Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3618989/DE67E01AC03F11EA886D1D21F8AEA228/7D1D251CC04011EA957AEB21F8AEA228.roa
File: 7D1D251CC04011EA957AEB21F8AEA228.roa (raw, json)
Hash identifier: t/ypp67l7oHU7gQc6/GfToKk0xAfDBleGGehP++nK88=
Subject key identifier: 95:96:C7:E6:57:2D:C2:33:FB:C6:2F:65:42:93:12:33:03:7D:BD:7E
Certificate issuer: /CN=F3618989AF/serialNumber=FC216A385043BAB136787AC09982546190CBDE92
Certificate serial: 07
Authority key identifier: FC:21:6A:38:50:43:BA:B1:36:78:7A:C0:99:82:54:61:90:CB:DE:92
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/_CFqOFBDurE2eHrAmYJUYZDL3pI.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3618989/DE67E01AC03F11EA886D1D21F8AEA228/7D1D251CC04011EA957AEB21F8AEA228.roa
Signing time: Tue 07 Jul 2020 10:56:20 +0000
ROA not before: Tue 07 Jul 2020 10:56:16 +0000
ROA not after: Sun 07 Jul 2030 10:56:16 +0000
asID: 328644
IP address blocks: 2001:43f8:14c0::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3618989/DE67E01AC03F11EA886D1D21F8AEA228/_CFqOFBDurE2eHrAmYJUYZDL3pI.crl
rsync://rpki.afrinic.net/repository/member_repository/F3618989/DE67E01AC03F11EA886D1D21F8AEA228/_CFqOFBDurE2eHrAmYJUYZDL3pI.mft
rsync://rpki.afrinic.net/repository/afrinic/_CFqOFBDurE2eHrAmYJUYZDL3pI.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7 (0x7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3618989AF/serialNumber=FC216A385043BAB136787AC09982546190CBDE92
Validity
Not Before: Jul 7 10:56:16 2020 GMT
Not After : Jul 7 10:56:16 2030 GMT
Subject: CN=5f0454d4-e7fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:dc:07:73:ce:30:71:7f:0e:39:5c:ed:ea:38:
14:5a:85:d8:a1:13:b9:a3:03:dd:5c:8a:c3:71:fc:
7b:02:ce:f9:03:42:09:58:50:b0:89:24:f4:8b:f2:
d0:91:24:f7:53:95:41:4c:09:60:c7:2c:3b:20:9b:
8f:f7:97:19:c3:53:4c:85:80:e2:d2:9a:0e:52:76:
68:7f:54:26:12:f8:0d:48:1c:18:67:ae:fc:97:20:
c1:3a:e8:ad:8c:0c:f1:db:5d:a4:24:ed:2a:6f:0f:
71:1f:70:d1:11:7c:56:9c:bb:b2:fc:0a:95:57:6e:
02:4f:b4:d3:6e:59:b8:06:ec:be:ea:3f:f3:32:12:
57:6f:7d:ed:18:d5:07:8f:14:c2:34:46:49:c3:cb:
f8:30:b0:4e:3b:49:8a:64:db:67:8d:83:3f:1e:11:
74:e1:88:05:5d:98:05:6a:d7:41:b3:ef:f3:c0:21:
3e:42:e4:44:19:aa:6d:f2:19:17:fa:b9:d5:f3:89:
dc:45:b6:d7:f3:b1:a5:d8:9c:49:fc:91:e8:27:2c:
9d:46:67:92:85:d7:52:95:26:8b:ac:03:7c:2c:5b:
11:c2:9a:98:d9:bd:80:88:ce:b0:ca:b5:49:bd:f8:
7e:29:06:30:a9:fa:2d:fe:1c:57:2a:a7:f9:e5:c2:
d3:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:96:C7:E6:57:2D:C2:33:FB:C6:2F:65:42:93:12:33:03:7D:BD:7E
X509v3 Authority Key Identifier:
keyid:FC:21:6A:38:50:43:BA:B1:36:78:7A:C0:99:82:54:61:90:CB:DE:92
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3618989/DE67E01AC03F11EA886D1D21F8AEA228/_CFqOFBDurE2eHrAmYJUYZDL3pI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/_CFqOFBDurE2eHrAmYJUYZDL3pI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3618989/DE67E01AC03F11EA886D1D21F8AEA228/7D1D251CC04011EA957AEB21F8AEA228.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:43f8:14c0::/48
Signature Algorithm: sha256WithRSAEncryption
77:94:ce:7f:77:be:88:ac:c3:a6:aa:bb:47:22:97:f4:24:5b:
68:64:eb:1f:5c:36:e0:35:da:b7:03:f2:eb:e7:7d:7c:91:6a:
fb:40:0c:8d:7f:99:e5:95:be:52:d8:0d:26:a0:52:21:47:dd:
19:77:5d:2a:8b:28:e3:68:6e:c7:ee:4b:1a:b0:c9:fb:57:15:
08:d6:e8:3e:ea:80:79:d6:3f:9f:41:2f:a1:a7:f5:75:53:48:
cb:3d:42:c9:b7:f3:25:ea:6c:64:4c:e3:c6:e3:d8:56:aa:ab:
15:bd:87:48:44:fc:99:e8:1a:7a:96:b9:c9:43:9e:7c:6a:14:
0f:e1:27:12:26:2b:13:45:e6:f1:0e:d1:ac:3a:08:13:39:47:
37:5a:84:22:6b:71:36:5f:3e:aa:20:17:b2:0c:fd:0d:e7:17:
1e:5c:0d:36:73:57:e2:97:b7:a6:44:6c:4f:7b:f5:37:de:e1:
44:98:00:24:99:d8:07:d5:d8:e1:7c:95:f4:e6:59:24:5e:5f:
ca:5f:a7:03:17:f6:fb:e5:0c:c9:c2:ca:41:48:eb:aa:9a:81:
7b:1c:b2:1b:e1:f2:06:3b:db:f7:54:de:a8:f5:1a:77:d7:21:
eb:95:35:36:02:df:7e:c5:90:37:26:49:4b:a7:58:43:be:72:
99:aa:8f:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:03:31 2024 by rpki-client on console-ams.rpki-client.org