Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36960E7/1C0AE63EEB7711EB80DE7C1ED8A014CE/DB5852DAF85D11EC930D6BE8F1222468.roa
File: DB5852DAF85D11EC930D6BE8F1222468.roa (raw, json)
Hash identifier: 24EK8b+p2r7qpQuA2QKiuCsydz+C8t9Qpt7D1suQdos=
Subject key identifier: B3:AE:7E:F0:CF:D4:06:99:52:AE:59:C1:7E:6D:27:C8:3D:17:0C:55
Certificate issuer: /CN=F36960E7AF/serialNumber=1F4DB9AC6B63108A19BDCDBEECFF449842C8D6A0
Certificate serial: 0172
Authority key identifier: 1F:4D:B9:AC:6B:63:10:8A:19:BD:CD:BE:EC:FF:44:98:42:C8:D6:A0
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/H025rGtjEIoZvc2-7P9EmELI1qA.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36960E7/1C0AE63EEB7711EB80DE7C1ED8A014CE/DB5852DAF85D11EC930D6BE8F1222468.roa
Signing time: Thu 30 Jun 2022 10:17:34 +0000
ROA not before: Thu 30 Jun 2022 10:17:29 +0000
ROA not after: Sun 30 Jun 2030 10:17:29 +0000
asID: 328840
IP address blocks: 2c0f:4e00:c000::/35 maxlen: 35
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36960E7/1C0AE63EEB7711EB80DE7C1ED8A014CE/H025rGtjEIoZvc2-7P9EmELI1qA.crl
rsync://rpki.afrinic.net/repository/member_repository/F36960E7/1C0AE63EEB7711EB80DE7C1ED8A014CE/H025rGtjEIoZvc2-7P9EmELI1qA.mft
rsync://rpki.afrinic.net/repository/afrinic/H025rGtjEIoZvc2-7P9EmELI1qA.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 27 Nov 2024 00:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 370 (0x172)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36960E7AF/serialNumber=1F4DB9AC6B63108A19BDCDBEECFF449842C8D6A0
Validity
Not Before: Jun 30 10:17:29 2022 GMT
Not After : Jun 30 10:17:29 2030 GMT
Subject: CN=62bd783e-aba6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:f2:42:b9:5b:c8:d8:23:d9:b5:73:8d:cf:a7:
8a:39:be:a4:d2:83:78:37:06:ea:1d:88:aa:44:24:
d4:a7:28:ea:a1:ec:5e:fd:18:5f:9b:81:0f:45:ea:
a2:db:cd:82:2e:f1:90:13:5c:ba:b9:5c:31:75:ae:
30:6f:4a:4e:3e:2b:a9:75:a4:4f:3e:8c:a1:d1:b6:
32:7f:87:5c:db:d0:34:7c:cf:1e:62:69:a7:fc:31:
7e:d9:4c:30:cc:1d:b0:3a:eb:ae:22:f6:3a:51:3f:
08:1c:1d:11:d5:8a:c8:b6:c3:e5:80:2b:26:e9:33:
4f:e0:b2:99:c5:5c:bf:ee:ba:19:59:e2:6f:89:37:
74:14:f3:eb:21:9c:e6:00:7e:1a:2f:58:3e:a7:16:
1c:62:f3:a3:e1:a9:33:95:27:28:b6:43:72:42:04:
62:6c:42:21:52:61:e3:26:c8:3a:f5:61:95:09:d8:
e5:32:7f:1c:76:73:4f:11:fc:b7:6c:08:98:ef:a0:
56:32:50:42:c7:d8:03:a9:9b:d7:05:59:af:fd:f9:
ad:34:2e:25:9d:b4:a5:d9:63:c7:aa:88:dc:a3:e3:
b6:ed:de:53:8c:1c:93:ae:f9:2e:33:04:38:f2:a5:
6b:1e:29:c6:70:f6:43:74:61:df:71:2f:86:c8:20:
c0:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:AE:7E:F0:CF:D4:06:99:52:AE:59:C1:7E:6D:27:C8:3D:17:0C:55
X509v3 Authority Key Identifier:
keyid:1F:4D:B9:AC:6B:63:10:8A:19:BD:CD:BE:EC:FF:44:98:42:C8:D6:A0
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36960E7/1C0AE63EEB7711EB80DE7C1ED8A014CE/H025rGtjEIoZvc2-7P9EmELI1qA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/H025rGtjEIoZvc2-7P9EmELI1qA.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36960E7/1C0AE63EEB7711EB80DE7C1ED8A014CE/DB5852DAF85D11EC930D6BE8F1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2c0f:4e00:c000::/35
Signature Algorithm: sha256WithRSAEncryption
02:d0:dc:2b:56:d1:2e:5e:f7:a0:90:2e:c7:b0:33:9c:86:f2:
5c:4e:b2:f6:2d:80:93:71:d5:e7:28:d9:d9:af:08:28:2f:15:
25:29:aa:30:37:55:a1:6e:2b:e0:cb:94:78:90:1d:05:c7:06:
03:f4:07:06:25:62:12:fa:24:67:c4:a3:24:c8:5f:cf:51:61:
f6:f8:26:3f:15:e5:de:43:0e:cc:c8:8d:53:73:f0:85:b3:19:
b7:99:02:1a:e4:d5:d2:2e:fd:5b:0e:54:bc:db:7e:71:5c:49:
f3:8e:b4:cd:e0:f3:c2:d7:54:73:2e:4b:d6:b9:02:d2:aa:dc:
08:46:13:c3:f2:49:79:14:02:aa:30:4d:2e:2b:9f:1a:cb:69:
6c:bb:c0:ce:ba:57:26:78:fc:1d:3e:96:85:a3:ab:9a:56:f3:
86:72:53:c3:89:1d:95:7a:84:10:93:c3:00:48:fd:d9:b4:7f:
d3:26:2b:57:c8:dd:4d:23:56:9a:51:7d:de:e0:fa:7d:94:3e:
34:e2:ca:da:fb:f5:d6:00:09:ff:8a:a0:c7:07:47:10:09:1b:
c9:ca:66:77:40:72:3a:29:2e:d3:68:8e:46:2c:c8:46:4a:28:
55:95:cc:69:82:6d:7e:dc:4e:7e:2b:8c:65:35:0e:d1:93:e7:
93:5b:ca:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 02:48:39 2024 by rpki-client on console-ams.rpki-client.org