Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F363ADF7/B3123F903BBA11EBA94E9B1FF8AEA228/735F94E63BBB11EB85266E20F8AEA228.roa
File: 735F94E63BBB11EB85266E20F8AEA228.roa (raw, json)
Hash identifier: EXvbr4pKHL8a4zEtjt14/hwpskVGziK4zmdMNG0acYg=
Subject key identifier: 0F:80:C6:EF:35:E0:0B:9E:30:66:99:C9:B9:49:3A:53:C2:5A:EF:B8
Certificate issuer: /CN=F363ADF7AF/serialNumber=E73D301F910D56EBAB7A11103BE8BE275388B72B
Certificate serial: 02
Authority key identifier: E7:3D:30:1F:91:0D:56:EB:AB:7A:11:10:3B:E8:BE:27:53:88:B7:2B
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/5z0wH5ENVuurehEQO-i-J1OItys.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F363ADF7/B3123F903BBA11EBA94E9B1FF8AEA228/735F94E63BBB11EB85266E20F8AEA228.roa
Signing time: Fri 11 Dec 2020 14:16:25 +0000
ROA not before: Fri 11 Dec 2020 14:16:21 +0000
ROA not after: Wed 31 Dec 2025 14:16:21 +0000
asID: 37619
IP address blocks: 2c0f:fe60::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F363ADF7/B3123F903BBA11EBA94E9B1FF8AEA228/5z0wH5ENVuurehEQO-i-J1OItys.crl
rsync://rpki.afrinic.net/repository/member_repository/F363ADF7/B3123F903BBA11EBA94E9B1FF8AEA228/5z0wH5ENVuurehEQO-i-J1OItys.mft
rsync://rpki.afrinic.net/repository/afrinic/5z0wH5ENVuurehEQO-i-J1OItys.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2 (0x2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F363ADF7AF/serialNumber=E73D301F910D56EBAB7A11103BE8BE275388B72B
Validity
Not Before: Dec 11 14:16:21 2020 GMT
Not After : Dec 31 14:16:21 2025 GMT
Subject: CN=5fd37f39-e1d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:67:e4:29:28:4a:ce:7b:d6:41:f3:fc:17:0d:
55:2a:68:85:2b:89:7c:7b:01:14:36:7f:e0:e6:11:
fd:87:21:5d:36:74:27:ff:86:1b:0c:af:06:8c:2f:
e7:e4:87:7c:0c:08:b2:7d:c9:65:85:8c:d2:4e:60:
d4:85:ae:c7:6b:6a:72:10:39:16:76:e3:e9:a8:e1:
b7:c7:9f:11:0a:70:69:5d:2b:1f:5f:19:40:97:00:
29:e1:64:65:8c:a3:f8:09:db:28:31:f7:94:9e:10:
ca:bc:c7:b3:ad:c9:17:4a:38:4f:62:e8:ab:04:e4:
7e:7c:5c:40:db:de:16:4c:b6:73:fc:33:33:4c:7c:
2c:54:cd:18:ab:26:c2:cd:ea:e3:6e:06:9e:13:8c:
0c:37:63:72:8d:c1:0c:01:24:81:70:09:5f:82:a0:
92:fb:1f:7b:3c:78:07:15:f0:b4:20:89:c2:b7:33:
64:f8:f0:37:6c:22:ce:dc:40:32:ce:9d:dd:9a:0c:
ac:b9:b9:3f:46:9e:29:c5:fe:4c:a2:1b:12:d0:74:
3c:23:74:22:14:76:67:9c:99:35:8b:94:fb:aa:e9:
fa:18:75:25:77:66:f4:4e:e6:e9:c0:24:16:72:22:
07:51:bf:1c:9f:6d:bf:1e:ee:c9:51:79:7f:59:76:
d9:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:80:C6:EF:35:E0:0B:9E:30:66:99:C9:B9:49:3A:53:C2:5A:EF:B8
X509v3 Authority Key Identifier:
keyid:E7:3D:30:1F:91:0D:56:EB:AB:7A:11:10:3B:E8:BE:27:53:88:B7:2B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F363ADF7/B3123F903BBA11EBA94E9B1FF8AEA228/5z0wH5ENVuurehEQO-i-J1OItys.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/5z0wH5ENVuurehEQO-i-J1OItys.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F363ADF7/B3123F903BBA11EBA94E9B1FF8AEA228/735F94E63BBB11EB85266E20F8AEA228.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2c0f:fe60::/32
Signature Algorithm: sha256WithRSAEncryption
5b:a6:4d:65:e4:27:e2:1c:15:1e:b2:49:72:fd:8b:5a:d6:d1:
6b:ca:a3:e2:f6:fd:45:98:1b:a4:43:12:f5:16:9a:c6:b7:cd:
64:fa:73:f4:8c:c3:f0:b5:ce:34:16:57:02:3d:06:16:34:d1:
15:ba:eb:ff:f4:54:bb:1c:18:b2:e5:df:ee:1e:69:0a:7a:7b:
13:4e:6a:75:fe:6f:74:b8:04:ea:97:17:ef:c0:c9:8f:f7:b2:
1a:b2:b4:01:87:eb:e5:9c:aa:06:7c:d4:e4:9f:bd:77:db:63:
45:89:b8:24:0f:02:fc:a5:c5:9f:11:d4:a9:60:6b:e5:64:72:
02:be:46:43:cb:9c:f7:b8:4f:c8:ad:11:59:ba:e0:6d:8d:d8:
f9:0a:8f:80:cd:51:5b:37:79:b4:39:90:88:6d:d9:31:1e:65:
45:93:18:a1:0f:d4:b5:73:e8:4b:e5:9a:2e:53:93:e2:5c:de:
17:d8:ad:52:6b:e2:81:f6:73:8f:54:45:fa:e3:d7:35:0b:7a:
9f:3e:23:e6:ee:c5:39:6f:cc:37:68:49:58:6d:b0:ae:3e:ee:
88:2c:4d:c7:de:a2:98:9a:34:2b:c0:6c:5e:80:6e:10:77:da:
7a:75:37:2e:8f:c8:82:e9:0b:f9:db:70:49:a4:93:a9:f5:e8:
61:0f:30:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:03:33 2024 by rpki-client on console-ams.rpki-client.org