Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F367B3F2/04BA50F009CE11EA8313CC5AF8AEA228/C0B60E1809D611EA8CC3F860F8AEA228.roa
File: C0B60E1809D611EA8CC3F860F8AEA228.roa (raw, json)
Hash identifier: 90ECyuBdPNmxRJAqpaW1o3jdvLDow9bMz084syJod/o=
Subject key identifier: E5:2F:99:C6:D5:B2:B0:D2:55:6B:3F:13:4A:1F:D1:B5:38:BA:3C:DC
Certificate issuer: /CN=F367B3F2AF/serialNumber=D025DAC9290DBD40846C648FADCC9FC67186B632
Certificate serial: 02
Authority key identifier: D0:25:DA:C9:29:0D:BD:40:84:6C:64:8F:AD:CC:9F:C6:71:86:B6:32
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/0CXaySkNvUCEbGSPrcyfxnGGtjI.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F367B3F2/04BA50F009CE11EA8313CC5AF8AEA228/C0B60E1809D611EA8CC3F860F8AEA228.roa
Signing time: Mon 18 Nov 2019 07:40:55 +0000
ROA not before: Mon 18 Nov 2019 07:40:51 +0000
ROA not after: Mon 31 Dec 2029 07:40:51 +0000
asID: 328206
IP address blocks: 2001:43f8:360::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F367B3F2/04BA50F009CE11EA8313CC5AF8AEA228/0CXaySkNvUCEbGSPrcyfxnGGtjI.crl
rsync://rpki.afrinic.net/repository/member_repository/F367B3F2/04BA50F009CE11EA8313CC5AF8AEA228/0CXaySkNvUCEbGSPrcyfxnGGtjI.mft
rsync://rpki.afrinic.net/repository/afrinic/0CXaySkNvUCEbGSPrcyfxnGGtjI.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2 (0x2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F367B3F2AF/serialNumber=D025DAC9290DBD40846C648FADCC9FC67186B632
Validity
Not Before: Nov 18 07:40:51 2019 GMT
Not After : Dec 31 07:40:51 2029 GMT
Subject: CN=5dd24b07-9e28
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:91:11:ff:42:24:34:16:6f:9d:59:bd:4a:24:
08:31:97:4c:11:85:16:98:ea:0d:53:9c:66:c6:20:
9c:2d:64:c1:3c:61:26:58:94:c2:27:c9:c0:70:d4:
ea:04:e1:3f:de:ff:68:39:4b:60:31:ea:01:b0:87:
56:b4:31:aa:52:3f:a0:dc:aa:ac:85:90:f5:c2:4d:
0e:f6:ef:d5:d0:b7:b4:0f:f4:5e:70:e5:30:15:88:
2b:8d:a8:aa:12:a3:63:98:de:ed:95:8c:33:35:d1:
d6:0d:fb:b4:e8:d5:92:fb:d7:9e:7f:17:0c:18:2a:
f3:ae:cb:71:28:25:3f:c7:bb:35:be:ae:b0:43:74:
b7:16:6a:f5:22:41:3b:4b:d3:66:66:e7:2d:95:65:
50:bf:9c:23:96:8a:73:b3:75:f3:29:bf:91:1f:50:
d1:88:ba:ec:f0:37:58:ee:f7:68:17:76:5e:1d:fb:
d5:83:09:d2:66:58:56:f5:a6:54:4a:27:16:98:ff:
1a:0e:5c:d3:ec:76:16:ca:ad:1a:6f:5b:e3:2a:83:
01:d6:09:b5:a8:d1:fa:ca:f9:39:16:ca:b3:78:53:
8e:55:fd:ff:89:02:bc:9c:be:81:80:fc:db:b5:bc:
17:b9:a4:d4:b4:0d:ff:ba:03:4a:f0:1f:ed:71:aa:
6a:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:2F:99:C6:D5:B2:B0:D2:55:6B:3F:13:4A:1F:D1:B5:38:BA:3C:DC
X509v3 Authority Key Identifier:
keyid:D0:25:DA:C9:29:0D:BD:40:84:6C:64:8F:AD:CC:9F:C6:71:86:B6:32
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F367B3F2/04BA50F009CE11EA8313CC5AF8AEA228/0CXaySkNvUCEbGSPrcyfxnGGtjI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/0CXaySkNvUCEbGSPrcyfxnGGtjI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F367B3F2/04BA50F009CE11EA8313CC5AF8AEA228/C0B60E1809D611EA8CC3F860F8AEA228.roa
