Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F361D299/48F008D856D511E5845EF85CF8AEA228/A66C5B60EEFB11EAB67BB760F8AEA228.roa
File: A66C5B60EEFB11EAB67BB760F8AEA228.roa (raw, json)
Hash identifier: FhdIMm+EQ8oEL4UIZyKUV2bOPB0gTKOHcKnmpA8WxzA=
Subject key identifier: E8:86:96:FE:23:B3:67:89:A9:1D:F3:6D:BB:B4:C1:C9:81:C8:39:D3
Certificate issuer: /CN=F361D299AF/serialNumber=2B2442848174AA8894469A779B9FD7DA4958C669
Certificate serial: 0749
Authority key identifier: 2B:24:42:84:81:74:AA:88:94:46:9A:77:9B:9F:D7:DA:49:58:C6:69
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/KyRChIF0qoiURpp3m5_X2klYxmk.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F361D299/48F008D856D511E5845EF85CF8AEA228/A66C5B60EEFB11EAB67BB760F8AEA228.roa
Signing time: Fri 04 Sep 2020 22:11:59 +0000
ROA not before: Sat 05 Sep 2020 22:11:54 +0000
ROA not after: Fri 05 Sep 2025 22:11:54 +0000
asID: 37199
IP address blocks: 2c0f:fb18::/32 maxlen: 34
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F361D299/48F008D856D511E5845EF85CF8AEA228/KyRChIF0qoiURpp3m5_X2klYxmk.crl
rsync://rpki.afrinic.net/repository/member_repository/F361D299/48F008D856D511E5845EF85CF8AEA228/KyRChIF0qoiURpp3m5_X2klYxmk.mft
rsync://rpki.afrinic.net/repository/afrinic/KyRChIF0qoiURpp3m5_X2klYxmk.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1865 (0x749)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F361D299AF/serialNumber=2B2442848174AA8894469A779B9FD7DA4958C669
Validity
Not Before: Sep 5 22:11:54 2020 GMT
Not After : Sep 5 22:11:54 2025 GMT
Subject: CN=5f52bbaf-ead9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:cd:b5:52:37:43:9e:2b:9f:11:5c:e9:72:13:
68:58:0c:07:05:d3:b3:b7:f3:a2:8a:fa:85:e0:51:
8b:6f:b7:38:e4:e4:e4:90:aa:3f:ae:55:73:e5:17:
aa:11:2d:95:e0:1f:55:54:16:a4:90:94:eb:fb:b5:
83:a9:8b:67:fb:b2:aa:1f:84:39:62:1a:b5:da:c0:
94:94:69:ab:a5:3e:ac:12:39:0c:5f:ad:8e:11:5f:
74:8d:76:52:b0:a2:d0:52:a4:ad:1f:45:90:82:96:
99:3c:e1:60:82:64:a0:4e:40:72:3f:a9:0f:96:55:
20:e2:0c:45:3e:f3:a6:77:26:1d:98:0c:e0:98:d0:
f1:a7:73:50:bd:e5:65:3d:b1:a7:8d:a4:56:7b:c0:
df:44:28:33:9a:61:82:91:0a:bb:b9:c1:94:eb:83:
87:ea:94:62:56:da:87:98:c2:7c:da:6d:28:6c:7b:
6c:8f:6f:83:4b:fa:08:ba:b4:19:30:48:00:7f:51:
92:56:8c:78:65:e4:0f:43:35:cf:7c:c1:83:5f:dd:
74:58:6d:af:8e:11:9f:e9:93:c9:0d:07:4c:33:7c:
63:30:c4:29:48:14:9d:11:a4:1d:e9:42:2f:73:ad:
13:ea:91:38:2d:bf:c7:91:92:cf:37:2b:a5:55:85:
55:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:86:96:FE:23:B3:67:89:A9:1D:F3:6D:BB:B4:C1:C9:81:C8:39:D3
X509v3 Authority Key Identifier:
keyid:2B:24:42:84:81:74:AA:88:94:46:9A:77:9B:9F:D7:DA:49:58:C6:69
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F361D299/48F008D856D511E5845EF85CF8AEA228/KyRChIF0qoiURpp3m5_X2klYxmk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/KyRChIF0qoiURpp3m5_X2klYxmk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F361D299/48F008D856D511E5845EF85CF8AEA228/A66C5B60EEFB11EAB67BB760F8AEA228.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2c0f:fb18::/32
Signature Algorithm: sha256WithRSAEncryption
53:8e:af:64:31:79:08:55:0b:87:11:a1:71:25:85:ff:cd:e5:
c1:f6:25:65:e7:81:0d:0d:90:8f:96:fc:ea:e5:a3:b3:ef:3f:
99:ba:6c:7c:77:2f:61:99:3e:33:cd:dd:41:c6:5e:f7:10:6e:
b2:ef:e2:c6:2b:f9:f3:d4:cd:4a:eb:01:8f:18:a1:e1:f3:73:
39:d3:04:b5:a1:d4:86:c8:e4:11:cc:17:f8:5e:c9:56:4f:56:
26:20:cd:d7:a7:8d:2d:90:72:10:5e:fe:1f:b0:b0:e0:6a:de:
75:8a:a6:b3:01:ba:48:03:1d:d4:bf:de:3d:8e:c7:1f:7b:0b:
a3:8e:38:5d:4f:9a:7a:d2:47:23:0a:39:34:15:25:b1:03:f1:
48:a1:ba:2a:f3:9a:44:b4:2b:e0:f4:f6:6e:b8:97:bf:3e:44:
84:45:c9:aa:76:2b:3e:75:c1:7e:ad:1b:98:8e:e0:a2:fb:99:
be:5c:f3:06:5e:e3:64:24:78:65:37:c2:65:67:48:18:c0:ed:
a8:e1:70:0d:00:a6:7b:6a:5d:1c:7b:5a:bf:9d:93:85:e6:dd:
4c:78:99:28:a0:1b:8f:d8:ad:d9:bc:15:01:22:d7:d1:92:1a:
38:ea:5c:a5:28:4a:11:3f:10:f5:25:0d:e7:af:39:66:a3:15:
54:f7:a7:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:08:51 2024 by rpki-client on console-fra.rpki-client.org