Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/CFD0797A8C5B11EBAEFB0844F8AEA228.roa
File: CFD0797A8C5B11EBAEFB0844F8AEA228.roa (raw, json)
Hash identifier: vW9UPyJEISbBkQINcfQ3uITb9tsQcg2wcB/bzs1Dep8=
Subject key identifier: 44:D2:38:E4:DB:10:C0:CF:E8:FE:45:B4:B5:B0:AD:8D:7E:17:F8:38
Certificate issuer: /CN=F367B216AF/serialNumber=2F407FECD8B7DDDCA5D5B90A5E19589D06C101DC
Certificate serial: 37
Authority key identifier: 2F:40:7F:EC:D8:B7:DD:DC:A5:D5:B9:0A:5E:19:58:9D:06:C1:01:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/L0B_7Ni33dyl1bkKXhlYnQbBAdw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/CFD0797A8C5B11EBAEFB0844F8AEA228.roa
Signing time: Wed 24 Mar 2021 04:45:52 +0000
ROA not before: Wed 24 Mar 2021 04:45:47 +0000
ROA not after: Mon 24 Mar 2031 04:45:47 +0000
asID: 3741
IP address blocks: 2c0f:fc00::/27 maxlen: 48
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/L0B_7Ni33dyl1bkKXhlYnQbBAdw.crl
rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/L0B_7Ni33dyl1bkKXhlYnQbBAdw.mft
rsync://rpki.afrinic.net/repository/afrinic/L0B_7Ni33dyl1bkKXhlYnQbBAdw.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 55 (0x37)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F367B216AF/serialNumber=2F407FECD8B7DDDCA5D5B90A5E19589D06C101DC
Validity
Not Before: Mar 24 04:45:47 2021 GMT
Not After : Mar 24 04:45:47 2031 GMT
Subject: CN=605ac400-ae39
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:d5:6a:a5:c3:90:b5:18:ee:10:ee:4d:91:15:
4a:20:f0:e0:a6:23:6f:3a:3d:ce:1d:6a:84:5b:27:
2b:3a:0a:3b:2e:2d:87:88:03:c1:d7:f9:1b:c9:0c:
1d:0b:69:5b:f2:a6:a9:49:e4:ad:1f:83:fa:da:df:
62:bf:c8:86:51:0c:6b:90:01:42:98:70:28:89:5b:
af:cc:c7:c6:4e:76:f8:08:a0:aa:48:e1:87:cb:2d:
99:dc:f9:7c:2e:e9:bd:56:77:68:a6:51:b7:2d:be:
72:63:bb:51:90:4a:5c:f2:7a:96:40:b7:0f:8b:9f:
c6:cf:95:e3:84:53:f2:7e:03:8a:e1:a7:db:10:6e:
80:53:8c:c4:73:bd:38:ed:0b:82:0a:74:bc:3b:17:
cc:c4:bd:3c:c0:26:44:01:2e:f8:32:99:98:31:13:
cf:44:ca:4c:f4:fb:2e:85:31:6c:96:38:be:bf:3b:
4d:3d:32:ac:1e:49:1d:68:03:8b:7e:79:96:c4:f6:
27:92:d6:f5:0e:4a:5f:cd:8f:ac:b0:3d:71:46:1f:
01:a9:a0:1e:93:7a:7d:cc:52:d3:20:15:06:90:ef:
50:ca:fd:49:f7:97:c8:8e:95:2e:37:8a:71:ae:5e:
95:f2:68:ea:6c:19:d2:01:b7:01:8c:2f:35:43:37:
e8:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:D2:38:E4:DB:10:C0:CF:E8:FE:45:B4:B5:B0:AD:8D:7E:17:F8:38
X509v3 Authority Key Identifier:
keyid:2F:40:7F:EC:D8:B7:DD:DC:A5:D5:B9:0A:5E:19:58:9D:06:C1:01:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/L0B_7Ni33dyl1bkKXhlYnQbBAdw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/L0B_7Ni33dyl1bkKXhlYnQbBAdw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/CFD0797A8C5B11EBAEFB0844F8AEA228.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2c0f:fc00::/27
Signature Algorithm: sha256WithRSAEncryption
21:c8:3e:84:11:b8:af:37:cd:19:fa:ae:aa:91:2d:5a:91:44:
aa:dd:50:fa:7c:06:b7:6f:96:1b:7d:12:b3:c8:6f:74:da:ea:
8a:b3:c6:eb:76:b6:74:2c:f3:c0:f8:87:b8:41:99:cb:ef:f2:
f1:33:77:62:eb:75:2a:49:f9:8a:6b:5b:c1:e3:83:7e:e1:0a:
cd:98:70:dd:7f:ab:be:d3:20:c7:79:68:6e:7c:09:0f:e4:e6:
4d:d7:90:1b:f2:18:f1:38:90:c2:3b:48:13:35:f6:9b:49:1b:
49:f1:3e:61:68:d5:64:96:b7:95:16:20:b3:a1:29:cc:5b:34:
97:48:78:37:4f:f5:46:54:c8:d4:88:42:3f:0d:ac:12:8d:5e:
f7:a0:46:f0:09:a7:9f:94:e4:fe:8b:9d:14:21:fe:75:67:c4:
a0:93:07:bc:ae:17:02:3e:a7:a8:e1:1f:25:7c:8b:eb:45:61:
b1:bd:79:77:f3:ec:39:f0:9e:a4:ea:92:cf:4f:cd:d8:90:ba:
2d:4f:17:dc:dc:a1:c4:69:d0:f7:19:e2:22:a2:31:35:1b:58:
77:ae:64:2d:c0:bf:80:cc:ce:17:a7:02:18:32:00:a4:16:3f:
ad:96:a1:51:63:e1:53:e6:db:bd:0c:33:ef:88:95:43:ca:4f:
be:99:7b:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:08:54 2024 by rpki-client on console-fra.rpki-client.org