Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36897F5/A52F56649BB011EBA8A3CC35F8AEA228/34AE3DFCC58511EBB4A5C21EF8AEA228.roa
File: 34AE3DFCC58511EBB4A5C21EF8AEA228.roa (raw, json)
Hash identifier: ZjkNFKGtAZypIMcq+QeOXdlk+8RQ2i75oku0c6PBydc=
Subject key identifier: AB:AE:99:75:E6:D8:F5:57:C2:03:0A:3E:3F:6A:0D:D9:AA:2D:5C:92
Certificate issuer: /CN=F36897F5AF/serialNumber=C39A32407B4BD96E283760C7155726E6D0D7199C
Certificate serial: 3D
Authority key identifier: C3:9A:32:40:7B:4B:D9:6E:28:37:60:C7:15:57:26:E6:D0:D7:19:9C
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/w5oyQHtL2W4oN2DHFVcm5tDXGZw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36897F5/A52F56649BB011EBA8A3CC35F8AEA228/34AE3DFCC58511EBB4A5C21EF8AEA228.roa
Signing time: Fri 04 Jun 2021 22:35:47 +0000
ROA not before: Fri 04 Jun 2021 22:35:41 +0000
ROA not after: Tue 04 Jun 2024 22:35:41 +0000
asID: 328133
IP address blocks: 2c0f:f018::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36897F5/A52F56649BB011EBA8A3CC35F8AEA228/w5oyQHtL2W4oN2DHFVcm5tDXGZw.crl
rsync://rpki.afrinic.net/repository/member_repository/F36897F5/A52F56649BB011EBA8A3CC35F8AEA228/w5oyQHtL2W4oN2DHFVcm5tDXGZw.mft
rsync://rpki.afrinic.net/repository/afrinic/w5oyQHtL2W4oN2DHFVcm5tDXGZw.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 30 Apr 2024 00:04:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 61 (0x3d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36897F5AF/serialNumber=C39A32407B4BD96E283760C7155726E6D0D7199C
Validity
Not Before: Jun 4 22:35:41 2021 GMT
Not After : Jun 4 22:35:41 2024 GMT
Subject: CN=60baaac3-0be5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:a1:90:05:1a:ef:42:1e:96:11:7d:cd:ca:6c:
91:ad:ac:c3:6e:c1:cd:55:af:e0:00:bc:65:ea:83:
c5:87:8f:e8:04:99:63:2d:90:10:5b:96:de:6a:2f:
01:11:94:c7:38:fe:71:79:17:ab:39:fa:d8:e6:07:
3b:71:05:8a:a1:53:4c:07:d5:b6:e3:f6:2c:f2:86:
2d:ce:e8:6d:a1:9e:1a:7e:a5:95:93:26:8b:9d:80:
9e:0e:74:23:24:27:65:26:22:2a:fc:d3:ee:06:32:
2f:52:03:c1:f8:e2:a4:fa:6d:72:b4:fd:4c:a8:89:
eb:92:e0:8a:f7:5d:fc:3c:28:f7:9e:38:15:f6:2a:
b7:24:e9:7d:b8:cc:05:a3:fe:03:e6:d4:97:07:9f:
bb:85:c8:1c:13:17:54:1a:d1:7c:00:1e:6e:aa:13:
f7:95:93:69:e8:28:2a:84:ee:38:21:27:54:a9:7d:
fe:b3:07:94:48:f7:74:41:e2:d8:18:31:6c:6e:c4:
e6:f4:70:c3:24:9b:f6:e5:7e:45:a8:f8:03:b8:48:
2c:5f:5f:06:9f:2c:e6:18:f3:d8:0a:e5:f5:27:8d:
61:96:5c:d1:93:7d:b9:37:93:4b:a9:87:f4:2e:05:
b7:13:f8:c9:66:92:7b:df:d5:ce:d8:49:67:c5:52:
52:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:AE:99:75:E6:D8:F5:57:C2:03:0A:3E:3F:6A:0D:D9:AA:2D:5C:92
X509v3 Authority Key Identifier:
keyid:C3:9A:32:40:7B:4B:D9:6E:28:37:60:C7:15:57:26:E6:D0:D7:19:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36897F5/A52F56649BB011EBA8A3CC35F8AEA228/w5oyQHtL2W4oN2DHFVcm5tDXGZw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/w5oyQHtL2W4oN2DHFVcm5tDXGZw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36897F5/A52F56649BB011EBA8A3CC35F8AEA228/34AE3DFCC58511EBB4A5C21EF8AEA228.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2c0f:f018::/32
Signature Algorithm: sha256WithRSAEncryption
16:88:64:ea:0d:a2:c1:6f:66:f5:06:bd:11:0e:e1:e3:49:df:
9f:5d:5f:1a:a0:97:8c:03:e1:b7:cb:c7:0c:ff:9f:33:a8:85:
f4:79:89:f0:ce:9f:a8:bf:70:27:d0:2b:e3:cd:0d:e4:2b:17:
3b:71:38:e5:14:81:83:14:8a:b3:6a:85:0b:e5:75:d7:e0:f4:
48:3d:a7:05:fe:6d:5c:50:5c:02:66:84:2d:fb:62:f0:ac:80:
8e:90:78:10:bb:0d:06:89:b5:56:d2:78:96:f8:32:25:17:ea:
cc:57:2f:98:03:56:4a:40:b5:a9:21:c0:77:1f:d7:5e:94:b5:
60:52:ea:9c:8f:00:1c:da:08:78:31:16:aa:d8:a8:d1:00:4d:
6f:16:48:4d:b9:2b:a2:fb:7b:d1:5c:3a:5d:2b:aa:ed:81:c5:
7d:b9:10:7a:39:50:22:72:93:da:d0:f7:0a:fe:06:1d:76:91:
b9:51:30:4e:d1:36:4f:0b:ba:a5:56:4d:d7:e9:a2:04:d6:ef:
20:9c:c1:db:41:d5:1c:4a:6d:5c:01:81:9b:33:8e:38:f0:e4:
ab:9a:7f:5a:d7:02:5e:09:b7:9d:1d:ea:62:a7:68:fa:26:39:
1d:70:85:6c:41:7b:ff:ec:3a:ac:ce:58:c8:65:d2:41:04:a5:
75:7d:a4:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 28 03:10:36 2024 by rpki-client on console-ams.rpki-client.org