Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F365C741/BE173EB406BD11E588824D08F8AEA228/F803FE7823D711E5AC3CCD2AF8AEA228.roa
File: F803FE7823D711E5AC3CCD2AF8AEA228.roa (raw, json)
Hash identifier: ZU4qLO4pOPKT9klrIlYddTdXKCJ1dEkwcwieybY4RFk=
Subject key identifier: E0:4B:13:9A:A0:E6:D6:B8:44:B9:13:22:0D:D1:DA:22:0A:2A:D1:38
Certificate issuer: /CN=F365C741AF/serialNumber=DFED1DB31869BDCCC967B540E22DB05642542F1D
Certificate serial: 30
Authority key identifier: DF:ED:1D:B3:18:69:BD:CC:C9:67:B5:40:E2:2D:B0:56:42:54:2F:1D
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/3-0dsxhpvczJZ7VA4i2wVkJULx0.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F365C741/BE173EB406BD11E588824D08F8AEA228/F803FE7823D711E5AC3CCD2AF8AEA228.roa
Signing time: Mon 06 Jul 2015 12:09:22 +0000
ROA not before: Mon 06 Jul 2015 12:10:11 +0000
ROA not after: Wed 31 Dec 2025 12:10:11 +0000
asID: 37100
IP address blocks: 2c0f:feb0::/32 maxlen: 48
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F365C741/BE173EB406BD11E588824D08F8AEA228/3-0dsxhpvczJZ7VA4i2wVkJULx0.crl
rsync://rpki.afrinic.net/repository/member_repository/F365C741/BE173EB406BD11E588824D08F8AEA228/3-0dsxhpvczJZ7VA4i2wVkJULx0.mft
rsync://rpki.afrinic.net/repository/afrinic/3-0dsxhpvczJZ7VA4i2wVkJULx0.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 48 (0x30)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F365C741AF/serialNumber=DFED1DB31869BDCCC967B540E22DB05642542F1D
Validity
Not Before: Jul 6 12:10:11 2015 GMT
Not After : Dec 31 12:10:11 2025 GMT
Subject: CN=559a6ff2-45a9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:01:93:0f:d6:71:3f:d4:f8:7f:ce:34:05:59:
2c:81:4f:a4:89:92:cc:05:80:41:8c:81:e8:cf:70:
5d:0c:73:95:ba:46:07:3b:de:51:29:93:b7:be:2b:
e2:b8:b4:40:73:45:b3:cd:b6:04:3c:8d:0e:0e:9d:
bc:64:e4:15:f7:c2:11:0f:d1:ae:5c:31:d7:aa:e0:
d2:dc:ea:f5:07:cb:21:56:1b:42:84:c9:36:a6:ed:
86:35:b7:df:0c:3c:3f:0c:c6:ba:76:4c:6d:36:a9:
8d:41:73:01:50:44:29:f4:6a:fb:98:6c:2e:29:c1:
58:55:75:30:89:74:04:f9:b5:08:95:35:2a:4c:d9:
1b:c9:d6:02:a3:0f:9c:c0:56:ac:54:37:72:3f:1a:
7b:1e:df:8c:0d:6c:93:75:c3:2a:b4:5f:fb:96:6c:
83:89:42:e7:ac:08:e6:a6:b1:3c:34:e2:74:50:25:
77:d8:7f:ef:81:da:7b:7a:4b:9d:98:73:91:69:51:
83:f1:20:81:83:78:20:27:a4:ae:1e:f3:37:a1:d6:
b2:37:cf:1c:d7:43:e1:0e:c1:d9:69:28:eb:bc:5a:
cd:8d:35:b8:ee:dd:1b:55:03:f6:98:85:d8:b3:cd:
b6:07:e0:97:a6:91:c2:3f:f0:d3:95:1f:ec:ee:30:
37:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:4B:13:9A:A0:E6:D6:B8:44:B9:13:22:0D:D1:DA:22:0A:2A:D1:38
X509v3 Authority Key Identifier:
keyid:DF:ED:1D:B3:18:69:BD:CC:C9:67:B5:40:E2:2D:B0:56:42:54:2F:1D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F365C741/BE173EB406BD11E588824D08F8AEA228/3-0dsxhpvczJZ7VA4i2wVkJULx0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/3-0dsxhpvczJZ7VA4i2wVkJULx0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F365C741/BE173EB406BD11E588824D08F8AEA228/F803FE7823D711E5AC3CCD2AF8AEA228.roa
sbgp-ipAddrBlock: critical
IPv6:
2c0f:feb0::/32
Signature Algorithm: sha256WithRSAEncryption
3e:63:2f:6a:fa:45:a3:1a:2b:d6:af:30:0b:d8:60:d5:43:b7:
38:6a:90:2e:ed:bd:42:21:22:5e:2c:60:46:57:cd:5f:30:e4:
76:9e:9b:6b:92:b2:26:d9:fd:3e:8a:68:14:cf:f9:5f:c4:48:
ce:6a:13:c6:e7:1a:83:19:2a:22:d7:c0:e9:3f:df:fb:22:86:
1d:0c:c6:73:46:f0:03:bc:8d:e6:78:83:e4:99:f3:ea:3e:ee:
a3:b8:e7:ba:eb:d3:09:10:53:8f:93:48:79:a8:8d:35:4a:b5:
75:35:d9:ee:a8:9d:6c:11:43:11:16:61:0f:c9:c7:b0:80:ea:
62:fb:af:f0:b9:d5:bd:47:26:a0:0b:4e:cb:bf:41:b0:56:33:
49:1a:4c:c7:5f:ac:63:b4:2b:d7:82:20:26:85:53:4a:6a:20:
02:12:9b:bd:66:12:c7:e1:74:8e:ad:62:22:d5:da:fc:fe:cf:
f4:1f:b1:4f:77:6b:3f:36:5c:cd:a5:4c:e0:42:9c:4c:ce:38:
f2:18:78:50:e2:13:b4:ff:b5:2c:33:09:66:54:00:f7:fa:22:
ae:93:bb:54:71:d5:ec:4a:16:e2:c0:32:4a:e6:6c:5c:a2:7a:
4f:43:e0:28:9b:1e:c4:0e:ab:9e:8d:fc:6d:35:3f:3b:b5:f2:
e7:fa:87:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:08:53 2024 by rpki-client on console-fra.rpki-client.org