Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F366FAD3/666F962464DF11E8AFE47627F8AEA228/8F2CFCDE56E511E98093C968F8AEA228.roa
File: 8F2CFCDE56E511E98093C968F8AEA228.roa (raw, json)
Hash identifier: 9+KvA5vBTldHkBa01AwWhEOmwfdSKfq79Dv4LMRkqU8=
Subject key identifier: DF:4C:7C:E7:CD:31:81:38:A7:16:C4:5F:92:DB:64:50:22:E8:03:E6
Certificate issuer: /CN=F366FAD3AF/serialNumber=6B90FE34A8669A8838FD238CC65A1152C4416505
Certificate serial: 0142
Authority key identifier: 6B:90:FE:34:A8:66:9A:88:38:FD:23:8C:C6:5A:11:52:C4:41:65:05
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/a5D-NKhmmog4_SOMxloRUsRBZQU.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F366FAD3/666F962464DF11E8AFE47627F8AEA228/8F2CFCDE56E511E98093C968F8AEA228.roa
Signing time: Thu 04 Apr 2019 14:25:57 +0000
ROA not before: Thu 04 Apr 2019 14:25:52 +0000
ROA not after: Wed 04 Apr 2029 14:25:52 +0000
asID: 328262
IP address blocks: 2c0f:ef10::/32 maxlen: 48
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F366FAD3/666F962464DF11E8AFE47627F8AEA228/a5D-NKhmmog4_SOMxloRUsRBZQU.crl
rsync://rpki.afrinic.net/repository/member_repository/F366FAD3/666F962464DF11E8AFE47627F8AEA228/a5D-NKhmmog4_SOMxloRUsRBZQU.mft
rsync://rpki.afrinic.net/repository/afrinic/a5D-NKhmmog4_SOMxloRUsRBZQU.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 27 Nov 2024 00:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 322 (0x142)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F366FAD3AF/serialNumber=6B90FE34A8669A8838FD238CC65A1152C4416505
Validity
Not Before: Apr 4 14:25:52 2019 GMT
Not After : Apr 4 14:25:52 2029 GMT
Subject: CN=5ca613f4-582a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:77:36:68:e0:72:56:d4:61:86:64:a1:f5:60:
39:cc:97:59:c4:7a:b9:43:e8:fd:e4:31:5b:7d:31:
b0:56:8e:59:b4:c9:8b:46:d1:bb:2d:70:72:54:d1:
9a:ea:a6:85:ba:cb:9d:66:af:fe:d8:40:1f:f9:5a:
57:cf:3e:76:2f:ad:f3:55:a8:7b:8f:f8:8d:0e:18:
a6:30:d8:2c:0e:ec:d7:96:88:ff:27:89:db:fa:0b:
35:b0:1e:fc:ae:88:dc:d9:00:88:18:c6:14:24:ec:
d5:b8:da:7c:71:ba:35:cc:75:a4:3d:53:6b:89:84:
27:ad:54:c7:85:29:87:d3:7a:34:92:37:71:48:21:
3f:4e:dc:6f:c4:0e:8d:83:7f:a4:9a:44:49:f7:d8:
9e:04:04:f6:b4:fc:4b:00:ca:49:1c:72:9a:f2:29:
74:4b:f1:a1:23:1d:02:c0:58:78:c8:36:d0:04:e0:
16:50:28:66:4a:45:5a:08:48:1a:e7:e5:1d:8c:50:
d7:3b:f2:bf:b9:1a:ab:a8:ce:ad:f3:0e:3a:1d:64:
45:ff:85:9f:58:b0:a1:fb:6f:0c:1e:8b:d8:ca:ab:
04:a0:87:d0:97:a6:2a:51:6c:d5:ad:86:fd:0c:9e:
02:36:98:14:e7:60:41:91:d4:5c:e2:01:8c:c0:3f:
44:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:4C:7C:E7:CD:31:81:38:A7:16:C4:5F:92:DB:64:50:22:E8:03:E6
X509v3 Authority Key Identifier:
keyid:6B:90:FE:34:A8:66:9A:88:38:FD:23:8C:C6:5A:11:52:C4:41:65:05
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F366FAD3/666F962464DF11E8AFE47627F8AEA228/a5D-NKhmmog4_SOMxloRUsRBZQU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/a5D-NKhmmog4_SOMxloRUsRBZQU.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F366FAD3/666F962464DF11E8AFE47627F8AEA228/8F2CFCDE56E511E98093C968F8AEA228.roa
sbgp-ipAddrBlock: critical
IPv6:
2c0f:ef10::/32
Signature Algorithm: sha256WithRSAEncryption
4a:0b:a4:45:39:fa:da:74:cc:f4:0b:4c:5d:11:12:5a:97:c1:
3e:48:e0:8d:cb:cb:84:14:db:23:6c:ec:b8:01:76:cd:bb:e2:
6e:3b:c1:8c:8b:36:9a:ba:31:42:39:83:17:dc:ee:81:90:c9:
e8:c7:e7:bc:5b:04:3a:b2:24:a4:49:eb:9b:53:05:f1:7f:1f:
77:d3:ba:96:6e:4f:b2:48:4c:e7:25:a6:fe:a5:32:72:1c:f7:
2d:72:8f:03:98:fa:98:7a:38:45:b4:d2:e5:8b:1c:fc:3b:80:
d3:81:79:ea:14:6a:aa:02:37:76:4e:1b:ae:97:7e:f9:35:01:
cb:ee:38:20:46:e0:96:e5:2b:d2:a9:39:08:c8:8a:71:68:5c:
87:b2:12:d2:67:20:40:ad:f2:48:08:6a:32:d1:00:3b:05:bd:
48:7c:df:f5:a4:fe:ce:ac:41:50:e4:f9:91:70:8d:f0:26:df:
f4:45:1b:b5:41:54:ef:3f:b9:b2:72:33:1d:b2:4d:f7:dd:35:
03:d6:8c:3d:15:f4:9c:f3:18:e6:a4:37:82:95:2b:74:cc:60:
0a:f8:48:0c:d7:e7:93:ca:b2:8c:0f:9e:f1:a7:c4:6c:1d:70:
1b:4f:04:60:b9:19:03:9e:7e:6c:af:33:b4:5f:99:37:26:54:
ca:e3:f6:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 02:47:21 2024 by rpki-client on console-ams.rpki-client.org