Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368588E/A3823956CB2F11E9890D1B27F8AEA228/524153BE8E6611EBB85F5E6CF8AEA228.roa
File: 524153BE8E6611EBB85F5E6CF8AEA228.roa (raw, json)
Hash identifier: 2hd9ZQH6yn17Npd0+aOdMdIMVFAkEErgQuvgi60v08M=
Subject key identifier: 4D:11:9F:F7:6A:71:56:F3:A2:5C:A0:1A:19:22:E5:7A:9B:03:40:66
Certificate issuer: /CN=F368588EAF/serialNumber=5CADA32CFB001ABA6E4C9F5213D928765B15A337
Certificate serial: 025F
Authority key identifier: 5C:AD:A3:2C:FB:00:1A:BA:6E:4C:9F:52:13:D9:28:76:5B:15:A3:37
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/XK2jLPsAGrpuTJ9SE9kodlsVozc.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368588E/A3823956CB2F11E9890D1B27F8AEA228/524153BE8E6611EBB85F5E6CF8AEA228.roa
Signing time: Fri 26 Mar 2021 19:06:08 +0000
ROA not before: Fri 26 Mar 2021 19:06:05 +0000
ROA not after: Mon 31 Mar 2031 19:06:05 +0000
asID: 715
IP address blocks: 2001:43f8:e00::/40 maxlen: 48
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368588E/A3823956CB2F11E9890D1B27F8AEA228/XK2jLPsAGrpuTJ9SE9kodlsVozc.crl
rsync://rpki.afrinic.net/repository/member_repository/F368588E/A3823956CB2F11E9890D1B27F8AEA228/XK2jLPsAGrpuTJ9SE9kodlsVozc.mft
rsync://rpki.afrinic.net/repository/afrinic/XK2jLPsAGrpuTJ9SE9kodlsVozc.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 607 (0x25f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368588EAF/serialNumber=5CADA32CFB001ABA6E4C9F5213D928765B15A337
Validity
Not Before: Mar 26 19:06:05 2021 GMT
Not After : Mar 31 19:06:05 2031 GMT
Subject: CN=605e30a0-3724
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:ba:e2:67:90:d6:0d:36:17:5c:22:d0:8f:51:
b5:a8:3c:ba:1e:6a:e2:fa:9c:12:14:f7:e6:a4:81:
e7:7b:7b:48:8f:cb:6d:49:05:35:9e:0c:3e:45:b1:
a3:9e:1b:5c:90:ad:e7:5f:a3:4c:03:cc:51:bf:f5:
c7:82:8c:3f:7f:07:4b:2a:57:ad:f7:f5:a8:3e:cd:
66:d9:50:c1:5e:3c:8e:a7:2f:aa:4b:98:a4:f2:71:
f1:bb:9a:5a:da:07:f6:be:9d:1c:69:1a:f1:0c:36:
cd:fa:83:f0:e2:2e:cc:96:e2:56:18:3b:90:22:a4:
76:cc:26:05:bf:e3:64:57:ed:f2:f5:ae:16:4c:26:
99:15:a8:41:5e:aa:8a:4b:91:81:a8:98:70:ae:5a:
96:1b:04:ee:cc:6d:99:32:2e:94:58:13:61:fa:bf:
87:8c:48:8a:47:2d:87:19:ea:f8:68:75:8a:fc:3e:
9b:65:e8:67:4d:55:4d:d2:67:a0:72:92:9c:95:4f:
84:23:18:95:60:5f:63:bd:cc:8d:4b:7e:13:3c:75:
93:6e:db:62:3b:8e:b1:95:cf:fd:4f:91:cf:31:2e:
7f:f3:78:d9:00:ad:95:28:e4:ac:7d:74:66:3f:d5:
45:c1:7f:7c:ee:cf:dc:ce:93:fa:46:7e:e6:96:c1:
98:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:11:9F:F7:6A:71:56:F3:A2:5C:A0:1A:19:22:E5:7A:9B:03:40:66
X509v3 Authority Key Identifier:
keyid:5C:AD:A3:2C:FB:00:1A:BA:6E:4C:9F:52:13:D9:28:76:5B:15:A3:37
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368588E/A3823956CB2F11E9890D1B27F8AEA228/XK2jLPsAGrpuTJ9SE9kodlsVozc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/XK2jLPsAGrpuTJ9SE9kodlsVozc.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368588E/A3823956CB2F11E9890D1B27F8AEA228/524153BE8E6611EBB85F5E6CF8AEA228.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:43f8:e00::/40
Signature Algorithm: sha256WithRSAEncryption
d1:a4:a6:11:e6:2b:4d:4a:63:bd:f8:0c:45:cf:62:82:58:66:
7e:04:8e:3e:a3:80:15:47:c9:21:8a:15:08:24:4d:d0:64:74:
a0:46:b4:32:df:a8:d9:21:c8:0b:80:6e:f3:ae:a3:48:a6:fc:
1e:fc:83:1b:0a:9b:88:60:55:9d:2d:55:c2:fa:ac:da:25:c8:
77:97:2f:94:0c:a7:28:78:54:f6:b3:1e:67:14:90:e9:a2:f8:
5d:6c:0b:9f:7b:5b:e3:76:23:2b:17:e3:b8:e1:30:d0:01:20:
75:ef:91:1c:bc:f9:b5:8a:f7:aa:7d:b1:15:68:5e:c7:bb:f1:
4b:7c:4d:90:c3:4e:ef:03:c3:69:d4:c3:e1:f2:9f:ce:19:0b:
b6:a3:a0:85:01:96:07:9f:5e:73:59:f9:bc:78:d2:ed:5b:b6:
84:dc:b5:a5:99:e2:d8:52:1a:d2:d3:bf:66:6e:d5:c0:4e:cf:
6e:d1:52:2e:7c:57:fe:a0:f7:92:91:0d:7f:24:65:2a:ed:7f:
df:c3:89:f0:18:b6:ae:39:f3:4d:f3:74:f1:a1:f2:8d:64:84:
fc:9d:66:ff:09:30:90:e1:05:08:36:67:e3:01:a0:dd:45:47:
c1:95:cf:23:9f:4f:ab:89:d3:dc:99:f9:10:8f:2d:95:f3:5a:
64:99:3a:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:08:57 2024 by rpki-client on console-fra.rpki-client.org