f:3a:0c:ca:
de:fa:ab:e2:31:a6:02:30:f1:0c:1b:ef:89:e8:4c:
26:a9:5a:e5:76:51:66:b8:53:50:7e:94:ea:86:58:
14:09:f6:8b:d6:cf:25:12:7c:f0:53:b5:e7:9d:26:
f5:5c:8c:e3:c7:cf:e2:05:b8:30:9c:12:61:51:83:
5e:de:90:5e:43:c3:3f:b2:a7:ae:a1:68:e9:96:aa:
4f:4f:ec:a3:ba:86:b6:f5:5b:82:8e:45:2a:81:e9:
8c:cd:88:32:5b:10:01:52:be:0c:f9:5e:0a:35:75:
e6:43:d9:e5:8c:16:7c:bf:64:3c:40:2c:f6:c0:e9:
da:bc:78:16:09:b5:75:e8:1c:82:5f:c7:57:27:61:
5e:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:58:67:D3:17:2D:36:0B:1B:B4:4F:EA:97:48:79:71:9B:41:11:93
X509v3 Authority Key Identifier:
keyid:5A:46:7B:B4:93:7E:AC:6B:EF:B9:6B:4F:4F:E3:5B:D7:FD:2A:40:FA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36152D2/5CF1A0AED56A11E99775464BF8AEA228/WkZ7tJN-rGvvuWtPT-Nb1_0qQPo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/WkZ7tJN-rGvvuWtPT-Nb1_0qQPo.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36152D2/5CF1A0AED56A11E99775464BF8AEA228/21BD81763EC811EE8B7946734AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2c0e:7e80::/28
Signature Algorithm: sha256WithRSAEncryption
94:1e:36:7f:59:ac:30:9c:fb:6f:60:db:ea:90:37:ca:24:7e:
ae:a7:ad:33:f5:b7:f7:47:89:0c:18:b9:c2:a8:2c:b7:d1:81:
26:6d:7a:df:03:ec:c4:df:64:d7:f8:e5:dc:2c:7e:84:9a:eb:
9d:f2:8b:1e:e4:83:55:34:7d:c7:1a:e3:b3:c4:f4:d0:9e:62:
73:01:4d:75:64:55:cd:50:80:10:dd:f5:93:6b:39:c4:4b:62:
8b:0f:37:ac:49:81:33:b6:9e:ce:a8:66:b5:53:7c:5c:2e:1e:
3a:b5:fd:71:dc:f8:81:71:33:90:eb:4d:47:80:68:c8:ea:98:
da:67:a6:6c:73:d7:c1:fe:31:8d:d1:c8:de:8f:06:c9:e1:4f:
65:58:68:d9:ba:cc:51:97:a5:d3:32:72:49:f8:fa:6d:4f:26:
5d:e1:d1:6e:8b:dd:2d:bd:a6:d7:df:de:45:0b:ce:f8:2c:60:
eb:3d:22:4b:0b:bc:d5:89:7d:9c:81:d0:5d:b6:20:45:12:1f:
3c:1f:f8:b9:50:aa:e4:86:24:c2:1e:d1:85:c9:57:1b:84:ec:
4d:0f:f7:4a:dc:98:d6:00:91:f2:8f:d7:a0:88:82:b3:31:5c:
23:82:53:ae:7d:4f:f9:cb:90:41:e1:b4:e5:05:9d:3e:53:81:
9a:29:9b:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:03:30 2024 by rpki-client on console-ams.rpki-client.org