Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36BA80D/C705D8725A2411EAB8E9DC09F8AEA228/88F6BBCEC23211EBBD21D715F8AEA228.roa
File: 88F6BBCEC23211EBBD21D715F8AEA228.roa (raw, json)
Hash identifier: 6D/mE5iRONvZimS8ac2OXzs/7V/jQV2FQOwxAWqpWYI=
Subject key identifier: 74:DA:70:77:B1:B2:06:0E:4A:C9:9E:DA:6A:BB:F0:7A:15:CE:CE:5F
Certificate issuer: /CN=F36BA80DAF/serialNumber=AC2E52EE92BBC205A230FF77A19041DDD514D8F0
Certificate serial: 01E9
Authority key identifier: AC:2E:52:EE:92:BB:C2:05:A2:30:FF:77:A1:90:41:DD:D5:14:D8:F0
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/rC5S7pK7wgWiMP93oZBB3dUU2PA.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36BA80D/C705D8725A2411EAB8E9DC09F8AEA228/88F6BBCEC23211EBBD21D715F8AEA228.roa
Signing time: Mon 31 May 2021 17:06:27 +0000
ROA not before: Mon 31 May 2021 17:06:23 +0000
ROA not after: Thu 31 May 2035 17:06:23 +0000
asID: 327926
IP address blocks: 2c0f:e8e0:4060::/44 maxlen: 48
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36BA80D/C705D8725A2411EAB8E9DC09F8AEA228/rC5S7pK7wgWiMP93oZBB3dUU2PA.crl
rsync://rpki.afrinic.net/repository/member_repository/F36BA80D/C705D8725A2411EAB8E9DC09F8AEA228/rC5S7pK7wgWiMP93oZBB3dUU2PA.mft
rsync://rpki.afrinic.net/repository/afrinic/rC5S7pK7wgWiMP93oZBB3dUU2PA.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 489 (0x1e9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36BA80DAF/serialNumber=AC2E52EE92BBC205A230FF77A19041DDD514D8F0
Validity
Not Before: May 31 17:06:23 2021 GMT
Not After : May 31 17:06:23 2035 GMT
Subject: CN=60b51793-4381
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:4e:bf:ee:01:c2:9a:be:fd:12:d6:77:37:b6:
f5:22:93:47:61:5b:a4:d0:14:ea:07:42:d4:36:49:
01:07:17:8a:ae:f4:e8:f5:ed:9a:a5:30:df:80:64:
94:95:7e:b2:56:7e:92:8b:c9:dc:10:64:d6:16:bd:
37:b3:92:a1:dd:37:a8:1c:99:d1:c4:c1:2d:29:85:
df:38:05:82:fb:b7:19:a4:27:cf:b0:40:dc:f8:84:
68:96:75:b8:cb:20:1d:45:66:8e:df:2b:aa:a5:e8:
10:77:fd:a9:e2:e8:57:a4:ec:2d:73:65:fb:68:87:
1f:32:61:fc:39:5a:7f:4e:bc:6e:5d:80:4e:5f:a8:
2c:d0:42:49:e2:f3:3b:ca:48:71:1d:ac:38:35:63:
c8:7b:b9:f8:5b:f6:a8:d9:8e:fe:e2:6d:eb:b5:50:
f3:87:80:4e:ab:4b:ab:37:e5:56:1a:31:50:a0:63:
9e:b9:17:3f:bc:02:0f:4f:2e:c8:f3:92:52:85:05:
09:80:98:69:0b:37:91:e8:3a:f5:bc:5e:1b:97:fa:
46:54:39:e6:87:41:db:41:44:a2:f0:5b:5e:7d:d4:
d8:bb:56:60:35:c1:55:dd:79:33:05:ce:d4:b1:0d:
d4:e2:e8:8f:d3:d1:38:f0:c2:c1:00:65:da:03:10:
45:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:DA:70:77:B1:B2:06:0E:4A:C9:9E:DA:6A:BB:F0:7A:15:CE:CE:5F
X509v3 Authority Key Identifier:
keyid:AC:2E:52:EE:92:BB:C2:05:A2:30:FF:77:A1:90:41:DD:D5:14:D8:F0
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36BA80D/C705D8725A2411EAB8E9DC09F8AEA228/rC5S7pK7wgWiMP93oZBB3dUU2PA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/rC5S7pK7wgWiMP93oZBB3dUU2PA.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36BA80D/C705D8725A2411EAB8E9DC09F8AEA228/88F6BBCEC23211EBBD21D715F8AEA228.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2c0f:e8e0:4060::/44
Signature Algorithm: sha256WithRSAEncryption
98:e2:ad:df:42:2c:42:c5:46:47:06:29:80:89:1d:82:12:c7:
c6:ae:0a:bd:3c:b4:3f:41:c5:70:11:4c:e3:12:52:53:72:8b:
a9:b2:af:1d:03:9d:01:ba:22:c6:f4:bb:1f:90:61:b8:17:55:
a6:fb:71:c8:61:a1:03:55:8f:13:8c:59:b9:26:69:f3:e3:ba:
42:a4:32:ac:b6:cb:74:81:ce:aa:2b:95:13:7a:01:08:45:f5:
b5:c7:25:8f:f4:4c:0a:55:98:ef:db:5b:a0:dd:f7:66:9b:3d:
ee:43:e8:c7:b6:da:d0:28:32:f3:46:b7:26:c5:d2:5a:0f:0d:
0d:77:6d:b1:c0:cd:c4:5b:d7:8d:1f:88:71:b9:f6:50:1b:72:
5a:10:a1:4a:7b:22:65:74:ec:11:9d:90:a6:56:99:9f:41:f4:
10:bf:02:0a:42:35:b4:a6:94:a9:8f:c3:ee:67:3b:e1:94:c9:
0c:41:8d:b0:72:f0:20:1c:da:91:76:6d:56:42:8d:4a:ce:eb:
49:30:e2:24:64:60:9c:fc:75:1d:14:44:cf:1b:03:80:7e:42:
1e:82:e6:a5:5f:63:16:d6:8a:31:c4:8e:30:d2:c0:c1:18:5b:
e3:3a:0e:d0:f3:3d:54:6f:25:dd:60:56:b3:87:bd:33:b7:a5:
45:d7:58:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:05:22 2024 by rpki-client on console-ams.rpki-client.org