Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36CC035/71F69968715811ED8B19339FF1222468/78EDAAFC715A11EDB2D29DA4F1222468.roa
File: 78EDAAFC715A11EDB2D29DA4F1222468.roa (raw, json)
Hash identifier: tKSxlw7ALXpHNoZDdgrLM4qLgdYB9rNKvkhqZ1JebT8=
Subject key identifier: 42:43:0B:81:26:62:07:D0:B5:0E:10:40:2B:AF:58:A2:D2:66:41:23
Certificate issuer: /CN=F36CC035AF/serialNumber=E3B07BB9D0957749FFE48C7E7325A9E11B416AB9
Certificate serial: 0C
Authority key identifier: E3:B0:7B:B9:D0:95:77:49:FF:E4:8C:7E:73:25:A9:E1:1B:41:6A:B9
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/47B7udCVd0n_5Ix-cyWp4RtBark.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36CC035/71F69968715811ED8B19339FF1222468/78EDAAFC715A11EDB2D29DA4F1222468.roa
Signing time: Thu 01 Dec 2022 09:28:11 +0000
ROA not before: Thu 01 Dec 2022 09:28:07 +0000
ROA not after: Wed 01 Dec 2032 09:28:07 +0000
asID: 37009
IP address blocks: 2c0f:f778::/32 maxlen: 64
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36CC035/71F69968715811ED8B19339FF1222468/47B7udCVd0n_5Ix-cyWp4RtBark.crl
rsync://rpki.afrinic.net/repository/member_repository/F36CC035/71F69968715811ED8B19339FF1222468/47B7udCVd0n_5Ix-cyWp4RtBark.mft
rsync://rpki.afrinic.net/repository/afrinic/47B7udCVd0n_5Ix-cyWp4RtBark.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12 (0xc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36CC035AF/serialNumber=E3B07BB9D0957749FFE48C7E7325A9E11B416AB9
Validity
Not Before: Dec 1 09:28:07 2022 GMT
Not After : Dec 1 09:28:07 2032 GMT
Subject: CN=638873ab-cfe5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:6c:e2:bf:6e:a5:db:95:76:72:5f:6d:70:4b:
1a:63:f2:b3:8e:4d:81:d3:22:ec:9f:9e:ef:c4:ec:
3f:3f:b4:1e:e3:2a:ea:21:c5:31:8d:86:38:9e:cd:
df:1a:82:d0:f9:41:23:89:0e:3a:3e:84:e0:48:ee:
5d:06:9b:3f:f8:d3:b2:51:ab:18:6b:f8:bf:26:15:
2f:df:8a:90:61:68:10:9f:12:7d:bb:d8:0c:1f:1d:
fd:7d:61:80:e3:5e:e1:47:45:6b:c6:3c:fd:0d:94:
39:fa:5c:6f:7d:b6:0f:b8:d9:94:1b:bd:1a:eb:7e:
a5:c7:0d:70:48:b2:79:8c:79:09:87:ce:cd:c8:f2:
29:8a:02:d9:e4:a1:c5:22:a8:c7:a6:f0:62:d8:f7:
f3:b9:6a:b0:37:cc:ce:23:13:a3:07:7c:c8:0f:2d:
3b:a3:52:52:68:b2:87:97:d2:1f:85:cc:a2:fa:54:
3c:89:7d:d5:68:5f:c9:38:aa:e8:1d:11:2d:16:bd:
d7:34:bd:e9:e7:e8:c3:5e:e2:78:65:59:6f:a5:ca:
b2:38:a3:a2:76:09:4d:c9:37:19:09:3b:d9:93:5c:
fa:79:93:b4:49:8a:cc:fd:b4:5a:9e:8a:0a:aa:19:
5e:8b:ba:c9:a5:3c:95:f6:0d:41:67:57:e4:ec:05:
2b:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:43:0B:81:26:62:07:D0:B5:0E:10:40:2B:AF:58:A2:D2:66:41:23
X509v3 Authority Key Identifier:
keyid:E3:B0:7B:B9:D0:95:77:49:FF:E4:8C:7E:73:25:A9:E1:1B:41:6A:B9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36CC035/71F69968715811ED8B19339FF1222468/47B7udCVd0n_5Ix-cyWp4RtBark.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/47B7udCVd0n_5Ix-cyWp4RtBark.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36CC035/71F69968715811ED8B19339FF1222468/78EDAAFC715A11EDB2D29DA4F1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2c0f:f778::/32
Signature Algorithm: sha256WithRSAEncryption
12:e1:e9:7a:3f:5d:87:b5:35:07:2d:54:e0:9c:56:5d:56:59:
68:da:cb:87:7e:34:3a:d8:56:86:a7:36:ba:ad:82:12:60:8d:
a7:18:17:cd:46:6b:91:e3:51:86:e1:c3:39:e4:66:31:8c:e5:
70:34:93:fc:66:62:3f:ce:70:9f:33:d7:4b:fb:c5:9c:15:f8:
04:83:10:69:41:81:d7:bc:59:c0:64:0e:c8:6e:43:f2:5f:b3:
61:ba:a5:55:bc:a2:10:eb:d2:06:8b:7b:e1:ed:9c:16:5d:9a:
62:05:9e:bc:32:c5:6e:46:85:77:7f:ae:ed:44:3e:fe:ea:81:
ae:a5:54:c4:d1:64:87:fe:c4:4b:f0:16:12:78:8e:31:8e:69:
78:f1:d6:68:50:3c:16:07:0b:43:de:f9:fd:87:68:e1:e0:0e:
f3:05:58:b0:7e:52:15:76:04:8e:5a:31:66:d3:88:2b:22:fd:
dc:0f:29:b5:07:3a:3f:95:d2:79:2a:7d:52:5c:41:1a:08:43:
19:95:a8:7b:cf:22:f8:a8:d1:25:bc:4e:32:33:44:cd:01:5f:
d1:0f:cf:27:68:60:8a:ef:2f:81:2c:4d:96:3f:4f:39:d1:c4:
4a:8f:83:c5:05:e3:96:6f:43:73:22:5c:59:80:05:ed:8f:c3:
07:51:e5:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 03:52:59 2024 by rpki-client on console-fra.rpki-client.org