Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3634D22/1D5F7C26047311E580C18A06F8AEA228/70995F103F1C11EDA979E6D3F1222468.roa
File: 70995F103F1C11EDA979E6D3F1222468.roa (raw, json)
Hash identifier: fvZzd6V8viI4ax/8PEugm7fwwO/auDkznM5WO/SuDvU=
Subject key identifier: B3:2B:FB:8E:CC:18:AE:60:B9:F6:7E:29:3E:81:03:5F:F3:EB:E9:3C
Certificate issuer: /CN=F3634D22AF/serialNumber=8D01D808E89774543DE22D0DA844378ECEA8BB9B
Certificate serial: 0B89
Authority key identifier: 8D:01:D8:08:E8:97:74:54:3D:E2:2D:0D:A8:44:37:8E:CE:A8:BB:9B
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/jQHYCOiXdFQ94i0NqEQ3js6ou5s.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3634D22/1D5F7C26047311E580C18A06F8AEA228/70995F103F1C11EDA979E6D3F1222468.roa
Signing time: Wed 28 Sep 2022 10:58:10 +0000
ROA not before: Wed 28 Sep 2022 10:58:06 +0000
ROA not after: Tue 28 Sep 2027 10:58:06 +0000
asID: 33764
IP address blocks: 2001:42d0::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3634D22/1D5F7C26047311E580C18A06F8AEA228/jQHYCOiXdFQ94i0NqEQ3js6ou5s.crl
rsync://rpki.afrinic.net/repository/member_repository/F3634D22/1D5F7C26047311E580C18A06F8AEA228/jQHYCOiXdFQ94i0NqEQ3js6ou5s.mft
rsync://rpki.afrinic.net/repository/afrinic/jQHYCOiXdFQ94i0NqEQ3js6ou5s.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 18 Jun 2024 00:04:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2953 (0xb89)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3634D22AF/serialNumber=8D01D808E89774543DE22D0DA844378ECEA8BB9B
Validity
Not Before: Sep 28 10:58:06 2022 GMT
Not After : Sep 28 10:58:06 2027 GMT
Subject: CN=633428c2-9fc6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:d9:90:90:cf:0d:ff:34:87:bf:46:6f:6b:a1:
d4:9b:14:c8:c9:99:32:43:db:7b:ea:ab:c3:7d:52:
e4:47:c0:5a:67:7c:f6:4c:91:1b:02:d0:a7:5f:41:
aa:34:8d:81:91:f0:ca:a8:c1:50:e8:c6:a4:37:1d:
dc:2b:7c:12:19:32:4b:ed:4e:63:82:c1:ca:d0:cd:
b8:6b:61:8a:04:74:15:4e:07:4e:bb:4b:03:5b:e3:
29:a6:c5:10:68:b3:52:78:02:54:43:fb:c0:6c:37:
1f:5d:cc:59:72:4b:89:ea:48:92:71:29:2e:a2:ae:
19:3f:6c:c8:b3:59:64:42:58:18:bf:b5:2a:ca:5a:
4f:0e:76:a9:29:a2:c4:17:ad:1a:74:8c:6d:37:f1:
4b:c2:90:80:b6:af:d9:43:d3:09:49:c3:1b:22:ca:
e5:59:c5:ef:ef:de:6c:b2:c3:cc:eb:08:da:69:ff:
7f:85:60:66:58:93:6a:f8:59:48:e6:f0:85:ca:38:
4b:3d:e5:34:16:e5:ae:51:e9:26:df:a7:b2:e9:2f:
b8:b4:99:77:f7:ac:6f:42:6c:ba:d7:f3:a5:26:46:
25:c9:bd:de:3b:9c:38:aa:4f:dc:48:1d:07:f7:b2:
b9:d4:f0:0a:9a:1f:2d:99:2b:c8:28:91:b4:49:ab:
25:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:2B:FB:8E:CC:18:AE:60:B9:F6:7E:29:3E:81:03:5F:F3:EB:E9:3C
X509v3 Authority Key Identifier:
keyid:8D:01:D8:08:E8:97:74:54:3D:E2:2D:0D:A8:44:37:8E:CE:A8:BB:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3634D22/1D5F7C26047311E580C18A06F8AEA228/jQHYCOiXdFQ94i0NqEQ3js6ou5s.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/jQHYCOiXdFQ94i0NqEQ3js6ou5s.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3634D22/1D5F7C26047311E580C18A06F8AEA228/70995F103F1C11EDA979E6D3F1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:42d0::/48
Signature Algorithm: sha256WithRSAEncryption
2a:39:99:53:9e:57:9b:f8:12:a5:64:f2:6c:81:4a:99:a2:af:
7e:e6:10:12:2d:6f:d3:5b:10:25:15:a8:b1:d6:92:78:49:2f:
16:4d:23:0a:b6:97:37:96:85:f6:80:35:19:9e:44:8f:1c:df:
94:75:74:c0:50:65:88:22:72:bd:64:d9:aa:a5:3c:c4:44:19:
20:f9:7d:f7:dd:07:f1:fa:5b:65:ec:ff:66:ba:3b:8e:52:d1:
12:a4:0c:ac:75:c3:0c:e1:14:21:16:d6:2f:5b:1c:c8:e8:fe:
ad:84:e4:5d:cf:9e:47:91:6d:93:ee:3a:9a:87:39:56:a0:5b:
10:91:1e:36:6d:07:0c:94:fa:b8:d9:3d:f0:9a:24:d6:e4:d7:
cf:16:05:be:d6:40:48:46:95:e2:14:a0:59:8c:11:3c:ce:14:
5d:aa:d6:38:1d:36:c9:f9:3c:f3:c6:ce:16:7d:8a:50:a0:3d:
3f:99:33:98:e9:6e:9c:cb:70:16:12:8a:da:ff:98:44:4e:41:
3e:2f:43:a6:06:bb:c6:cc:e8:39:32:88:83:0d:4e:c0:81:4d:
50:79:01:8c:e5:cb:f4:95:2d:88:f6:a9:75:01:17:d6:9d:a2:
51:2e:47:c2:9e:18:b8:ca:3f:35:f8:60:61:1a:6d:90:f3:a7:
ef:d1:2a:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 16 01:45:18 2024 by rpki-client on console-fra.rpki-client.org