Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3634D22/1D5F7C26047311E580C18A06F8AEA228/B3287F00435611EB90244384F8AEA228.roa
File: B3287F00435611EB90244384F8AEA228.roa (raw, json)
Hash identifier: SlsmD7iX8RbuxhgHGmwpNw7Dejp7k6rpgCZBpXxG1IQ=
Subject key identifier: FA:7A:C3:42:6A:57:21:BA:28:1A:56:BC:9C:CF:24:73:B8:BE:EE:F5
Certificate issuer: /CN=F3634D22AF/serialNumber=8D01D808E89774543DE22D0DA844378ECEA8BB9B
Certificate serial: 0CA6
Authority key identifier: 8D:01:D8:08:E8:97:74:54:3D:E2:2D:0D:A8:44:37:8E:CE:A8:BB:9B
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/jQHYCOiXdFQ94i0NqEQ3js6ou5s.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3634D22/1D5F7C26047311E580C18A06F8AEA228/B3287F00435611EB90244384F8AEA228.roa
Signing time: Tue 02 May 2023 06:50:32 +0000
ROA not before: Mon 21 Dec 2020 06:35:16 +0000
ROA not after: Sat 21 Dec 2030 06:35:16 +0000
asID: 37708
IP address blocks: 2001:43f8:92::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3634D22/1D5F7C26047311E580C18A06F8AEA228/jQHYCOiXdFQ94i0NqEQ3js6ou5s.crl
rsync://rpki.afrinic.net/repository/member_repository/F3634D22/1D5F7C26047311E580C18A06F8AEA228/jQHYCOiXdFQ94i0NqEQ3js6ou5s.mft
rsync://rpki.afrinic.net/repository/afrinic/jQHYCOiXdFQ94i0NqEQ3js6ou5s.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 03 Jun 2024 00:05:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3238 (0xca6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3634D22AF/serialNumber=8D01D808E89774543DE22D0DA844378ECEA8BB9B
Validity
Not Before: Dec 21 06:35:16 2020 GMT
Not After : Dec 21 06:35:16 2030 GMT
Subject: CN=6450b2b8-ec46
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:52:0d:e2:01:7f:1a:41:9b:52:d0:ce:9f:6e:
1b:75:2e:44:3e:66:f2:17:a0:eb:b8:d0:90:fa:51:
bb:c4:c4:f9:31:0c:9f:ac:b1:7d:df:b6:38:5e:6e:
22:ab:0d:2b:2f:0e:16:d9:05:32:47:6c:58:88:e3:
d7:2f:a2:8c:bf:83:c5:1f:2f:a7:8e:44:aa:b8:14:
3b:b6:3c:55:c6:61:e7:8f:07:48:7a:a3:27:96:ab:
33:25:4c:2b:30:ee:7a:ab:d7:48:eb:49:1f:45:0c:
cc:b9:51:58:68:89:98:92:fc:78:14:4b:2b:7e:82:
6c:24:7e:61:e0:88:9e:27:7a:20:eb:12:a5:7a:be:
85:f1:11:f6:2c:bf:37:79:f1:9e:98:3c:ce:4b:cc:
d3:64:e7:36:ca:5c:a1:43:24:bd:65:22:92:43:b3:
09:5f:c0:64:2b:b4:74:26:ee:90:85:85:29:46:dd:
51:f8:96:7d:18:42:80:b4:a8:15:12:0e:97:cd:7f:
fb:27:22:6b:06:a8:b8:e1:11:2c:c7:aa:ab:de:f9:
de:be:f8:75:67:84:ac:2b:a2:e7:9e:2a:34:85:95:
a2:c8:28:4f:88:e4:72:61:0e:d8:5d:d5:70:5b:6f:
36:92:ee:4e:11:65:c3:98:39:a1:ce:74:d1:74:be:
0f:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:7A:C3:42:6A:57:21:BA:28:1A:56:BC:9C:CF:24:73:B8:BE:EE:F5
X509v3 Authority Key Identifier:
keyid:8D:01:D8:08:E8:97:74:54:3D:E2:2D:0D:A8:44:37:8E:CE:A8:BB:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3634D22/1D5F7C26047311E580C18A06F8AEA228/jQHYCOiXdFQ94i0NqEQ3js6ou5s.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/jQHYCOiXdFQ94i0NqEQ3js6ou5s.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3634D22/1D5F7C26047311E580C18A06F8AEA228/B3287F00435611EB90244384F8AEA228.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:43f8:92::/48
Signature Algorithm: sha256WithRSAEncryption
c6:f9:90:e3:10:33:60:13:7d:df:c6:6b:e6:81:0c:2c:35:d1:
f4:e8:3e:c1:8b:81:6e:dc:fd:79:5f:73:bd:ac:16:13:43:7d:
75:7a:3b:cc:10:53:c3:06:18:85:8b:bb:4e:d6:98:15:44:09:
c3:83:3b:0b:e2:2c:87:fc:40:28:c1:4b:ca:30:b3:5a:e6:ff:
3b:f7:5c:51:02:da:47:54:3c:52:4f:6c:45:8a:77:e3:ed:32:
80:59:5c:98:ce:40:94:ea:cb:13:ba:b6:7b:87:a7:c6:c1:83:
40:ef:f3:3d:38:24:c7:b9:c2:c2:ce:f8:e7:95:56:93:24:fc:
72:24:90:99:aa:b1:5e:a9:bf:0c:01:38:e1:50:0c:75:e9:b5:
02:70:77:e1:0f:72:de:20:1a:db:00:71:6e:cf:9b:ce:8a:88:
79:fe:7d:b6:03:9e:cc:1e:4c:f1:60:3c:ba:b4:3a:af:57:68:
97:15:5d:44:8b:7f:ed:67:47:90:2b:ac:bf:09:9e:6d:a2:01:
45:7e:ee:78:98:12:b9:40:03:7f:99:51:a3:05:59:60:1b:7b:
16:83:12:0f:de:6e:64:44:cd:e2:95:c6:a5:39:19:4e:96:e1:
5a:c3:e2:ff:26:08:2a:dd:c9:a2:ef:63:5e:cc:59:86:63:5f:
2a:2a:d1:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 1 01:41:12 2024 by rpki-client on console-fra.rpki-client.org