Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3699B8E/FE20D820B12211E5B9294D4AF8AEA228/FE5120C28FC111EDA79FCAC6F1222468.roa
File: FE5120C28FC111EDA79FCAC6F1222468.roa (raw, json)
Hash identifier: lagFk2mFf27o4rt0Ohp9C1TojQSFtfsxgyTlz5cUfvY=
Subject key identifier: D4:B1:C7:93:09:19:01:5D:05:10:C7:74:21:7D:4E:2F:B5:5C:86:61
Certificate issuer: /CN=F3699B8EAF/serialNumber=A135E00B98CBF7DDF8AAF262386F8E1403AAC018
Certificate serial: 0A33
Authority key identifier: A1:35:E0:0B:98:CB:F7:DD:F8:AA:F2:62:38:6F:8E:14:03:AA:C0:18
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/oTXgC5jL9934qvJiOG-OFAOqwBg.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3699B8E/FE20D820B12211E5B9294D4AF8AEA228/FE5120C28FC111EDA79FCAC6F1222468.roa
Signing time: Mon 09 Jan 2023 02:04:48 +0000
ROA not before: Mon 09 Jan 2023 02:04:44 +0000
ROA not after: Tue 01 Jan 2030 02:04:44 +0000
asID: 212149
IP address blocks: 2c0f:f530:b00b::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3699B8E/FE20D820B12211E5B9294D4AF8AEA228/oTXgC5jL9934qvJiOG-OFAOqwBg.crl
rsync://rpki.afrinic.net/repository/member_repository/F3699B8E/FE20D820B12211E5B9294D4AF8AEA228/oTXgC5jL9934qvJiOG-OFAOqwBg.mft
rsync://rpki.afrinic.net/repository/afrinic/oTXgC5jL9934qvJiOG-OFAOqwBg.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 19 May 2024 00:04:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2611 (0xa33)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3699B8EAF/serialNumber=A135E00B98CBF7DDF8AAF262386F8E1403AAC018
Validity
Not Before: Jan 9 02:04:44 2023 GMT
Not After : Jan 1 02:04:44 2030 GMT
Subject: CN=63bb7640-c970
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:cf:a7:9d:e1:eb:b4:92:e2:d8:9c:21:89:ba:
03:88:a7:12:46:f3:59:e5:31:56:87:0c:aa:4c:06:
89:cf:98:fb:78:09:75:d7:c8:1c:1c:1f:67:83:71:
a3:81:a3:a3:7c:cf:37:8b:48:9b:94:0d:81:f4:c6:
56:71:dd:2f:90:0c:6c:a6:a7:23:81:ad:f3:d2:45:
08:e5:6b:c3:36:a1:5a:b6:56:c4:8c:1e:37:fb:99:
07:de:99:5e:1a:b9:9b:25:f2:6f:a4:ee:0a:46:89:
bd:64:68:39:00:f9:f8:35:8a:50:fb:bf:32:05:9b:
10:34:8a:f4:d7:da:43:58:e7:38:a3:7c:79:64:fd:
af:a4:75:76:d8:ef:a6:ad:a6:ac:18:02:04:b1:c1:
6f:0c:db:8a:84:0f:0e:ba:a3:b8:0d:99:20:d1:2b:
06:20:15:68:12:08:61:9b:dd:6d:f3:1d:fa:fc:1c:
e6:01:12:9f:4b:01:49:45:52:7c:d6:54:a3:ea:0a:
ef:49:cc:12:4a:53:3c:18:31:bd:a8:9e:54:eb:ab:
f4:9d:16:0b:48:e7:96:bd:16:79:53:3b:1e:a4:71:
c5:0e:15:43:8c:91:cd:71:46:40:70:1c:eb:b7:b3:
38:bb:fa:ec:f2:45:a7:95:73:f4:10:94:a1:fc:9c:
59:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:B1:C7:93:09:19:01:5D:05:10:C7:74:21:7D:4E:2F:B5:5C:86:61
X509v3 Authority Key Identifier:
keyid:A1:35:E0:0B:98:CB:F7:DD:F8:AA:F2:62:38:6F:8E:14:03:AA:C0:18
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3699B8E/FE20D820B12211E5B9294D4AF8AEA228/oTXgC5jL9934qvJiOG-OFAOqwBg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/oTXgC5jL9934qvJiOG-OFAOqwBg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3699B8E/FE20D820B12211E5B9294D4AF8AEA228/FE5120C28FC111EDA79FCAC6F1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2c0f:f530:b00b::/48
Signature Algorithm: sha256WithRSAEncryption
a6:1c:bf:4c:26:0e:3c:e1:53:c6:61:dc:0e:e5:53:bc:79:e6:
82:dc:ad:20:4f:9c:82:18:e8:33:3c:70:64:3b:74:1f:2d:31:
10:67:34:0d:f3:b2:ed:90:88:29:7a:b4:8a:5a:bd:d1:e1:dd:
a7:25:63:ac:a6:6d:81:43:c1:9e:d9:82:d2:1d:35:2d:84:cf:
34:e0:52:cc:90:65:af:99:53:34:72:bb:3b:3f:e0:6a:6e:91:
91:ad:c1:5c:a3:a1:70:f4:c8:f7:a9:83:5c:79:fe:f6:46:7c:
d4:5c:da:1a:2d:58:7d:65:f5:a4:f7:d3:da:cb:09:05:55:3f:
8a:d7:26:f2:6d:04:85:79:29:0d:b4:58:ea:78:95:25:66:36:
96:61:9a:54:d4:b1:ea:a8:1b:a5:8d:11:0c:db:64:9f:c8:e0:
e4:fb:25:6c:cb:fd:7a:1b:48:8e:a1:9f:c0:85:eb:89:3d:51:
af:ba:4b:f4:22:6c:ea:c4:15:b8:03:b8:23:8f:c2:0f:27:f5:
f9:91:7d:a6:1b:48:8a:f6:c6:c2:a5:ab:f4:62:55:67:89:31:
e8:bc:17:8d:ce:96:75:73:03:08:07:98:bf:44:09:cc:d0:f5:
7e:45:93:f5:85:ac:4e:af:6f:b0:e8:4a:77:89:38:6e:e8:47:
ab:92:1b:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 17 01:47:14 2024 by rpki-client on console-fra.rpki-client.org