Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36406B8/16691BB26FE511ED854B599FF1222468/BA1164B26FE611ED9E57C5A3F1222468.roa
File: BA1164B26FE611ED9E57C5A3F1222468.roa (raw, json)
Hash identifier: cj0paKj6uAYyRz3Vt8WdaCe+4/4R7mr0wnlwDucUaow=
Subject key identifier: 28:04:39:3C:E1:7B:62:B6:60:0C:C8:82:41:BA:64:1B:13:6E:25:47
Certificate issuer: /CN=F36406B8AF/serialNumber=8073823624AEC1F6AC1AB069D978E65D9F72056B
Certificate serial: 06
Authority key identifier: 80:73:82:36:24:AE:C1:F6:AC:1A:B0:69:D9:78:E6:5D:9F:72:05:6B
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/gHOCNiSuwfasGrBp2XjmXZ9yBWs.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36406B8/16691BB26FE511ED854B599FF1222468/BA1164B26FE611ED9E57C5A3F1222468.roa
Signing time: Tue 29 Nov 2022 13:07:07 +0000
ROA not before: Tue 29 Nov 2022 13:07:04 +0000
ROA not after: Fri 31 Dec 2032 13:07:04 +0000
asID: 37204
IP address blocks: 2c0f:f758::/32 maxlen: 64
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36406B8/16691BB26FE511ED854B599FF1222468/gHOCNiSuwfasGrBp2XjmXZ9yBWs.crl
rsync://rpki.afrinic.net/repository/member_repository/F36406B8/16691BB26FE511ED854B599FF1222468/gHOCNiSuwfasGrBp2XjmXZ9yBWs.mft
rsync://rpki.afrinic.net/repository/afrinic/gHOCNiSuwfasGrBp2XjmXZ9yBWs.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 21 May 2024 00:04:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6 (0x6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36406B8AF/serialNumber=8073823624AEC1F6AC1AB069D978E65D9F72056B
Validity
Not Before: Nov 29 13:07:04 2022 GMT
Not After : Dec 31 13:07:04 2032 GMT
Subject: CN=638603fb-1ad7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:ea:fe:d9:29:33:58:84:d8:d0:8f:57:56:ff:
06:d9:e1:31:d9:39:53:e0:8c:ee:7f:89:f0:07:ea:
72:3a:6a:b7:be:c5:65:28:89:23:16:76:96:e0:a2:
86:50:4f:25:35:d9:d8:d2:0b:4a:47:6e:74:7e:d8:
57:8a:9b:78:7c:f6:0b:de:69:f4:13:ee:6d:f0:4c:
bb:b9:85:3f:fd:89:c8:ce:f3:87:f3:07:af:a6:64:
ad:10:8b:d0:81:38:a9:98:59:98:0f:85:cb:7d:9f:
76:1b:05:b5:70:ed:4e:3a:a5:41:ff:bb:b2:09:a2:
4b:6f:19:3b:79:1e:e9:d7:35:2d:a9:da:1a:b6:85:
55:b9:bf:9e:ce:aa:51:ab:84:21:22:8a:7a:b9:b6:
40:e8:69:1f:74:32:c5:5e:ed:30:0e:c2:04:f3:35:
18:20:d3:1a:3b:b6:55:3d:ac:6e:43:3f:08:b0:f9:
24:a6:bf:d3:c4:69:4e:f3:0c:15:c8:c6:ab:21:b2:
89:10:85:33:17:d1:74:0a:76:07:31:a0:ee:c1:c3:
c0:7c:38:47:99:06:fd:8b:4b:c3:b4:bf:5a:0c:83:
f8:64:61:9d:a1:22:ec:89:68:4b:4c:9d:1e:cd:c4:
68:c0:10:a4:c9:e8:21:b8:ba:62:8a:6a:34:f3:97:
09:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:04:39:3C:E1:7B:62:B6:60:0C:C8:82:41:BA:64:1B:13:6E:25:47
X509v3 Authority Key Identifier:
keyid:80:73:82:36:24:AE:C1:F6:AC:1A:B0:69:D9:78:E6:5D:9F:72:05:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36406B8/16691BB26FE511ED854B599FF1222468/gHOCNiSuwfasGrBp2XjmXZ9yBWs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/gHOCNiSuwfasGrBp2XjmXZ9yBWs.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36406B8/16691BB26FE511ED854B599FF1222468/BA1164B26FE611ED9E57C5A3F1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2c0f:f758::/32
Signature Algorithm: sha256WithRSAEncryption
85:10:d6:b0:85:6b:34:bb:a9:de:5c:83:3d:26:2f:29:e9:66:
d6:44:f1:2b:e0:42:97:2c:40:d3:88:bd:bb:21:58:13:95:89:
05:f3:e8:05:d0:08:66:cc:53:70:00:8e:65:65:57:c0:81:13:
ab:e9:9b:c2:11:f3:c0:ed:c2:2a:cc:fd:1d:a8:51:d4:5d:5c:
cd:60:81:e0:3e:31:4c:4a:61:91:02:dd:8c:37:e1:82:ef:65:
8d:2f:f7:b0:3a:be:ba:25:11:15:c8:21:ea:45:d6:da:cb:d5:
2d:b5:38:07:14:bd:8f:ff:39:97:96:d8:8c:73:93:68:fa:5e:
a1:65:6a:cb:2a:af:fe:a1:45:11:99:68:0f:3d:e3:8b:a8:b9:
b0:81:a1:7e:4c:75:c3:11:8c:6c:99:fd:22:48:38:4d:a8:7d:
41:ca:ed:b2:bc:aa:1a:f2:fa:ea:78:25:c5:fe:dd:8f:39:58:
95:b4:7c:96:4e:6e:89:53:c7:3a:99:6c:bc:d0:c1:ec:0d:06:
5f:d7:10:78:e4:c4:81:a7:19:96:98:de:e1:90:a8:f4:9a:cd:
35:b1:c4:9a:65:d8:ca:c2:73:06:b4:8b:b7:e3:f0:e2:4e:0c:
fa:3a:e1:2b:8c:1f:3e:27:e4:b6:bf:92:41:34:95:79:12:6d:
2c:50:da:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 19 02:58:50 2024 by rpki-client on console-ams.rpki-client.org