Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682104/09CCB94CA76311EABBC1911CF8AEA228/17A32854AB0411EAAB629C20F8AEA228.roa
File: 17A32854AB0411EAAB629C20F8AEA228.roa (raw, json)
Hash identifier: zKsQRMdOIyFs+FKhpUrD4nBlHSqKt3S3BGmcS2sRh5Q=
Subject key identifier: 20:FA:C5:DB:D9:F6:48:04:CC:5F:B0:8C:AA:8B:BC:14:C7:D7:36:CD
Certificate issuer: /CN=F3682104AF/serialNumber=8B1026953ECF7C4CE139FE9A59BDD7228A153544
Certificate serial: 2C
Authority key identifier: 8B:10:26:95:3E:CF:7C:4C:E1:39:FE:9A:59:BD:D7:22:8A:15:35:44
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/ixAmlT7PfEzhOf6aWb3XIooVNUQ.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682104/09CCB94CA76311EABBC1911CF8AEA228/17A32854AB0411EAAB629C20F8AEA228.roa
Signing time: Wed 10 Jun 2020 10:21:05 +0000
ROA not before: Wed 10 Jun 2020 10:21:01 +0000
ROA not after: Tue 31 Dec 2030 10:21:01 +0000
asID: 33771
IP address blocks: 2001:43d0::/32 maxlen: 48
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3682104/09CCB94CA76311EABBC1911CF8AEA228/ixAmlT7PfEzhOf6aWb3XIooVNUQ.crl
rsync://rpki.afrinic.net/repository/member_repository/F3682104/09CCB94CA76311EABBC1911CF8AEA228/ixAmlT7PfEzhOf6aWb3XIooVNUQ.mft
rsync://rpki.afrinic.net/repository/afrinic/ixAmlT7PfEzhOf6aWb3XIooVNUQ.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44 (0x2c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682104AF/serialNumber=8B1026953ECF7C4CE139FE9A59BDD7228A153544
Validity
Not Before: Jun 10 10:21:01 2020 GMT
Not After : Dec 31 10:21:01 2030 GMT
Subject: CN=5ee0b411-0d05
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:08:67:4f:70:61:6b:4c:96:15:dc:fc:6d:b1:
07:a5:39:8a:ca:19:cc:60:e2:5e:5f:d0:5e:e7:de:
d5:d7:1a:f9:4b:d4:7a:c8:49:73:89:13:6a:b9:80:
66:b1:2b:f9:62:6e:08:cd:ef:cc:90:44:75:bf:02:
47:84:c3:1a:fe:1b:9d:8f:42:9b:ed:f0:bb:78:97:
69:41:04:40:15:aa:66:59:ab:85:e7:81:e3:4c:73:
c6:e0:29:26:27:62:6f:ec:60:c4:39:3b:16:83:16:
fd:31:83:a7:81:9d:8a:ea:3a:28:0c:64:3f:86:fe:
9d:25:68:bf:73:75:83:c0:8a:02:2d:ca:f6:ef:d1:
62:f6:a5:8b:90:d1:8a:7c:c7:c3:d8:75:c1:35:c8:
d4:a9:41:9b:6c:7e:2a:df:07:ca:4f:aa:81:fb:2a:
ed:e5:14:6a:00:eb:f9:a8:17:ad:a9:a4:47:0b:2c:
ea:28:08:7b:d9:04:77:e7:09:c2:df:87:a3:82:d2:
80:fb:2a:07:09:eb:89:f9:31:79:d5:cb:f9:4e:ab:
d7:f5:0a:1a:a0:c2:9f:9a:47:7b:04:04:24:9c:b5:
82:7c:b7:be:e0:fa:e3:c8:ae:16:6c:1f:50:06:1c:
6c:65:61:f7:26:ff:a5:40:21:48:e5:a0:bc:ef:0c:
61:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:FA:C5:DB:D9:F6:48:04:CC:5F:B0:8C:AA:8B:BC:14:C7:D7:36:CD
X509v3 Authority Key Identifier:
keyid:8B:10:26:95:3E:CF:7C:4C:E1:39:FE:9A:59:BD:D7:22:8A:15:35:44
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682104/09CCB94CA76311EABBC1911CF8AEA228/ixAmlT7PfEzhOf6aWb3XIooVNUQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/ixAmlT7PfEzhOf6aWb3XIooVNUQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682104/09CCB94CA76311EABBC1911CF8AEA228/17A32854AB0411EAAB629C20F8AEA228.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:43d0::/32
Signature Algorithm: sha256WithRSAEncryption
66:63:84:4e:ab:d1:34:92:8a:4c:d7:dc:65:30:48:7f:f0:23:
8c:1b:8e:39:d5:4d:d4:8f:8a:db:b5:f2:e7:82:f0:f3:5d:bb:
13:c7:83:73:d1:0a:f0:22:43:cd:ca:fb:17:3e:df:b1:f4:5d:
e0:61:44:11:36:df:97:9e:44:78:12:f5:94:af:15:9e:0f:85:
6c:3a:82:9d:a3:58:f8:20:19:bd:77:b0:a3:5b:41:c0:66:9d:
31:4b:79:12:f8:2f:4a:48:8c:63:be:b5:c3:fa:dc:b3:24:c6:
ce:50:d0:39:80:f7:15:8f:c8:c2:29:58:f0:26:a9:34:5c:5f:
0a:62:2c:15:99:92:ca:c4:2d:d1:aa:39:5a:3d:be:c3:49:1e:
37:39:98:86:3f:c7:c0:ea:45:fe:a9:d5:fb:e6:1c:86:25:b7:
ba:31:7a:34:13:c8:ed:91:cf:b9:a7:22:46:f0:77:26:4a:a3:
73:9f:da:35:01:06:3a:68:2e:d5:82:b1:bd:d4:3d:fb:aa:3b:
8f:24:ae:c6:20:26:1a:cc:98:f9:c8:08:70:90:33:0d:01:85:
f9:08:ae:dd:de:4c:5f:c8:bc:a0:22:a5:1d:21:4c:5e:9f:ba:
bf:40:05:27:b6:50:65:0b:00:1c:30:f8:6d:59:54:ac:84:f9:
e3:a8:b5:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:03:45 2024 by rpki-client on console-ams.rpki-client.org