Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F364E67C/71DA5480291611E9A079C765F8AEA228/2DBFF77A291911E99585E167F8AEA228.roa
File: 2DBFF77A291911E99585E167F8AEA228.roa (raw, json)
Hash identifier: 95TWNnQxaCwaMS0/NMpFWBMaUEPrE1AodSEzF5Hy8Yk=
Subject key identifier: E2:B1:02:1D:B3:27:11:82:E1:BF:61:56:B9:D8:F1:BD:64:EE:79:CF
Certificate issuer: /CN=F364E67CAF/serialNumber=37089F7C72F0E7C5782D7F2B3BD68F5D8CEC5396
Certificate serial: 04
Authority key identifier: 37:08:9F:7C:72:F0:E7:C5:78:2D:7F:2B:3B:D6:8F:5D:8C:EC:53:96
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/NwiffHLw58V4LX8rO9aPXYzsU5Y.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F364E67C/71DA5480291611E9A079C765F8AEA228/2DBFF77A291911E99585E167F8AEA228.roa
Signing time: Tue 05 Feb 2019 07:39:33 +0000
ROA not before: Tue 05 Feb 2019 07:39:29 +0000
ROA not after: Mon 05 Feb 2029 07:39:29 +0000
asID: 37002
IP address blocks: 2c0f:f918::/32 maxlen: 48
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F364E67C/71DA5480291611E9A079C765F8AEA228/NwiffHLw58V4LX8rO9aPXYzsU5Y.crl
rsync://rpki.afrinic.net/repository/member_repository/F364E67C/71DA5480291611E9A079C765F8AEA228/NwiffHLw58V4LX8rO9aPXYzsU5Y.mft
rsync://rpki.afrinic.net/repository/afrinic/NwiffHLw58V4LX8rO9aPXYzsU5Y.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4 (0x4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F364E67CAF/serialNumber=37089F7C72F0E7C5782D7F2B3BD68F5D8CEC5396
Validity
Not Before: Feb 5 07:39:29 2019 GMT
Not After : Feb 5 07:39:29 2029 GMT
Subject: CN=5c593db5-f8ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:38:b9:90:3e:e8:52:24:ba:91:bd:61:7a:e3:
83:84:68:dc:83:52:fe:e0:05:e8:00:74:5d:87:0f:
5b:f7:e0:d2:7f:3f:cf:10:58:53:47:ba:56:a6:dc:
5b:3f:3a:f1:7b:12:cb:1b:90:c5:22:7a:7e:7c:de:
71:93:ce:66:47:3f:fb:cb:7e:63:d6:2d:9f:98:8b:
fd:7b:6d:40:9b:1f:5c:72:bf:b1:ee:e9:bf:44:04:
de:8a:de:54:5c:a2:86:d7:a2:44:57:b8:94:30:8b:
a0:7a:eb:01:d4:e1:bc:6b:ba:71:f8:03:31:57:29:
88:80:91:f3:e8:a3:05:ad:9d:0d:7d:cd:8f:f3:23:
5e:9f:26:8f:c4:d2:fe:05:96:fc:7f:ec:9b:1e:bf:
b9:e3:59:9e:fb:23:bf:fb:21:b6:5d:5b:a5:47:28:
c1:21:dd:81:4f:64:3c:6e:24:f8:3c:34:45:12:75:
c7:31:d8:01:30:03:2b:7c:a9:4d:59:2a:fc:9c:8c:
4e:24:7c:1c:d2:bd:d8:b2:08:1f:f0:dd:54:e2:02:
21:63:c8:da:1e:f0:28:4d:b9:09:c8:ae:80:07:3b:
72:76:c0:8f:6e:c2:1c:19:10:45:fe:2a:6e:8e:58:
77:fe:8f:df:28:e6:98:6a:fe:0e:15:67:d6:51:c0:
9e:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:B1:02:1D:B3:27:11:82:E1:BF:61:56:B9:D8:F1:BD:64:EE:79:CF
X509v3 Authority Key Identifier:
keyid:37:08:9F:7C:72:F0:E7:C5:78:2D:7F:2B:3B:D6:8F:5D:8C:EC:53:96
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F364E67C/71DA5480291611E9A079C765F8AEA228/NwiffHLw58V4LX8rO9aPXYzsU5Y.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/NwiffHLw58V4LX8rO9aPXYzsU5Y.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F364E67C/71DA5480291611E9A079C765F8AEA228/2DBFF77A291911E99585E167F8AEA228.roa
sbgp-ipAddrBlock: critical
IPv6:
2c0f:f918::/32
Signature Algorithm: sha256WithRSAEncryption
88:de:e8:33:c0:e1:e1:b2:40:fa:fd:37:5f:20:de:d2:a7:5d:
06:b4:9b:05:d8:75:6d:23:48:5b:b1:26:8f:d2:c9:cb:b2:cb:
c7:ae:c8:74:4e:a4:ef:aa:bd:ae:b5:39:8f:ae:db:84:21:7c:
40:51:a1:57:06:42:62:0b:f5:e3:98:65:6b:b2:39:a6:c2:ce:
40:e4:44:3d:af:c0:19:88:f9:c8:bc:8e:ca:bf:79:18:62:dc:
bb:ca:aa:2a:53:a8:54:ba:2c:e5:43:75:b6:5e:e7:c8:0c:28:
5a:af:c3:9f:44:93:60:7d:b9:7e:80:aa:1c:b1:49:f2:ea:9d:
20:da:b2:56:d8:a1:71:b5:23:52:f6:0c:ba:26:fe:ff:d3:2d:
a3:33:2c:fc:bf:d9:d8:63:b0:88:0e:c6:63:b5:b9:8e:b6:90:
44:bb:90:0e:ea:a6:c1:16:ea:55:d1:c6:8f:f8:d4:83:3e:37:
66:1c:f7:e1:db:71:4f:8b:a3:71:e4:e6:7e:b9:9d:45:55:5f:
ca:cf:0b:da:dd:3f:00:02:47:cb:98:81:06:21:bd:f4:57:80:
d0:2d:d4:d7:0d:08:6d:9e:07:73:ee:e1:8f:1c:63:6e:d4:1c:
ff:51:0b:2e:14:11:00:fa:05:c4:1f:2b:7b:18:a1:ce:43:7f:
64:ee:89:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:08:53 2024 by rpki-client on console-fra.rpki-client.org