Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36CF0F7/74C21A94BE0511EBAE0B5923F8AEA228/E0114852BE0911EB997B5929F8AEA228.roa
File: E0114852BE0911EB997B5929F8AEA228.roa (raw, json)
Hash identifier: qkC0poCx46txoL5wnx4sOAt23ikfDek1R6x0qXZ8vXM=
Subject key identifier: C1:C7:73:14:B0:B1:E1:0A:D1:B2:B0:FA:3F:BC:14:5F:B9:BD:07:B4
Certificate issuer: /CN=F36CF0F7AF/serialNumber=07EDB2AC72FAE90A00B56B3AB3365D277EA18EFD
Certificate serial: 05
Authority key identifier: 07:ED:B2:AC:72:FA:E9:0A:00:B5:6B:3A:B3:36:5D:27:7E:A1:8E:FD
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/B-2yrHL66QoAtWs6szZdJ36hjv0.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36CF0F7/74C21A94BE0511EBAE0B5923F8AEA228/E0114852BE0911EB997B5929F8AEA228.roa
Signing time: Wed 26 May 2021 10:05:19 +0000
ROA not before: Wed 26 May 2021 10:05:14 +0000
ROA not after: Tue 26 May 2026 10:05:14 +0000
asID: 328437
IP address blocks: 2c0f:ed38::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36CF0F7/74C21A94BE0511EBAE0B5923F8AEA228/B-2yrHL66QoAtWs6szZdJ36hjv0.crl
rsync://rpki.afrinic.net/repository/member_repository/F36CF0F7/74C21A94BE0511EBAE0B5923F8AEA228/B-2yrHL66QoAtWs6szZdJ36hjv0.mft
rsync://rpki.afrinic.net/repository/afrinic/B-2yrHL66QoAtWs6szZdJ36hjv0.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 03 May 2024 00:04:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5 (0x5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36CF0F7AF/serialNumber=07EDB2AC72FAE90A00B56B3AB3365D277EA18EFD
Validity
Not Before: May 26 10:05:14 2021 GMT
Not After : May 26 10:05:14 2026 GMT
Subject: CN=60ae1d5f-f835
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:52:b7:9c:61:10:48:2b:e8:29:44:05:1a:c3:
20:43:1e:ba:01:77:4a:8e:34:55:3c:c9:ef:0e:25:
cb:70:3f:0a:9a:14:cf:de:5e:c2:7b:11:01:d5:46:
dd:35:4b:13:ca:2d:ac:93:ca:60:b0:f3:bf:d9:db:
be:7c:2c:93:d2:26:f4:cd:6a:ff:57:fa:a6:b0:38:
ff:ea:65:eb:8c:88:75:d6:8d:17:c1:6a:c5:ea:30:
cd:dd:6d:7c:f3:73:bd:94:06:3f:1c:17:87:aa:f7:
f3:bd:60:24:ee:9a:75:15:9d:a3:ff:89:ce:3f:ac:
8c:6c:6c:3b:16:fb:5e:0a:c8:ec:e5:8c:9a:af:67:
24:5a:f4:67:a6:af:a5:4a:e8:a4:35:7c:5f:e1:7a:
f9:4b:74:ab:c7:54:00:20:fd:ed:f6:a5:5d:ad:a8:
55:33:0b:a7:ab:6e:ba:86:ef:ea:3f:bc:f5:88:1a:
40:fb:d8:ad:7c:6a:5b:09:8a:f4:84:21:a7:c0:74:
a6:c4:c8:c4:6b:00:fa:ef:92:05:1f:5e:2d:67:69:
74:97:00:00:8f:54:14:70:eb:27:02:c6:09:a2:04:
e9:8b:76:ce:2d:c4:e0:1b:9f:2b:bc:3e:c4:72:2f:
39:de:6b:5e:cb:b4:c3:ae:3f:24:81:56:08:25:41:
ac:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:C7:73:14:B0:B1:E1:0A:D1:B2:B0:FA:3F:BC:14:5F:B9:BD:07:B4
X509v3 Authority Key Identifier:
keyid:07:ED:B2:AC:72:FA:E9:0A:00:B5:6B:3A:B3:36:5D:27:7E:A1:8E:FD
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36CF0F7/74C21A94BE0511EBAE0B5923F8AEA228/B-2yrHL66QoAtWs6szZdJ36hjv0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/B-2yrHL66QoAtWs6szZdJ36hjv0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36CF0F7/74C21A94BE0511EBAE0B5923F8AEA228/E0114852BE0911EB997B5929F8AEA228.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2c0f:ed38::/32
Signature Algorithm: sha256WithRSAEncryption
71:70:c6:ad:1e:4e:0c:ae:2a:92:70:3c:0b:5c:a5:88:92:8d:
50:b9:52:7c:7a:36:75:58:49:a5:c3:66:d2:c3:64:28:c5:73:
7b:43:57:c6:bc:09:98:86:16:c5:55:ba:5b:19:b1:65:07:4b:
d2:f3:6f:15:4a:37:ac:3b:7a:d6:dc:91:44:f2:d8:8e:3a:86:
5a:e4:02:66:64:d8:d8:a0:04:78:71:0f:d6:12:f9:e7:fc:56:
e3:89:97:cd:d5:83:da:0d:5c:15:e3:71:1e:de:45:84:05:1e:
14:5b:45:09:ce:e8:44:4f:51:ec:20:a0:ac:b6:9c:fb:a1:e1:
d0:b7:20:ce:1f:c8:17:97:df:06:a3:88:fc:82:97:d3:ca:c6:
ec:dc:d6:a6:6a:f5:00:22:41:45:84:b9:9a:0c:6d:ae:fb:95:
ae:37:00:cc:1e:dd:66:85:b8:d7:66:4c:55:b1:a4:cf:43:20:
23:d2:6d:3b:fc:a6:39:40:66:50:7e:48:9a:bd:bb:03:82:2a:
d6:6b:02:1b:e3:8b:31:ac:64:37:d0:a1:ff:cc:5e:05:a1:e7:
18:be:a4:3a:43:ce:aa:3d:cd:37:c7:12:a2:82:17:59:87:c0:
c2:23:b0:0d:4b:05:d8:62:49:be:f0:ce:13:5d:e1:b0:ef:de:
33:ab:96:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 1 02:07:59 2024 by rpki-client on console-fra.rpki-client.org