Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3689E12/6C60968A6A3811EBA7C88C32F8AEA228/B5080AD06A3811EBA7B2E932F8AEA228.roa
File: B5080AD06A3811EBA7B2E932F8AEA228.roa (raw, json)
Hash identifier: 06xwOkOrQfyvwrgwnCZjvF757U107kkYwkenMDnbf3M=
Subject key identifier: F5:CD:DE:F7:8D:EE:C5:61:88:59:9B:62:31:9E:4E:BC:62:40:17:19
Certificate issuer: /CN=F3689E12AF/serialNumber=129892B59BEE90BFA468E5445C4AD1D0169E11D9
Certificate serial: 04
Authority key identifier: 12:98:92:B5:9B:EE:90:BF:A4:68:E5:44:5C:4A:D1:D0:16:9E:11:D9
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/EpiStZvukL-kaOVEXErR0BaeEdk.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3689E12/6C60968A6A3811EBA7C88C32F8AEA228/B5080AD06A3811EBA7B2E932F8AEA228.roa
Signing time: Mon 08 Feb 2021 18:08:56 +0000
ROA not before: Mon 08 Feb 2021 18:08:50 +0000
ROA not after: Fri 01 Feb 2030 18:08:50 +0000
asID: 328735
IP address blocks: 2c0f:e9b8::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3689E12/6C60968A6A3811EBA7C88C32F8AEA228/EpiStZvukL-kaOVEXErR0BaeEdk.crl
rsync://rpki.afrinic.net/repository/member_repository/F3689E12/6C60968A6A3811EBA7C88C32F8AEA228/EpiStZvukL-kaOVEXErR0BaeEdk.mft
rsync://rpki.afrinic.net/repository/afrinic/EpiStZvukL-kaOVEXErR0BaeEdk.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 09 May 2024 00:04:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4 (0x4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3689E12AF/serialNumber=129892B59BEE90BFA468E5445C4AD1D0169E11D9
Validity
Not Before: Feb 8 18:08:50 2021 GMT
Not After : Feb 1 18:08:50 2030 GMT
Subject: CN=60217e37-7798
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:74:50:2e:8d:4c:d0:55:03:5c:73:48:53:be:
00:15:18:90:bf:d5:ea:51:10:5c:d2:bc:5c:f2:5f:
2f:7f:d8:f2:3a:b5:46:3e:0c:69:ed:00:72:bb:db:
7b:94:c6:26:cb:f2:5e:55:b7:e0:7f:b3:47:8c:96:
8a:f2:e0:84:ef:b6:ed:99:fa:d8:d0:21:2c:a4:5e:
93:26:01:2b:80:cb:5a:6d:46:22:ef:1d:e8:d0:b3:
c7:dd:4b:33:dd:73:32:ee:6f:a4:23:1a:54:f0:f6:
34:e0:8a:48:e9:22:00:e5:c4:81:ad:fb:7d:c6:d1:
c7:96:0c:96:b9:d4:6f:2d:ae:4f:7f:3a:7a:3f:6b:
b5:c4:10:c6:52:53:f5:c9:7f:c9:e7:56:0f:83:0d:
49:13:26:7a:87:4a:3e:6f:22:d6:78:a4:11:ad:bd:
b3:84:11:61:a6:f9:26:6b:bc:20:27:19:2c:70:1a:
56:f2:54:8f:0b:9b:70:ff:04:20:73:1f:f9:0d:35:
f9:70:a3:91:ff:3f:8c:7d:b1:8d:7b:f2:a7:41:fb:
98:33:e1:ed:42:ff:64:51:40:1b:f2:cb:01:42:13:
b3:07:af:a8:a0:ff:89:37:89:18:43:00:fe:c1:72:
17:68:68:eb:9a:9d:49:2b:8d:1c:16:72:b7:7c:ad:
d3:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:CD:DE:F7:8D:EE:C5:61:88:59:9B:62:31:9E:4E:BC:62:40:17:19
X509v3 Authority Key Identifier:
keyid:12:98:92:B5:9B:EE:90:BF:A4:68:E5:44:5C:4A:D1:D0:16:9E:11:D9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3689E12/6C60968A6A3811EBA7C88C32F8AEA228/EpiStZvukL-kaOVEXErR0BaeEdk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/EpiStZvukL-kaOVEXErR0BaeEdk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3689E12/6C60968A6A3811EBA7C88C32F8AEA228/B5080AD06A3811EBA7B2E932F8AEA228.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2c0f:e9b8::/32
Signature Algorithm: sha256WithRSAEncryption
36:d5:28:a5:35:1a:3d:c9:8c:11:9a:47:ff:e4:ec:cf:6e:f7:
d7:93:cf:00:21:46:dd:2d:b0:60:dc:75:1d:72:66:a9:0f:04:
18:18:32:f2:68:40:a9:de:e8:a5:c6:cc:5a:12:f1:22:86:5e:
06:d5:7b:f0:fd:ca:cf:df:1b:65:ae:ba:9c:87:04:a3:27:80:
70:82:5a:87:8c:c2:16:d8:52:3f:4e:6c:78:a1:f6:56:c1:24:
2a:e9:4d:3b:2e:08:c0:ce:74:cf:e6:41:9d:5d:25:78:eb:96:
44:c5:1c:49:f9:da:3c:a3:bd:bf:da:9c:c8:42:8d:2e:1d:69:
d7:3b:05:65:81:1f:b8:50:c5:f3:cd:62:25:59:2c:e6:f1:2c:
93:d7:e0:5b:c0:12:17:63:f4:52:d5:01:49:8c:53:d2:5d:55:
73:8d:d1:b0:5d:cd:1f:7a:fa:4e:e5:9e:32:d0:7a:02:19:36:
c8:d7:a3:97:30:1e:b2:db:7e:e6:69:33:4e:8c:84:8d:0c:c0:
2c:b3:17:ad:7e:4b:7e:93:d4:fe:eb:d0:c0:1f:d5:99:75:c9:
ae:62:94:78:0e:d0:da:7f:b5:7d:be:6a:6c:1b:f4:b5:2b:37:
4e:f5:60:3c:ab:e7:b5:f2:8d:e5:f7:ee:82:68:38:d5:e1:91:
cc:84:ce:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 7 02:00:21 2024 by rpki-client on console-ams.rpki-client.org