Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368588E/A3823956CB2F11E9890D1B27F8AEA228/314349A68E6611EB8D43336CF8AEA228.roa
File: 314349A68E6611EB8D43336CF8AEA228.roa (raw, json)
Hash identifier: Thxt35OuW2OHwRepR9n+aTVJ70XOv0V6vWotqPw7F9g=
Subject key identifier: FA:8C:2C:2F:66:DD:76:6D:1D:15:DF:2C:CF:00:83:DB:07:1D:D5:64
Certificate issuer: /CN=F368588EAF/serialNumber=5CADA32CFB001ABA6E4C9F5213D928765B15A337
Certificate serial: 025D
Authority key identifier: 5C:AD:A3:2C:FB:00:1A:BA:6E:4C:9F:52:13:D9:28:76:5B:15:A3:37
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/XK2jLPsAGrpuTJ9SE9kodlsVozc.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368588E/A3823956CB2F11E9890D1B27F8AEA228/314349A68E6611EB8D43336CF8AEA228.roa
Signing time: Fri 26 Mar 2021 19:05:13 +0000
ROA not before: Fri 26 Mar 2021 19:05:09 +0000
ROA not after: Mon 31 Mar 2031 19:05:09 +0000
asID: 42
IP address blocks: 2001:43f8:e00::/40 maxlen: 48
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368588E/A3823956CB2F11E9890D1B27F8AEA228/XK2jLPsAGrpuTJ9SE9kodlsVozc.crl
rsync://rpki.afrinic.net/repository/member_repository/F368588E/A3823956CB2F11E9890D1B27F8AEA228/XK2jLPsAGrpuTJ9SE9kodlsVozc.mft
rsync://rpki.afrinic.net/repository/afrinic/XK2jLPsAGrpuTJ9SE9kodlsVozc.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 24 May 2024 00:05:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 605 (0x25d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368588EAF/serialNumber=5CADA32CFB001ABA6E4C9F5213D928765B15A337
Validity
Not Before: Mar 26 19:05:09 2021 GMT
Not After : Mar 31 19:05:09 2031 GMT
Subject: CN=605e3069-31fa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:48:8e:34:df:ad:80:dd:e2:39:2d:48:cf:74:
45:05:66:d3:47:08:e2:dc:f0:4b:19:1a:6e:a4:5c:
c2:0c:2f:f5:fa:22:cf:4f:92:ab:f8:09:08:b2:68:
2b:a7:d7:1c:22:ef:0e:fc:7f:c2:98:74:bb:63:66:
73:75:b0:59:03:7c:9f:d3:c0:54:a7:c4:56:67:88:
9b:31:36:08:54:c9:a3:90:4a:e4:b0:f9:f5:34:3e:
63:4a:e4:ac:b1:8b:71:d0:22:88:7a:25:52:e6:3e:
f7:35:ff:13:cc:40:bc:d3:35:f7:99:f3:fa:8b:36:
67:69:3c:4f:ac:27:7b:8f:0c:ed:35:b2:08:33:b6:
8e:9e:be:64:84:e4:c9:5d:97:e5:f2:99:01:bb:d6:
da:e6:d9:57:16:e6:59:56:90:a7:af:2c:25:45:40:
3a:c2:1c:9f:71:50:fe:d7:03:95:71:d9:d8:f9:f0:
81:3c:d1:52:ea:19:5d:be:7f:26:2c:d0:a0:68:e4:
5a:d5:4f:76:28:e6:e4:46:79:b5:50:f0:db:6d:3f:
67:1d:2e:60:98:70:0d:96:60:cf:1b:38:05:06:1e:
ed:6f:a5:59:e7:8a:e7:f3:be:54:8c:01:3a:3a:93:
30:c6:e9:02:e6:ed:cf:f7:71:2a:2d:53:b4:30:31:
ff:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:8C:2C:2F:66:DD:76:6D:1D:15:DF:2C:CF:00:83:DB:07:1D:D5:64
X509v3 Authority Key Identifier:
keyid:5C:AD:A3:2C:FB:00:1A:BA:6E:4C:9F:52:13:D9:28:76:5B:15:A3:37
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368588E/A3823956CB2F11E9890D1B27F8AEA228/XK2jLPsAGrpuTJ9SE9kodlsVozc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/XK2jLPsAGrpuTJ9SE9kodlsVozc.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368588E/A3823956CB2F11E9890D1B27F8AEA228/314349A68E6611EB8D43336CF8AEA228.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:43f8:e00::/40
Signature Algorithm: sha256WithRSAEncryption
d6:8a:cb:72:cc:a6:ba:bc:01:f1:19:c5:0c:8f:0e:4d:45:92:
47:5a:d9:30:ce:4e:41:8a:fc:eb:1d:ec:7d:30:25:05:1e:e9:
cb:f3:b6:4f:31:84:d5:28:06:c4:6d:ec:2b:9f:c5:e4:26:91:
a0:a5:05:cc:f1:6b:f1:1b:1b:3b:91:3b:61:62:96:5f:dd:7f:
f1:82:9c:7b:f8:b3:e6:89:73:68:14:16:53:9f:cf:f4:2e:29:
89:86:ab:9b:b1:91:56:27:2c:56:7f:22:a9:c1:ac:ec:1f:af:
0f:d6:ae:1c:3e:b8:32:da:1f:d7:bc:5f:db:3c:93:91:49:c7:
4a:af:1e:d9:78:51:cb:98:80:35:0d:5f:05:61:e2:93:dc:6e:
1d:1d:c6:83:30:58:5b:4a:00:34:c2:67:4a:ae:12:3e:48:5a:
63:fa:2b:82:e2:f2:15:5e:e2:10:f1:4b:66:45:d5:3d:a1:ff:
e5:56:dd:8d:11:41:31:e1:fe:37:f7:8c:d9:c9:cd:0f:cf:69:
44:c9:f5:54:12:64:24:0e:74:61:b7:dc:ff:cb:62:b2:ab:a6:
35:15:d7:9b:ef:f4:ac:b8:88:13:b9:9a:d5:45:54:2c:93:ca:
9e:1f:b7:f3:c7:a4:c1:6f:95:41:fc:7b:f9:95:b9:f2:de:a4:
8b:d8:95:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 22 02:55:31 2024 by rpki-client on console-ams.rpki-client.org