sbgp-ipAddrBlock: critical
IPv6:
2001:43f8:360::/48
Signature Algorithm: sha256WithRSAEncryption
98:52:1f:21:b1:29:bb:ae:fb:2e:16:f0:2d:f9:c2:c1:7f:36:
91:e7:8c:db:1d:99:20:87:3e:60:c3:68:bf:85:a6:44:4c:9d:
d5:e0:2b:75:a6:09:e1:9b:2f:b6:79:db:11:8f:70:d1:ae:ae:
1d:9c:9e:77:6f:50:c7:b6:4f:e2:47:fc:90:ef:8f:9e:6b:71:
2e:33:fc:1e:a8:52:9f:13:9a:b2:1c:73:d4:52:cc:51:2a:16:
b9:49:33:7c:02:e2:86:68:ca:e3:24:3b:04:c4:6f:1a:ac:4e:
85:d8:5f:09:60:df:19:54:32:51:cc:a5:a5:f3:bd:c8:55:b5:
a8:3c:ef:a1:84:84:31:41:42:b1:2e:9c:6a:2d:55:1e:fd:54:
4f:24:c7:44:a2:30:34:b5:14:39:21:3b:51:a3:85:21:f1:ec:
25:af:d9:1c:e4:f9:2c:58:82:fe:2f:a6:16:24:7d:03:2a:58:
70:46:f3:0d:87:94:f2:0c:0d:7d:93:e4:c1:eb:ff:be:81:df:
fa:ac:77:5d:aa:3e:3e:d1:72:11:70:03:41:4f:f0:0a:95:70:
e8:53:08:35:49:0e:a5:f1:58:82:32:b5:d5:e1:38:0e:5c:85:
a7:09:5a:bf:9f:fc:22:98:8e:51:6d:d7:24:ac:34:14:95:b4:
78:79:ca:81
-----BEGIN CERTIFICATE-----
MIIFTjCCBDagAwIBAgIBAjANBgkqhkiG9w0BAQsFADBIMRMwEQYDVQQDEwpGMzY3
QjNGMkFGMTEwLwYDVQQFEyhEMDI1REFDOTI5MERCRDQwODQ2QzY0OEZBRENDOUZD
NjcxODZCNjMyMB4XDTE5MTExODA3NDA1MVoXDTI5MTIzMTA3NDA1MVowGDEWMBQG
A1UEAxMNNWRkMjRiMDctOWUyODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBALaREf9CJDQWb51ZvUokCDGXTBGFFpjqDVOcZsYgnC1kwTxhJliUwifJwHDU
6gThP97/aDlLYDHqAbCHVrQxqlI/oNyqrIWQ9cJNDvbv1dC3tA/0XnDlMBWIK42o
qhKjY5je7ZWMMzXR1g37tOjVkvvXnn8XDBgq867LcSglP8e7Nb6usEN0txZq9SJB
O0vTZmbnLZVlUL+cI5aKc7N18ym/kR9Q0Yi67PA3WO73aBd2Xh371YMJ0mZYVvWm
VEonFpj/Gg5c0+x2FsqtGm9b4yqDAdYJtajR+sr5ORbKs3hTjlX9/4kCvJy+gYD8
27W8F7mk1LQN/7oDSvAf7XGqarECAwEAAaOCAnEwggJtMB0GA1UdDgQWBBTlL5nG
1bKw0lVrPxNKH9G1OLo83DAfBgNVHSMEGDAWgBTQJdrJKQ29QIRsZI+tzJ/GcYa2
MjAOBgNVHQ8BAf8EBAMCB4AwgZUGA1UdHwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6
Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVyX3JlcG9zaXRvcnkv
RjM2N0IzRjIvMDRCQTUwRjAwOUNFMTFFQTgzMTNDQzVBRjhBRUEyMjgvMENYYXlT
a052VUNFYkdTUHJjeWZ4bkdHdGpJLmNybDBnBggrBgEFBQcBAQRbMFkwVwYIKwYB
BQUHMAKGS3JzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L2Fmcmlu
aWMvMENYYXlTa052VUNFYkdTUHJjeWZ4bkdHdGpJLmNlcjBPBgNVHSABAf8ERTBD
MEEGCCsGAQUFBw4CMDUwMwYIKwYBBQUHAgEWJ2h0dHBzOi8vcnBraS5hZnJpbmlj
Lm5ldC9wb2xpY3kvQ1BTLnBkZjCBpAYIKwYBBQUHAQsEgZcwgZQwgZEGCCsGAQUF
BzALhoGEcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVy
X3JlcG9zaXRvcnkvRjM2N0IzRjIvMDRCQTUwRjAwOUNFMTFFQTgzMTNDQzVBRjhB
RUEyMjgvQzBCNjBFMTgwOUQ2MTFFQThDQzNGODYwRjhBRUEyMjgucm9hMCIGCCsG
AQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAFD+ANgMA0GCSqGSIb3DQEBCwUAA4IB
AQCYUh8hsSm7rvsuFvAt+cLBfzaR54zbHZkghz5gw2i/haZETJ3V4Ct1pgnhmy+2
edsRj3DRrq4dnJ53b1DHtk/iR/yQ74+ea3EuM/weqFKfE5qyHHPUUsxRKha5STN8
AuKGaMrjJDsExG8arE6F2F8JYN8ZVDJRzKWl873IVbWoPO+hhIQxQUKxLpxqLVUe
/VRPJMdEojA0tRQ5ITtRo4Uh8ewlr9kc5PksWIL+L6YWJH0DKlhwRvMNh5TyDA19
k+TB6/++gd/6rHddqj4+0XIRcANBT/AKlXDoUwg1SQ6l8ViCMrXV4TgOXIWnCVq/
n/wimI5RbdckrDQUlbR4ecqB
-----END CERTIFICATE-----
Generated at Fri Nov 22 02:08:54 2024 by rpki-client on console-fra.rpki-client.org