Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3634D22/1D5F7C26047311E580C18A06F8AEA228/0837CF6293D911ED8388138CF1222468.roa
File: 0837CF6293D911ED8388138CF1222468.roa (raw, json)
Hash identifier: dykJ+gUPvSBQPyyDRhwioZtmgpWlaPh9itkwUzmas84=
Subject key identifier: F8:F6:FE:2C:DC:AF:EA:F5:C8:21:4C:DB:A0:9B:9E:E6:87:59:2E:92
Certificate issuer: /CN=F3634D22AF/serialNumber=8D01D808E89774543DE22D0DA844378ECEA8BB9B
Certificate serial: 0C01
Authority key identifier: 8D:01:D8:08:E8:97:74:54:3D:E2:2D:0D:A8:44:37:8E:CE:A8:BB:9B
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/jQHYCOiXdFQ94i0NqEQ3js6ou5s.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3634D22/1D5F7C26047311E580C18A06F8AEA228/0837CF6293D911ED8388138CF1222468.roa
Signing time: Sat 14 Jan 2023 06:59:48 +0000
ROA not before: Sat 14 Jan 2023 06:59:44 +0000
ROA not after: Thu 31 Jan 2030 06:59:44 +0000
asID: 37708
IP address blocks: 2001:43f8:90::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3634D22/1D5F7C26047311E580C18A06F8AEA228/jQHYCOiXdFQ94i0NqEQ3js6ou5s.crl
rsync://rpki.afrinic.net/repository/member_repository/F3634D22/1D5F7C26047311E580C18A06F8AEA228/jQHYCOiXdFQ94i0NqEQ3js6ou5s.mft
rsync://rpki.afrinic.net/repository/afrinic/jQHYCOiXdFQ94i0NqEQ3js6ou5s.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 28 Jun 2024 00:05:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3073 (0xc01)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3634D22AF/serialNumber=8D01D808E89774543DE22D0DA844378ECEA8BB9B
Validity
Not Before: Jan 14 06:59:44 2023 GMT
Not After : Jan 31 06:59:44 2030 GMT
Subject: CN=63c252e3-1bf1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:25:bc:2e:d1:1e:99:6a:4e:f6:6c:81:c8:01:
b2:fb:8e:de:3a:55:c2:65:a9:37:f5:98:15:b7:45:
0e:5f:0a:0a:18:46:34:e8:b6:b7:ee:74:79:6d:24:
3c:54:70:89:01:41:0d:3d:04:7b:e3:05:7f:46:1f:
00:b7:c8:2a:b7:8d:5c:47:1b:6a:92:6e:13:2e:1c:
f4:da:8e:1c:11:d9:81:fd:9b:c7:a8:74:92:e2:d1:
24:8b:47:c3:da:27:76:0e:f0:e3:5e:86:95:7a:05:
c5:cf:0c:a6:a1:e2:ec:c1:8a:f6:e1:33:5e:14:a2:
2f:18:36:80:81:f5:38:3d:d2:ca:32:98:d7:78:57:
b4:11:09:81:a4:0c:97:df:b0:f1:86:05:17:c5:f9:
cf:33:41:87:47:0c:c5:be:0c:01:c2:20:3d:44:91:
9f:1f:15:f2:fd:32:d5:a9:2b:a8:f0:5c:41:4f:8c:
ca:1a:ad:fb:f2:b0:85:4b:e7:80:d9:4a:fc:24:3b:
dd:49:2f:f9:b4:d0:41:9b:f4:4c:24:65:f6:7e:58:
79:13:f4:d3:61:b2:76:65:fc:d1:1f:4b:09:02:27:
a4:e3:4b:d6:c3:58:bc:37:da:24:1b:0f:de:ff:73:
9a:72:23:cd:81:1b:1d:99:d4:0a:f2:de:f8:65:5f:
39:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:F6:FE:2C:DC:AF:EA:F5:C8:21:4C:DB:A0:9B:9E:E6:87:59:2E:92
X509v3 Authority Key Identifier:
keyid:8D:01:D8:08:E8:97:74:54:3D:E2:2D:0D:A8:44:37:8E:CE:A8:BB:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3634D22/1D5F7C26047311E580C18A06F8AEA228/jQHYCOiXdFQ94i0NqEQ3js6ou5s.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/jQHYCOiXdFQ94i0NqEQ3js6ou5s.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3634D22/1D5F7C26047311E580C18A06F8AEA228/0837CF6293D911ED8388138CF1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:43f8:90::/48
Signature Algorithm: sha256WithRSAEncryption
75:ae:93:65:13:fb:13:57:15:b2:ea:7a:85:6f:4b:a3:ce:8d:
c1:5e:e4:79:53:40:cd:2a:48:2c:75:3b:4b:40:52:bd:1f:70:
fd:5f:c1:1a:b2:bf:3d:45:dc:44:b4:7d:5d:d4:f0:ee:6f:72:
df:49:40:2f:dd:80:5a:3b:ff:9d:f3:e1:8f:3f:11:9c:ef:7c:
7b:24:79:86:47:c9:87:8c:b8:c4:85:8b:49:92:28:de:ce:8b:
c1:12:33:7c:04:a1:30:b1:08:f8:b9:a2:c7:7f:d6:66:6c:ef:
0c:3a:c4:f1:66:97:22:8e:24:38:ec:22:3c:15:a7:c2:8b:93:
43:44:cb:1c:15:e5:f3:63:ee:9e:b0:b3:1c:32:48:98:65:a4:
05:41:2f:3c:ef:2d:91:a3:0b:6b:b3:84:b8:e1:88:d5:1d:e2:
d9:f4:af:54:95:c3:ac:d6:a2:6c:d5:68:db:99:b2:2e:86:96:
c8:a5:f5:3a:f7:96:2e:6f:34:a9:fd:e0:b5:3d:2d:6f:59:6f:
bd:65:14:de:08:00:af:57:34:13:39:87:51:2d:af:28:b8:bd:
28:a4:d0:6f:19:bb:a7:90:34:52:cb:9f:7e:b5:98:3c:c2:77:
6c:74:01:f1:f9:99:d5:1a:47:7b:b9:a0:0d:ff:39:c2:b0:e9:
07:22:70:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 26 02:44:45 2024 by rpki-client on console-fra.rpki-client.org