Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3651E73/3CF0E09A78C411E6848D3A31F8AEA228/F9EF37C6A9A011EAB3F8E035F8AEA228.roa
File: F9EF37C6A9A011EAB3F8E035F8AEA228.roa (raw, json)
Hash identifier: hv8nqq5P9PSxsiqqebiaxojUmKUtWuVUeKogAVthKqk=
Subject key identifier: FB:0B:82:CD:36:0B:E0:B1:4E:AE:DB:40:E8:8F:E8:08:89:D4:0F:F7
Certificate issuer: /CN=F3651E73AF/serialNumber=8784EE4A02DAF8972656F12452BF27A4911C3629
Certificate serial: 057C
Authority key identifier: 87:84:EE:4A:02:DA:F8:97:26:56:F1:24:52:BF:27:A4:91:1C:36:29
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/h4TuSgLa-JcmVvEkUr8npJEcNik.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3651E73/3CF0E09A78C411E6848D3A31F8AEA228/F9EF37C6A9A011EAB3F8E035F8AEA228.roa
Signing time: Mon 08 Jun 2020 15:59:04 +0000
ROA not before: Mon 08 Jun 2020 15:58:59 +0000
ROA not after: Sun 01 Jun 2025 15:58:59 +0000
asID: 327983
IP address blocks: 2c0f:f338::/32 maxlen: 48
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3651E73/3CF0E09A78C411E6848D3A31F8AEA228/h4TuSgLa-JcmVvEkUr8npJEcNik.crl
rsync://rpki.afrinic.net/repository/member_repository/F3651E73/3CF0E09A78C411E6848D3A31F8AEA228/h4TuSgLa-JcmVvEkUr8npJEcNik.mft
rsync://rpki.afrinic.net/repository/afrinic/h4TuSgLa-JcmVvEkUr8npJEcNik.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1404 (0x57c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3651E73AF/serialNumber=8784EE4A02DAF8972656F12452BF27A4911C3629
Validity
Not Before: Jun 8 15:58:59 2020 GMT
Not After : Jun 1 15:58:59 2025 GMT
Subject: CN=5ede6048-9dcb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:79:90:2b:89:84:c1:90:06:f7:cf:aa:f4:02:
98:30:bb:eb:f1:56:dc:78:e4:6b:56:40:37:04:ba:
00:ec:2c:01:c7:9f:68:76:88:4c:b0:a5:4c:ef:cc:
e2:e3:19:1a:52:c9:76:7c:62:9a:0b:93:d9:51:c2:
20:c0:ce:e5:57:0f:63:b0:af:8a:54:a5:d8:a3:aa:
70:b2:02:e8:52:8b:13:5e:61:95:78:ab:6a:a7:dc:
09:d5:fe:be:b1:dd:02:ca:76:39:8b:bc:71:ce:e9:
8f:32:dd:f2:55:1d:df:d3:37:98:ed:28:a3:b7:78:
69:38:dd:68:13:a7:5f:f1:38:ae:19:fa:0c:aa:19:
0c:e3:e9:b3:05:50:8d:78:13:2b:d3:b1:e7:ba:95:
83:0f:bb:c1:e1:8d:80:db:e1:8a:1b:78:ff:51:65:
43:4d:04:8c:79:19:fd:4c:04:3e:37:11:c5:c2:9d:
71:eb:11:0d:c7:10:f9:25:5d:52:b7:f0:d6:97:7b:
bb:93:b4:25:4d:81:fa:0a:56:69:e4:a4:5f:50:f1:
dc:d3:1e:f8:41:6f:cb:a3:10:4f:ef:7c:ab:2a:27:
5c:25:9e:3d:c1:4f:1f:dc:e9:c0:61:29:34:b0:25:
4e:c4:60:17:27:cf:c7:85:02:ce:c6:61:6b:0e:b0:
f6:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:0B:82:CD:36:0B:E0:B1:4E:AE:DB:40:E8:8F:E8:08:89:D4:0F:F7
X509v3 Authority Key Identifier:
keyid:87:84:EE:4A:02:DA:F8:97:26:56:F1:24:52:BF:27:A4:91:1C:36:29
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3651E73/3CF0E09A78C411E6848D3A31F8AEA228/h4TuSgLa-JcmVvEkUr8npJEcNik.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/h4TuSgLa-JcmVvEkUr8npJEcNik.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3651E73/3CF0E09A78C411E6848D3A31F8AEA228/F9EF37C6A9A011EAB3F8E035F8AEA228.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2c0f:f338::/32
Signature Algorithm: sha256WithRSAEncryption
3d:a1:6b:8a:26:66:98:1a:d4:b9:0e:6c:5b:c6:77:5c:c8:84:
bd:09:01:fb:e9:33:41:d9:28:6a:26:f4:62:fe:c3:ae:c0:f9:
20:d4:d2:f5:54:a7:c9:1e:24:94:74:b0:01:22:cd:1d:f9:e5:
90:04:c7:0e:6a:6d:a1:ad:4d:6b:99:65:f2:87:42:9c:44:87:
29:b2:bf:a1:99:b5:3f:46:54:d8:31:6d:13:0c:13:89:35:2f:
a4:ef:2e:27:74:f6:e5:5e:61:5a:4d:b9:ec:a3:09:4c:49:b7:
61:e6:ac:36:b1:19:37:5b:fe:90:42:7d:16:b6:b3:16:af:0e:
84:16:6e:08:da:93:d4:4e:d9:16:4c:3a:b2:c7:b7:d4:41:9e:
d8:5f:d4:e3:cd:a0:ef:ea:93:11:06:3a:6a:2d:c7:da:0b:1e:
a9:2a:75:11:5d:e2:56:68:11:e8:35:d8:6f:28:19:7e:10:cb:
49:e2:55:be:8d:13:e3:7c:d7:36:ca:22:95:7b:cc:78:16:69:
1c:06:e7:3b:78:b2:40:29:28:76:7a:af:c2:af:5c:c7:02:15:
37:0f:87:9e:57:da:6c:f1:48:9e:a7:94:b3:d5:b7:85:e6:c3:
e6:65:09:63:32:55:78:e6:d6:92:7d:e7:94:8a:0b:c7:90:b9:
c9:91:17:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:08:53 2024 by rpki-client on console-fra.rpki-client.org