Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3642818/9224B30A49FD11ED86901991F1222468/286E0ED249FF11EDBA4A1095F1222468.roa
File: 286E0ED249FF11EDBA4A1095F1222468.roa (raw, json)
Hash identifier: e8yRru/YzQ8KdKtbMVpS+nKrVYipBI+fhgmIlkUMpWo=
Subject key identifier: 07:8B:37:F2:4A:FE:3A:22:20:94:32:1F:B0:53:D0:65:67:F6:75:DF
Certificate issuer: /CN=F3642818AF/serialNumber=8EAD4B914B6F7C928E12FE38D1C440BC5309C133
Certificate serial: 04
Authority key identifier: 8E:AD:4B:91:4B:6F:7C:92:8E:12:FE:38:D1:C4:40:BC:53:09:C1:33
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/jq1LkUtvfJKOEv440cRAvFMJwTM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3642818/9224B30A49FD11ED86901991F1222468/286E0ED249FF11EDBA4A1095F1222468.roa
Signing time: Wed 12 Oct 2022 07:26:16 +0000
ROA not before: Wed 12 Oct 2022 07:26:13 +0000
ROA not after: Mon 13 Oct 2025 07:26:13 +0000
asID: 36890
IP address blocks: 2c0f:f860::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3642818/9224B30A49FD11ED86901991F1222468/jq1LkUtvfJKOEv440cRAvFMJwTM.crl
rsync://rpki.afrinic.net/repository/member_repository/F3642818/9224B30A49FD11ED86901991F1222468/jq1LkUtvfJKOEv440cRAvFMJwTM.mft
rsync://rpki.afrinic.net/repository/afrinic/jq1LkUtvfJKOEv440cRAvFMJwTM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4 (0x4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3642818AF/serialNumber=8EAD4B914B6F7C928E12FE38D1C440BC5309C133
Validity
Not Before: Oct 12 07:26:13 2022 GMT
Not After : Oct 13 07:26:13 2025 GMT
Subject: CN=63466c18-cf40
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:ee:0a:d8:c1:86:32:9f:d9:e3:dc:6f:14:90:
ad:a2:d0:78:c1:38:06:c3:70:6b:36:14:86:c5:34:
fd:55:bf:9c:42:5d:b7:cc:7e:01:5a:46:55:e3:bd:
8b:25:4e:98:4e:e8:84:53:fe:f9:db:10:bc:21:2a:
5c:cb:a1:b6:d2:f7:a9:fb:3b:ec:31:1a:4c:9a:92:
1b:91:13:99:e4:71:43:20:0b:a0:29:93:ac:b1:d0:
e2:7b:d0:76:ff:75:f6:e5:18:9f:90:83:e9:46:5e:
f6:c3:bd:05:43:1c:a7:07:eb:96:2e:c0:44:e2:f4:
66:9b:ad:be:f4:e5:93:79:75:aa:0b:01:b7:ac:8e:
4b:d8:e6:dc:4e:bc:fc:62:14:78:b8:a4:cd:b9:12:
e5:bd:41:6f:dd:1d:00:34:a8:9e:af:d0:62:ca:5d:
77:4b:cb:48:34:a3:0f:64:43:17:6d:f8:c9:6e:8f:
52:0f:c6:0c:28:6c:38:df:6a:25:67:f5:55:44:00:
8c:76:6f:dc:06:b2:58:32:19:28:5f:fc:e0:55:83:
88:7c:1f:f5:84:1f:d2:7e:ce:75:7b:63:f2:2e:7f:
92:f0:d0:55:c0:93:cd:9b:9a:75:15:8b:b9:e1:5a:
87:92:5b:f4:8e:b3:80:d2:1d:68:e2:74:52:a5:ed:
c0:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:8B:37:F2:4A:FE:3A:22:20:94:32:1F:B0:53:D0:65:67:F6:75:DF
X509v3 Authority Key Identifier:
keyid:8E:AD:4B:91:4B:6F:7C:92:8E:12:FE:38:D1:C4:40:BC:53:09:C1:33
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3642818/9224B30A49FD11ED86901991F1222468/jq1LkUtvfJKOEv440cRAvFMJwTM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/jq1LkUtvfJKOEv440cRAvFMJwTM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3642818/9224B30A49FD11ED86901991F1222468/286E0ED249FF11EDBA4A1095F1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2c0f:f860::/32
Signature Algorithm: sha256WithRSAEncryption
10:f1:cd:03:c2:ac:fd:25:0f:1d:1a:e1:d4:67:ac:e1:e0:4f:
0c:4b:1a:7b:4c:a3:67:5c:40:ae:a2:c3:d0:a2:49:2e:dd:92:
5f:ac:f8:58:37:c3:b0:d2:68:5a:33:cd:d6:f4:f4:44:dc:fd:
1d:dc:ce:45:61:ae:4b:6d:24:a9:2b:06:d1:38:8f:4e:3d:c3:
0b:2b:fc:dc:c7:5e:d8:11:03:48:2e:2b:d7:4b:d8:ba:ec:db:
32:27:75:b4:56:c9:85:38:5f:83:93:0b:da:94:17:54:29:ab:
2f:14:ce:41:58:25:1a:97:c0:4b:bf:35:3c:67:03:ca:59:88:
d6:c8:36:00:83:9c:a5:44:c0:79:a2:80:bf:2b:08:77:c7:bb:
37:31:03:71:67:31:9c:9b:61:58:99:8a:32:ab:5b:7b:1c:25:
b8:e9:42:c2:b6:ad:ad:b8:66:0e:2a:99:5d:e9:85:8f:63:50:
03:13:c5:0b:69:45:94:30:67:de:57:b2:e4:e3:d7:bd:2d:37:
1f:be:5a:1c:79:0c:a9:2b:a7:91:0c:f0:97:d1:fc:6e:23:39:
b7:52:6b:29:90:2f:cb:4c:68:1c:9b:d0:fa:04:59:f3:29:25:
84:c4:dd:93:4a:f6:a1:4e:6c:29:b8:fe:82:84:85:80:45:7a:
72:3d:a4:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:03:33 2024 by rpki-client on console-ams.rpki-client.org