Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36BA80D/C705D8725A2411EAB8E9DC09F8AEA228/B418664AC23211EB98B10F16F8AEA228.roa
File: B418664AC23211EB98B10F16F8AEA228.roa (raw, json)
Hash identifier: M//9HpMML29hfmlSXu9lsnbBB8fRM3Bjn7WpzCV2kL8=
Subject key identifier: 13:8D:83:DB:58:43:48:16:2F:97:05:03:CD:53:F5:EA:10:19:53:E3
Certificate issuer: /CN=F36BA80DAF/serialNumber=AC2E52EE92BBC205A230FF77A19041DDD514D8F0
Certificate serial: 01ED
Authority key identifier: AC:2E:52:EE:92:BB:C2:05:A2:30:FF:77:A1:90:41:DD:D5:14:D8:F0
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/rC5S7pK7wgWiMP93oZBB3dUU2PA.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36BA80D/C705D8725A2411EAB8E9DC09F8AEA228/B418664AC23211EB98B10F16F8AEA228.roa
Signing time: Mon 31 May 2021 17:07:39 +0000
ROA not before: Mon 31 May 2021 17:07:35 +0000
ROA not after: Thu 31 May 2035 17:07:35 +0000
asID: 327926
IP address blocks: 2c0f:e8e0:40c0::/44 maxlen: 48
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36BA80D/C705D8725A2411EAB8E9DC09F8AEA228/rC5S7pK7wgWiMP93oZBB3dUU2PA.crl
rsync://rpki.afrinic.net/repository/member_repository/F36BA80D/C705D8725A2411EAB8E9DC09F8AEA228/rC5S7pK7wgWiMP93oZBB3dUU2PA.mft
rsync://rpki.afrinic.net/repository/afrinic/rC5S7pK7wgWiMP93oZBB3dUU2PA.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 493 (0x1ed)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36BA80DAF/serialNumber=AC2E52EE92BBC205A230FF77A19041DDD514D8F0
Validity
Not Before: May 31 17:07:35 2021 GMT
Not After : May 31 17:07:35 2035 GMT
Subject: CN=60b517db-4929
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:d5:40:4d:89:f0:a5:da:eb:09:4f:31:05:7c:
72:13:29:4b:d3:1b:fc:8c:51:d6:32:1e:ae:03:6f:
85:b5:1b:62:e9:92:2a:b6:e8:91:82:c2:4d:d6:15:
5b:56:8f:5b:21:35:08:2b:47:6a:58:ad:eb:e5:76:
f5:46:c5:f8:d7:56:3f:80:28:43:9b:5d:b8:de:75:
e7:b6:ca:4c:7c:79:b7:90:b1:ad:ff:a2:66:4c:1c:
6a:3f:f4:47:a1:3f:d3:b5:9c:c3:5a:63:1b:99:de:
fc:ca:9a:27:78:5a:91:37:d9:4c:f8:61:2d:fe:e3:
1e:33:1b:a1:76:5b:a9:81:8d:e9:c5:85:f3:c4:fb:
95:48:f2:8a:09:1f:fe:d5:d0:0e:ea:02:d3:17:0d:
5d:6b:2c:bf:e0:e9:70:11:a2:e4:5f:7b:b0:1d:e6:
00:95:7e:6a:57:ff:6f:ed:6d:99:5d:71:e6:81:c5:
66:43:0b:6d:d3:ee:0d:93:33:de:12:8d:bf:d0:ae:
21:44:61:3a:0a:dd:2b:ae:a9:bf:f3:75:c0:5f:f2:
0d:57:02:1b:0f:9d:01:d6:1f:5a:60:1b:a3:15:04:
ef:62:b9:86:42:69:d1:34:79:78:cb:0a:9d:29:1c:
d1:a7:d5:e5:bc:e1:94:fd:74:e5:95:64:20:60:7f:
2a:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:8D:83:DB:58:43:48:16:2F:97:05:03:CD:53:F5:EA:10:19:53:E3
X509v3 Authority Key Identifier:
keyid:AC:2E:52:EE:92:BB:C2:05:A2:30:FF:77:A1:90:41:DD:D5:14:D8:F0
