Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3678D2D/186D29CE12B111EA8C9E843AF8AEA228/72E4BD0412B111EA9EACDA3AF8AEA228.roa
File: 72E4BD0412B111EA9EACDA3AF8AEA228.roa (raw, json)
Hash identifier: lEGlEyNpK2D28OfWSczq5nyD+T86uHXMrbx63t8Ft0s=
Subject key identifier: 93:C8:C1:7B:5F:6E:78:C3:71:86:F5:C4:8C:D1:0C:44:FE:E2:87:43
Certificate issuer: /CN=F3678D2DAF/serialNumber=ECA52ED6EB2B18B3AF19BA792CF33E00EFED77EA
Certificate serial: 04
Authority key identifier: EC:A5:2E:D6:EB:2B:18:B3:AF:19:BA:79:2C:F3:3E:00:EF:ED:77:EA
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/7KUu1usrGLOvGbp5LPM-AO_td-o.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3678D2D/186D29CE12B111EA8C9E843AF8AEA228/72E4BD0412B111EA9EACDA3AF8AEA228.roa
Signing time: Fri 29 Nov 2019 14:06:34 +0000
ROA not before: Fri 29 Nov 2019 14:06:28 +0000
ROA not after: Tue 20 Nov 2029 14:06:28 +0000
asID: 36924
IP address blocks: 2c0f:eb58::/32 maxlen: 48
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3678D2D/186D29CE12B111EA8C9E843AF8AEA228/7KUu1usrGLOvGbp5LPM-AO_td-o.crl
rsync://rpki.afrinic.net/repository/member_repository/F3678D2D/186D29CE12B111EA8C9E843AF8AEA228/7KUu1usrGLOvGbp5LPM-AO_td-o.mft
rsync://rpki.afrinic.net/repository/afrinic/7KUu1usrGLOvGbp5LPM-AO_td-o.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4 (0x4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3678D2DAF/serialNumber=ECA52ED6EB2B18B3AF19BA792CF33E00EFED77EA
Validity
Not Before: Nov 29 14:06:28 2019 GMT
Not After : Nov 20 14:06:28 2029 GMT
Subject: CN=5de125e9-9414
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:48:08:da:71:a3:e2:7c:61:ec:38:22:80:0e:
9a:fa:7b:ae:17:c6:ad:42:b6:c0:b0:db:25:46:0f:
f9:a2:cd:3b:3d:9b:3a:af:d4:f9:f6:78:c4:df:70:
26:bf:68:95:44:74:a3:93:8d:d7:a8:64:8d:68:dd:
05:22:c5:a6:a3:94:7c:5c:a9:30:1b:9b:9a:89:08:
66:b1:d3:49:02:b0:01:cd:1a:d8:bc:4b:12:b2:aa:
00:0a:66:93:38:a1:f4:74:69:17:cf:62:49:34:55:
d4:e9:dd:ad:4c:80:50:75:28:d1:6d:b7:86:33:2f:
98:bb:9e:a3:e7:dc:a7:7f:c4:01:6f:63:bd:87:12:
54:5f:58:17:0e:71:42:83:82:2f:73:51:ac:8e:2c:
4e:3e:2e:37:15:f1:80:03:32:58:e1:56:e5:93:cc:
da:5b:9e:33:00:7d:7c:bb:87:8d:48:b3:ea:5f:4f:
2a:80:ab:c1:31:91:6f:9d:d8:f0:52:4b:0f:69:3c:
f8:c6:34:51:db:ff:b2:fa:0a:7b:e0:66:5c:74:7d:
3d:5f:d0:70:30:d9:e9:3c:28:77:3d:0a:b5:0e:8c:
ba:fd:22:f6:80:ff:f7:ad:51:59:5d:74:d8:e6:d8:
17:f0:28:9b:01:49:74:f4:13:cf:90:d6:c7:9b:01:
e4:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:C8:C1:7B:5F:6E:78:C3:71:86:F5:C4:8C:D1:0C:44:FE:E2:87:43
X509v3 Authority Key Identifier:
keyid:EC:A5:2E:D6:EB:2B:18:B3:AF:19:BA:79:2C:F3:3E:00:EF:ED:77:EA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3678D2D/186D29CE12B111EA8C9E843AF8AEA228/7KUu1usrGLOvGbp5LPM-AO_td-o.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/7KUu1usrGLOvGbp5LPM-AO_td-o.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3678D2D/186D29CE12B111EA8C9E843AF8AEA228/72E4BD0412B111EA9EACDA3AF8AEA228.roa
sbgp-ipAddrBlock: critical
IPv6:
2c0f:eb58::/32
Signature Algorithm: sha256WithRSAEncryption
50:28:79:73:e1:61:7d:66:f3:cf:b8:b4:67:2a:b4:52:33:6f:
d8:d5:da:e3:2b:a6:08:cd:6a:3e:90:ec:3f:59:7e:07:33:b1:
b0:e5:1f:2e:ae:03:c2:13:fe:a0:a5:0f:cf:1b:10:b8:73:44:
0a:4a:d7:0a:d0:8a:b3:2f:47:3e:c9:3a:59:fe:ba:08:86:28:
37:09:0c:9e:9d:45:f1:2e:62:a0:ac:13:45:66:89:69:60:77:
16:d5:da:f1:75:0f:e0:86:90:2e:62:13:2f:13:78:e4:f5:c5:
dc:00:38:8f:a4:9b:01:68:7f:43:85:a9:22:1a:6f:3c:43:65:
2c:b4:7e:ab:44:b1:b6:06:d3:98:04:4f:d7:8e:d8:70:fa:9f:
9f:b2:82:ea:7f:19:19:14:62:90:79:86:b8:6d:55:8c:45:64:
a6:fb:85:42:87:6e:be:15:5d:23:07:11:62:ee:c4:d9:02:c6:
bd:e9:ce:0c:25:e0:32:f8:3f:8a:bb:ba:24:71:45:7e:b9:ed:
94:b4:fa:53:b3:7c:80:6e:06:4f:02:fb:11:9f:6c:ac:23:5a:
44:a7:88:3d:fd:1f:b5:9c:b2:7a:f2:eb:d0:61:53:62:97:7e:
62:22:9b:67:4a:42:8d:fa:7d:9f:65:09:9a:53:42:18:4c:f5:
c0:f9:f3:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:08:54 2024 by rpki-client on console-fra.rpki-client.org