Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36A2CD2/553F50F064E511E8968FEF2EF8AEA228/FF05885C64E511E899B3422FF8AEA228.roa
File: FF05885C64E511E899B3422FF8AEA228.roa (raw, json)
Hash identifier: SEgUfNXNKuWS5w5moDpD2nIXtoeuFn9n8YpzM5ve1qs=
Subject key identifier: 4C:DA:DD:49:5C:7A:72:CD:5C:6A:40:73:FE:70:BF:E3:E7:DA:AD:D7
Certificate issuer: /CN=F36A2CD2AF/serialNumber=335A53C1132E540C3AB5DF42F14887B3324DEB44
Certificate serial: 04
Authority key identifier: 33:5A:53:C1:13:2E:54:0C:3A:B5:DF:42:F1:48:87:B3:32:4D:EB:44
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/M1pTwRMuVAw6td9C8UiHszJN60Q.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36A2CD2/553F50F064E511E8968FEF2EF8AEA228/FF05885C64E511E899B3422FF8AEA228.roa
Signing time: Thu 31 May 2018 15:19:23 +0000
ROA not before: Thu 31 May 2018 15:19:17 +0000
ROA not after: Wed 31 May 2028 15:19:17 +0000
asID: 327817
IP address blocks: 2c0f:f798::/32 maxlen: 48
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36A2CD2/553F50F064E511E8968FEF2EF8AEA228/M1pTwRMuVAw6td9C8UiHszJN60Q.crl
rsync://rpki.afrinic.net/repository/member_repository/F36A2CD2/553F50F064E511E8968FEF2EF8AEA228/M1pTwRMuVAw6td9C8UiHszJN60Q.mft
rsync://rpki.afrinic.net/repository/afrinic/M1pTwRMuVAw6td9C8UiHszJN60Q.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 27 Nov 2024 00:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4 (0x4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36A2CD2AF/serialNumber=335A53C1132E540C3AB5DF42F14887B3324DEB44
Validity
Not Before: May 31 15:19:17 2018 GMT
Not After : May 31 15:19:17 2028 GMT
Subject: CN=5b10127a-a938
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:9c:d8:8d:0c:b0:f3:f2:9b:26:fe:1a:4b:2b:
63:bb:e2:8b:0d:fc:8e:25:da:e4:04:e9:06:bc:7b:
74:12:50:34:db:64:ef:50:2b:21:9e:7b:e1:d2:b5:
15:02:55:3a:61:a9:4d:5c:e7:39:6a:c7:d1:8c:c4:
94:c4:aa:1a:b0:08:70:e5:bf:ef:9e:55:e1:d1:40:
cc:f5:41:b9:67:b6:19:be:1f:22:07:e2:da:91:59:
1d:47:33:2a:97:c1:3e:86:1f:13:68:a5:51:ad:d5:
a3:a9:24:6a:a5:8e:72:37:37:80:7c:0c:56:e3:33:
83:88:9c:94:a1:08:15:b1:c5:2c:fb:2b:d1:b8:13:
2e:3a:5b:74:80:9f:67:1d:8f:a6:1c:20:06:89:05:
37:aa:33:8a:59:13:00:c6:30:f2:cc:c4:04:86:44:
20:f7:59:cc:6d:fe:4d:64:37:ed:63:37:19:f4:75:
38:1e:44:97:a8:cb:54:d6:0d:ad:b1:10:fa:91:db:
db:1c:53:36:f5:1a:fc:a8:34:d6:00:1c:2f:38:d3:
a5:c0:a1:ba:04:ab:c1:8d:60:99:cd:fc:15:60:85:
f3:5f:69:9a:a3:4e:e5:d7:91:31:17:7e:1b:0e:a3:
f7:ac:45:40:74:01:8b:23:ed:78:15:ae:89:b2:c0:
1b:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:DA:DD:49:5C:7A:72:CD:5C:6A:40:73:FE:70:BF:E3:E7:DA:AD:D7
X509v3 Authority Key Identifier:
keyid:33:5A:53:C1:13:2E:54:0C:3A:B5:DF:42:F1:48:87:B3:32:4D:EB:44
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36A2CD2/553F50F064E511E8968FEF2EF8AEA228/M1pTwRMuVAw6td9C8UiHszJN60Q.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/M1pTwRMuVAw6td9C8UiHszJN60Q.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36A2CD2/553F50F064E511E8968FEF2EF8AEA228/FF05885C64E511E899B3422FF8AEA228.roa
sbgp-ipAddrBlock: critical
IPv6:
2c0f:f798::/32
Signature Algorithm: sha256WithRSAEncryption
54:4f:ac:7a:5f:be:1e:25:32:88:d2:0e:07:00:37:f7:9b:12:
a0:e3:3d:35:9f:1d:59:ec:72:79:3a:a0:69:49:2e:9d:b3:b5:
d7:9c:32:ba:61:c9:12:cc:93:e4:73:8c:89:0d:97:47:44:f8:
16:b5:5f:29:99:5b:31:d8:6d:5c:e3:c6:14:77:e9:9b:a4:fe:
a2:7f:6c:cc:80:90:e9:95:ad:42:42:ab:7a:c2:05:1e:5f:18:
c0:4a:93:3a:54:13:d7:d2:33:8a:23:89:d8:14:c4:79:5f:70:
1c:3e:2c:8a:8e:77:2d:84:7e:5f:fb:47:7e:ca:6b:1c:0e:7f:
8b:78:44:1e:19:24:92:67:6c:2b:11:e8:6e:b7:05:64:fb:1e:
a2:0c:0e:43:6e:fe:bc:b5:2e:f3:d8:b3:51:4d:87:8b:3f:56:
75:e3:5c:20:62:bb:50:16:76:c4:8b:87:ee:f2:2a:b4:76:3c:
0b:21:86:0f:f0:a5:da:3b:0b:d2:1e:d6:bf:15:59:4b:3f:dd:
4b:c2:57:d4:0b:c7:d0:65:68:e9:eb:d6:3a:bd:9c:93:8d:00:
0e:3b:e9:e1:53:ac:f8:92:f4:e0:89:3b:1a:22:0a:fa:c0:6b:
de:de:1c:14:0a:02:8d:61:48:0d:6e:ae:63:f9:4c:5f:35:8c:
7c:d0:14:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 03:00:10 2024 by rpki-client on console-fra.rpki-client.org