Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3634D22/1D5F7C26047311E580C18A06F8AEA228/41260B7AA12811EDBC2E43E5F1222468.roa
File: 41260B7AA12811EDBC2E43E5F1222468.roa (raw, json)
Hash identifier: UsudKW8ggEByg442sH8KfbmQS8Wkjp97HkUNC0eC6B4=
Subject key identifier: 46:A6:58:18:8C:76:CC:3E:BF:EB:71:C9:E9:25:B2:09:16:EF:59:0D
Certificate issuer: /CN=F3634D22AF/serialNumber=8D01D808E89774543DE22D0DA844378ECEA8BB9B
Certificate serial: 0C2B
Authority key identifier: 8D:01:D8:08:E8:97:74:54:3D:E2:2D:0D:A8:44:37:8E:CE:A8:BB:9B
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/jQHYCOiXdFQ94i0NqEQ3js6ou5s.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3634D22/1D5F7C26047311E580C18A06F8AEA228/41260B7AA12811EDBC2E43E5F1222468.roa
Signing time: Tue 31 Jan 2023 05:29:38 +0000
ROA not before: Tue 31 Jan 2023 05:29:35 +0000
ROA not after: Thu 31 Jan 2030 05:29:35 +0000
asID: 37177
IP address blocks: 2001:43f8:120::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3634D22/1D5F7C26047311E580C18A06F8AEA228/jQHYCOiXdFQ94i0NqEQ3js6ou5s.crl
rsync://rpki.afrinic.net/repository/member_repository/F3634D22/1D5F7C26047311E580C18A06F8AEA228/jQHYCOiXdFQ94i0NqEQ3js6ou5s.mft
rsync://rpki.afrinic.net/repository/afrinic/jQHYCOiXdFQ94i0NqEQ3js6ou5s.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 03 Jun 2024 00:05:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3115 (0xc2b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3634D22AF/serialNumber=8D01D808E89774543DE22D0DA844378ECEA8BB9B
Validity
Not Before: Jan 31 05:29:35 2023 GMT
Not After : Jan 31 05:29:35 2030 GMT
Subject: CN=63d8a742-649a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:44:9e:a8:07:7d:3c:17:82:df:c1:9c:65:3a:
47:dc:6f:f6:1c:93:4b:0e:75:06:30:30:0d:50:f4:
76:cb:51:24:70:64:3b:b8:e9:41:98:5f:88:ef:39:
88:0b:8f:e0:2b:30:5e:87:8a:97:3f:bf:01:bd:33:
38:7b:04:84:09:82:78:ac:d1:3e:a1:d0:ba:0c:f8:
ea:73:bc:91:43:1f:24:b8:f8:93:d3:77:21:0e:f2:
a3:9e:d0:0c:9d:24:70:3c:76:53:0b:0e:24:18:3b:
b1:4f:bb:ac:43:ec:be:e6:f7:d6:38:8d:be:c2:01:
a6:2f:3b:f9:c9:4f:41:ea:87:ff:7a:31:df:e0:54:
53:ef:e1:31:8a:2e:a2:24:8d:2d:bf:1e:90:c4:4c:
eb:81:a4:2c:cf:72:3b:fc:42:b0:9c:30:b7:1b:ef:
cc:ad:cb:f1:f7:f7:49:d3:bc:53:9f:dc:b9:27:f7:
f8:0f:f8:aa:69:39:76:3a:0c:5f:89:a3:10:78:3c:
b7:7e:01:1f:b6:1f:a9:ce:8a:94:ec:a4:bc:c9:ae:
96:9b:89:15:08:74:8d:09:54:85:56:3b:09:86:77:
2a:df:c2:03:0d:65:d0:91:70:e7:79:41:49:31:7a:
82:33:a8:3b:e9:ed:b0:58:e6:6d:85:12:4f:39:4c:
3d:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:A6:58:18:8C:76:CC:3E:BF:EB:71:C9:E9:25:B2:09:16:EF:59:0D
X509v3 Authority Key Identifier:
keyid:8D:01:D8:08:E8:97:74:54:3D:E2:2D:0D:A8:44:37:8E:CE:A8:BB:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3634D22/1D5F7C26047311E580C18A06F8AEA228/jQHYCOiXdFQ94i0NqEQ3js6ou5s.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/jQHYCOiXdFQ94i0NqEQ3js6ou5s.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3634D22/1D5F7C26047311E580C18A06F8AEA228/41260B7AA12811EDBC2E43E5F1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:43f8:120::/48
Signature Algorithm: sha256WithRSAEncryption
9f:77:a3:e2:6c:2d:4b:98:b4:ee:64:7d:70:05:09:c3:71:51:
38:33:59:53:2d:6d:dd:46:fa:ad:1f:73:3f:96:c0:d8:3c:94:
4a:c7:8a:08:63:89:0e:2b:72:02:e2:c1:5e:d8:0a:69:37:57:
2d:b4:0f:b3:fa:02:38:6c:3b:7d:6c:1d:38:b2:83:f8:93:d7:
ca:a1:b8:55:fe:1e:2a:fe:70:c6:ae:7b:d2:41:15:41:73:bd:
22:d3:73:d3:a0:34:be:8b:1c:cd:d1:82:92:f9:e0:8a:d8:b0:
83:91:4c:a6:66:f3:01:a0:1b:c4:27:67:04:67:a5:6b:30:3d:
ed:4a:30:3d:fc:f4:2c:10:ab:0a:19:53:7d:9b:cb:ac:b2:07:
08:16:5c:46:bf:ba:3a:2f:a7:3d:fa:38:1d:7c:53:8c:1c:22:
46:e9:0f:c8:3c:88:7a:4e:27:6d:02:26:b5:67:e8:7f:bd:14:
d4:a8:c8:3f:66:cc:00:76:8d:b2:9f:89:4c:ca:43:8d:db:9c:
28:e3:9b:88:04:29:8d:c6:a9:ce:f7:ef:72:86:a3:f3:65:cc:
66:6d:e2:1d:1b:a9:73:e8:37:0f:b8:39:9a:f4:d5:bc:e9:af:
b0:90:d2:80:6b:54:82:ae:95:7a:3c:56:85:52:5f:8d:c9:77:
5b:e6:69:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 1 02:00:27 2024 by rpki-client on console-ams.rpki-client.org