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36BA80D/C705D8725A2411EAB8E9DC09F8AEA228/rC5S7pK7wgWiMP93oZBB3dUU2PA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/rC5S7pK7wgWiMP93oZBB3dUU2PA.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36BA80D/C705D8725A2411EAB8E9DC09F8AEA228/B418664AC23211EB98B10F16F8AEA228.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2c0f:e8e0:40c0::/44
Signature Algorithm: sha256WithRSAEncryption
a1:f8:c8:6b:b8:2e:1b:73:73:ad:d8:a8:d5:38:48:36:5f:cb:
1c:da:cc:bd:82:f4:ed:9f:4e:7d:68:6f:24:a3:e0:d9:07:3e:
43:19:45:ca:5f:14:c3:da:f2:80:6d:2d:cd:56:52:3c:4b:a7:
12:d6:5a:94:4c:7e:a6:81:9b:1e:01:b4:e8:43:fa:0f:5f:cb:
17:99:88:ed:68:02:f6:05:34:47:ff:ba:91:e1:32:80:2a:9a:
e6:1a:c3:60:35:4c:97:c3:d4:b6:07:04:4d:1b:ed:49:f3:d9:
55:a8:d7:0a:f1:53:10:ae:d0:35:30:f0:20:ba:59:d3:44:df:
82:42:c6:9e:5e:0f:e7:5d:25:53:1d:cc:b2:2f:ec:e9:5f:97:
2f:77:7f:a4:9e:48:86:2f:f3:cf:47:3c:30:c9:1e:a1:51:cb:
fe:a3:0d:93:ea:6e:16:78:fa:10:94:8b:98:11:e9:2d:91:27:
ae:ce:ba:32:75:e3:3f:a2:d5:f2:0f:28:6c:5b:49:c5:b4:1d:
38:96:78:8b:de:08:d0:9c:dc:ca:d2:ff:76:dc:84:06:12:5d:
3c:39:e9:9a:98:4e:77:3a:58:b1:07:e7:09:07:c3:03:69:b8:
67:96:de:b2:90:1d:24:bd:d8:21:9e:42:08:c3:66:48:e8:94:
f6:ee:eb:4c
-----BEGIN CERTIFICATE-----
MIIFhjCCBG6gAwIBAgICAe0wDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
QkE4MERBRjExMC8GA1UEBRMoQUMyRTUyRUU5MkJCQzIwNUEyMzBGRjc3QTE5MDQx
RERENTE0RDhGMDAeFw0yMTA1MzExNzA3MzVaFw0zNTA1MzExNzA3MzVaMBgxFjAU
BgNVBAMTDTYwYjUxN2RiLTQ5MjkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQCr1UBNifCl2usJTzEFfHITKUvTG/yMUdYyHq4Db4W1G2Lpkiq26JGCwk3W
FVtWj1shNQgrR2pYrevldvVGxfjXVj+AKEObXbjedee2ykx8ebeQsa3/omZMHGo/
9EehP9O1nMNaYxuZ3vzKmid4WpE32Uz4YS3+4x4zG6F2W6mBjenFhfPE+5VI8ooJ
H/7V0A7qAtMXDV1rLL/g6XARouRfe7Ad5gCVfmpX/2/tbZldceaBxWZDC23T7g2T
M94Sjb/QriFEYToK3Suuqb/zdcBf8g1XAhsPnQHWH1pgG6MVBO9iuYZCadE0eXjL
Cp0pHNGn1eW84ZT9dOWVZCBgfyqvAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUE42D
21hDSBYvlwUDzVP16hAZU+MwHwYDVR0jBBgwFoAUrC5S7pK7wgWiMP93oZBB3dUU
2PAwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNkJBODBEL0M3MDVEODcyNUEyNDExRUFCOEU5REMwOUY4QUVBMjI4L3JDNVM3
cEs3d2dXaU1QOTNvWkJCM2RVVTJQQS5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL3JDNVM3cEs3d2dXaU1QOTNvWkJCM2RVVTJQQS5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNkJBODBEL0M3MDVEODcyNUEyNDExRUFCOEU5REMwOUY4
QUVBMjI4L0I0MTg2NjRBQzIzMjExRUI5OEIxMEYxNkY4QUVBMjI4LnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwQsD+jgQMAwDQYJKoZIhvcN
AQELBQADggEBAKH4yGu4Lhtzc63YqNU4SDZfyxzazL2C9O2fTn1obySj4NkHPkMZ
RcpfFMPa8oBtLc1WUjxLpxLWWpRMfqaBmx4BtOhD+g9fyxeZiO1oAvYFNEf/upHh
MoAqmuYaw2A1TJfD1LYHBE0b7Unz2VWo1wrxUxCu0DUw8CC6WdNE34JCxp5eD+dd
JVMdzLIv7Olfly93f6SeSIYv889HPDDJHqFRy/6jDZPqbhZ4+hCUi5gR6S2RJ67O
ujJ14z+i1fIPKGxbScW0HTiWeIveCNCc3MrS/3bchAYSXTw56ZqYTnc6WLEH5wkH
wwNpuGeW3rKQHSS92CGeQgjDZkjolPbu60w=
-----END CERTIFICATE-----
Generated at Fri Nov 22 04:05:22 2024 by rpki-client on console-ams.rpki-client.org