Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3699B8E/FE20D820B12211E5B9294D4AF8AEA228/89433AF2042E11EBA6782612F8AEA228.roa
File: 89433AF2042E11EBA6782612F8AEA228.roa (raw, json)
Hash identifier: fYVRQ0io2BTLFn2lqVJHMZb8a+nPwuovmeRLf5YAMDY=
Subject key identifier: 83:B7:F2:F9:4C:14:26:59:14:C3:53:19:1F:F6:28:24:09:53:CB:9B
Certificate issuer: /CN=F3699B8EAF/serialNumber=A135E00B98CBF7DDF8AAF262386F8E1403AAC018
Certificate serial: 06E5
Authority key identifier: A1:35:E0:0B:98:CB:F7:DD:F8:AA:F2:62:38:6F:8E:14:03:AA:C0:18
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/oTXgC5jL9934qvJiOG-OFAOqwBg.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3699B8E/FE20D820B12211E5B9294D4AF8AEA228/89433AF2042E11EBA6782612F8AEA228.roa
Signing time: Thu 01 Oct 2020 21:39:09 +0000
ROA not before: Fri 02 Oct 2020 21:39:04 +0000
ROA not after: Wed 02 Oct 2030 21:39:04 +0000
asID: 61138
IP address blocks: 2c0f:f530::/44 maxlen: 44
2c0f:f530:20::/44 maxlen: 44
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3699B8E/FE20D820B12211E5B9294D4AF8AEA228/oTXgC5jL9934qvJiOG-OFAOqwBg.crl
rsync://rpki.afrinic.net/repository/member_repository/F3699B8E/FE20D820B12211E5B9294D4AF8AEA228/oTXgC5jL9934qvJiOG-OFAOqwBg.mft
rsync://rpki.afrinic.net/repository/afrinic/oTXgC5jL9934qvJiOG-OFAOqwBg.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1765 (0x6e5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3699B8EAF/serialNumber=A135E00B98CBF7DDF8AAF262386F8E1403AAC018
Validity
Not Before: Oct 2 21:39:04 2020 GMT
Not After : Oct 2 21:39:04 2030 GMT
Subject: CN=5f764c7c-cd01
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:a7:cc:9d:02:da:6c:66:1b:b7:cd:91:05:26:
8c:a1:76:e3:23:08:f6:cb:c5:bd:ce:62:e3:f7:b4:
90:87:3d:64:95:7b:3b:4a:1f:bf:5a:53:30:bc:9e:
cf:86:bb:fb:7c:d3:ad:a6:9b:6d:68:69:f4:d3:8a:
a9:ba:72:0d:a8:d3:3c:31:f7:d6:02:79:d2:7d:e2:
bf:c1:4d:64:09:2b:12:fc:94:79:0e:0d:a7:a4:df:
22:23:ed:ae:85:3f:47:1f:bc:0f:7d:b2:64:a2:18:
5f:7a:47:3c:33:4a:66:15:c2:4b:d2:fa:5b:ce:79:
ec:de:a0:e9:26:30:0d:76:3b:59:82:64:a2:7b:09:
db:e9:62:ec:55:76:3c:f9:f2:9e:71:2d:33:9d:09:
37:f5:ef:21:a3:e0:aa:e9:ff:59:85:62:c0:78:e1:
f7:29:af:96:30:20:4e:f6:ed:b0:45:1c:e4:5f:fd:
0a:58:39:cb:42:2f:51:0a:ec:ec:ca:3a:61:14:b0:
8a:a5:af:f6:c1:99:74:84:2b:f6:52:0e:48:e6:81:
0a:27:6d:08:47:e3:ce:00:d4:94:88:8a:ea:9a:00:
40:e1:8a:01:38:e1:ce:f1:e8:c4:00:19:29:32:a4:
92:1e:eb:b1:ef:27:cd:d3:6a:03:09:ff:a8:0a:1d:
70:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:B7:F2:F9:4C:14:26:59:14:C3:53:19:1F:F6:28:24:09:53:CB:9B
X509v3 Authority Key Identifier:
keyid:A1:35:E0:0B:98:CB:F7:DD:F8:AA:F2:62:38:6F:8E:14:03:AA:C0:18
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3699B8E/FE20D820B12211E5B9294D4AF8AEA228/oTXgC5jL9934qvJiOG-OFAOqwBg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/oTXgC5jL9934qvJiOG-OFAOqwBg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3699B8E/FE20D820B12211E5B9294D4AF8AEA228/89433AF2042E11EBA6782612F8AEA228.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2c0f:f530::/44
2c0f:f530:20::/44
Signature Algorithm: sha256WithRSAEncryption
3c:da:e4:8d:79:de:51:98:f0:4d:46:96:6f:43:10:48:79:43:
be:e4:d6:c0:6d:5f:bf:60:b6:e1:0e:14:75:2f:ad:03:0b:e2:
82:20:c2:63:4d:c8:fb:56:bd:0e:dc:8f:29:e2:bb:df:64:4c:
a7:ab:82:e0:9b:87:b7:65:53:56:f8:00:b2:27:43:7b:42:90:
7e:e6:fb:0c:56:f3:1e:6b:54:4f:6e:67:ce:63:56:83:31:e9:
62:2d:79:14:cd:78:2f:99:45:24:e1:83:35:48:11:9f:aa:9e:
61:9b:58:c9:34:47:08:03:cc:ec:ac:3f:4d:0d:cb:14:dc:e3:
6f:38:d3:0f:81:43:95:c8:8b:bb:b8:75:e1:e2:d2:9a:14:77:
1e:e3:fd:a1:72:51:50:7e:88:e4:e7:5e:34:93:b7:a4:ef:0f:
b5:90:16:25:0e:c7:09:8e:82:b2:84:12:9e:4d:76:a5:60:c1:
32:4b:03:9d:9c:f4:84:43:bc:c9:21:d5:67:7e:a6:b0:c2:c0:
69:3b:57:18:60:8b:b0:0d:e6:c7:1b:46:4c:73:46:75:fa:6b:
da:e2:ef:6b:0f:0b:cc:a2:51:0e:47:70:65:c8:ec:4d:7a:99:
1f:7b:29:5f:7f:24:c8:c9:c4:ef:8f:3e:8f:2f:7b:25:49:38:
6f:6c:ce:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:05:17 2024 by rpki-client on console-ams.rpki-client.org