Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F365C741/BE173EB406BD11E588824D08F8AEA228/DD86921023DF11E59A291F2EF8AEA228.roa
File: DD86921023DF11E59A291F2EF8AEA228.roa (raw, json)
Hash identifier: RoAjxCx6fWc/DsduBtMcW3qAUs5u+FRokq/oc2UIS+k=
Subject key identifier: 9B:1A:E1:7C:19:69:77:41:F3:9D:2B:A9:0B:90:00:0C:06:D7:85:97
Certificate issuer: /CN=F365C741AF/serialNumber=DFED1DB31869BDCCC967B540E22DB05642542F1D
Certificate serial: 39
Authority key identifier: DF:ED:1D:B3:18:69:BD:CC:C9:67:B5:40:E2:2D:B0:56:42:54:2F:1D
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/3-0dsxhpvczJZ7VA4i2wVkJULx0.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F365C741/BE173EB406BD11E588824D08F8AEA228/DD86921023DF11E59A291F2EF8AEA228.roa
Signing time: Mon 06 Jul 2015 13:05:54 +0000
ROA not before: Mon 06 Jul 2015 13:06:43 +0000
ROA not after: Wed 31 Dec 2025 13:06:43 +0000
asID: 37100
IP address blocks: 2c0f:feb1::/32 maxlen: 48
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F365C741/BE173EB406BD11E588824D08F8AEA228/3-0dsxhpvczJZ7VA4i2wVkJULx0.crl
rsync://rpki.afrinic.net/repository/member_repository/F365C741/BE173EB406BD11E588824D08F8AEA228/3-0dsxhpvczJZ7VA4i2wVkJULx0.mft
rsync://rpki.afrinic.net/repository/afrinic/3-0dsxhpvczJZ7VA4i2wVkJULx0.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 57 (0x39)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F365C741AF/serialNumber=DFED1DB31869BDCCC967B540E22DB05642542F1D
Validity
Not Before: Jul 6 13:06:43 2015 GMT
Not After : Dec 31 13:06:43 2025 GMT
Subject: CN=559a7d31-81db
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:59:d1:a9:46:21:dd:3a:b6:69:32:1d:76:d4:
9c:32:43:6a:c3:8a:8c:95:85:ee:bc:b1:22:8c:34:
28:31:47:a9:52:c1:9e:c3:48:4a:ca:b2:f3:31:97:
82:4c:80:c6:76:7d:af:57:54:50:50:68:a0:99:a2:
f1:32:2a:7b:c5:07:b1:7b:ea:f9:10:3f:2e:b5:8d:
c1:e1:5d:e2:9c:95:18:b8:8c:cf:b0:7a:0f:c0:1b:
6c:d2:dd:3a:b8:95:f1:0b:b1:29:77:c2:7f:2c:fb:
a0:90:4e:b9:7e:97:d0:bb:d0:c8:66:7c:23:b9:c2:
6c:20:33:48:08:57:6e:8b:0e:1c:b6:0e:c4:ee:73:
89:8a:0b:4a:60:7b:36:ba:05:a9:c7:cc:fc:f3:1e:
f3:65:da:d0:ed:2c:db:9c:83:20:d5:f4:1c:d0:b8:
61:55:31:06:85:f7:cb:8f:5e:6f:f6:fb:01:1b:66:
d9:e7:46:ba:68:9a:e3:b0:34:6b:82:5c:5d:cf:8e:
bd:25:81:e9:88:c6:17:86:93:2a:21:f0:01:a4:0e:
d0:1e:eb:d1:b5:d0:42:a6:7a:a1:38:07:ca:75:40:
29:65:77:5b:0e:53:e1:fd:63:7e:13:d5:27:90:1a:
fe:43:6b:fb:db:70:0f:c7:4b:48:cc:9c:00:a2:44:
e7:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:1A:E1:7C:19:69:77:41:F3:9D:2B:A9:0B:90:00:0C:06:D7:85:97
X509v3 Authority Key Identifier:
keyid:DF:ED:1D:B3:18:69:BD:CC:C9:67:B5:40:E2:2D:B0:56:42:54:2F:1D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F365C741/BE173EB406BD11E588824D08F8AEA228/3-0dsxhpvczJZ7VA4i2wVkJULx0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/3-0dsxhpvczJZ7VA4i2wVkJULx0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F365C741/BE173EB406BD11E588824D08F8AEA228/DD86921023DF11E59A291F2EF8AEA228.roa
sbgp-ipAddrBlock: critical
IPv6:
2c0f:feb1::/32
Signature Algorithm: sha256WithRSAEncryption
79:bd:0d:d4:f7:e6:23:19:fb:46:b1:64:a6:20:4d:4d:ce:80:
71:1f:f8:79:4c:2c:15:e3:15:a8:10:bd:79:50:cd:71:d7:67:
a9:11:0a:ad:cb:ca:e8:44:d7:b0:56:c8:11:2e:78:e7:73:8e:
54:93:d0:69:86:a7:dc:5b:4c:63:46:59:fc:ac:54:af:80:6e:
d8:35:fe:c1:f0:5d:c7:b8:52:3d:f8:71:1b:7c:65:f5:0e:d3:
4e:a2:d4:ab:66:db:f3:04:c9:aa:03:ff:1c:a9:8f:fc:b0:16:
54:67:ef:64:43:1e:6f:e3:8a:19:1f:c9:d1:6c:f4:32:6c:d6:
7c:a3:2e:e5:27:0c:37:e0:3c:07:e6:f0:fd:0b:da:0f:3d:55:
c4:3a:47:6b:bd:89:34:44:20:ec:44:83:27:bb:70:1e:1b:b6:
45:18:1d:b4:85:ee:cd:8c:a1:6c:e0:23:84:50:02:8e:0f:70:
26:ec:59:f1:69:15:7a:34:e1:4c:ee:4f:62:d8:5f:c4:f8:19:
fb:69:83:2c:3a:0f:ca:98:6e:ed:ea:25:4d:ee:4c:1b:39:6b:
25:44:12:21:4a:40:ff:79:d2:6c:92:99:0c:39:86:60:e8:f9:
17:1a:bd:d0:24:7a:02:48:b4:cc:4b:53:04:6f:64:2f:6d:c6:
12:c4:83:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:08:53 2024 by rpki-client on console-fra.rpki-client.org