Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36D0F50/5EAAA6B8258F11EBB70B7C19F8AEA228/580A8FD62F0911EEBE8C59724AD9E6FC.roa
File: 580A8FD62F0911EEBE8C59724AD9E6FC.roa (raw, json)
Hash identifier: Fs4fNL0rXdvY/fRVwDcLrFnypjvnphfSjG+YUlrhlQw=
Subject key identifier: 35:90:E6:C4:2D:CE:66:2B:E6:0C:5F:54:04:B4:9B:B7:F8:90:24:D9
Certificate issuer: /CN=F36D0F50AF/serialNumber=AE98A5FDAD2DC9F4FC1BE47F66857A8C47988102
Certificate serial: 0504
Authority key identifier: AE:98:A5:FD:AD:2D:C9:F4:FC:1B:E4:7F:66:85:7A:8C:47:98:81:02
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/rpil_a0tyfT8G-R_ZoV6jEeYgQI.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36D0F50/5EAAA6B8258F11EBB70B7C19F8AEA228/580A8FD62F0911EEBE8C59724AD9E6FC.roa
Signing time: Sun 30 Jul 2023 18:46:07 +0000
ROA not before: Sun 30 Jul 2023 18:46:04 +0000
ROA not after: Sat 30 Jul 2033 18:46:04 +0000
asID: 37119
IP address blocks: 105.174.8.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36D0F50/5EAAA6B8258F11EBB70B7C19F8AEA228/rpil_a0tyfT8G-R_ZoV6jEeYgQI.crl
rsync://rpki.afrinic.net/repository/member_repository/F36D0F50/5EAAA6B8258F11EBB70B7C19F8AEA228/rpil_a0tyfT8G-R_ZoV6jEeYgQI.mft
rsync://rpki.afrinic.net/repository/afrinic/rpil_a0tyfT8G-R_ZoV6jEeYgQI.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 27 Nov 2024 00:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1284 (0x504)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36D0F50AF/serialNumber=AE98A5FDAD2DC9F4FC1BE47F66857A8C47988102
Validity
Not Before: Jul 30 18:46:04 2023 GMT
Not After : Jul 30 18:46:04 2033 GMT
Subject: CN=64c6afef-a914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:ea:bf:d3:79:d4:3f:3e:e7:da:37:d6:2d:ed:
50:cf:3f:e8:75:67:91:3c:5b:4f:d0:c9:d8:bc:81:
29:9a:f7:4d:2c:da:74:f0:a0:c9:13:c9:06:3d:03:
39:87:90:e1:73:41:44:2f:33:f0:ce:fa:81:71:3d:
c2:2f:90:52:8b:a1:97:55:d2:cf:b0:bb:0f:0d:ee:
08:a7:a7:9b:bc:c5:33:cb:a3:c5:ad:03:93:33:4c:
1a:5c:8c:4c:cd:67:83:81:86:7e:a6:9f:6f:df:e8:
7f:2f:64:45:f2:7a:e1:d9:52:ad:48:65:a5:01:d2:
70:02:36:49:dd:3b:ca:bd:ee:29:82:82:1b:3b:0f:
7e:4d:97:20:97:04:2c:11:9f:40:5c:cf:77:6b:9f:
2c:35:95:9b:52:e5:2b:2d:f0:65:41:8e:75:07:55:
c8:31:f9:66:03:48:2b:91:31:f9:66:13:09:d4:2d:
98:e2:21:0c:79:3b:19:f5:97:48:97:12:c7:a6:09:
37:e6:21:72:83:50:37:23:75:db:7e:0f:b5:cf:e7:
de:ec:28:71:24:64:55:70:68:f9:a9:f0:c4:fc:59:
77:3d:2d:c3:3f:f0:c7:c6:b7:a5:b3:6b:b6:51:e6:
1a:1e:68:a6:af:41:a9:bb:08:f4:34:b4:2d:75:86:
b5:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:90:E6:C4:2D:CE:66:2B:E6:0C:5F:54:04:B4:9B:B7:F8:90:24:D9
X509v3 Authority Key Identifier:
keyid:AE:98:A5:FD:AD:2D:C9:F4:FC:1B:E4:7F:66:85:7A:8C:47:98:81:02
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36D0F50/5EAAA6B8258F11EBB70B7C19F8AEA228/rpil_a0tyfT8G-R_ZoV6jEeYgQI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/rpil_a0tyfT8G-R_ZoV6jEeYgQI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36D0F50/5EAAA6B8258F11EBB70B7C19F8AEA228/580A8FD62F0911EEBE8C59724AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
105.174.8.0/22
Signature Algorithm: sha256WithRSAEncryption
c6:ca:a4:e0:67:e4:bc:12:4c:dc:d3:2c:a9:b6:3e:f8:4f:7b:
c8:d9:56:11:84:75:8b:d3:c5:99:b1:2b:5d:34:1a:28:33:17:
54:04:35:33:24:8e:49:2e:02:1e:ac:74:68:cf:ab:3e:94:9b:
04:5b:77:7d:0f:21:92:78:0f:e6:8e:f2:56:17:54:69:64:08:
fb:dd:c2:bd:a3:d0:03:cd:ef:f5:2f:5d:17:9d:28:31:be:e3:
47:f9:d6:23:aa:80:2b:7c:2e:15:95:81:27:d3:f7:5c:75:d5:
b0:e8:18:eb:31:a8:95:94:af:90:b3:4e:4e:d4:52:8d:2f:cb:
8e:8b:95:22:c6:77:38:34:51:96:f4:2c:0d:58:b4:89:b0:c4:
92:81:85:99:8b:fc:6b:f2:a0:a2:e1:11:b1:e4:16:ca:7f:2a:
15:00:df:45:e0:cf:3a:0d:ee:3e:75:84:a8:59:e2:ec:d9:a6:
36:82:ae:88:aa:da:a9:e3:48:b8:96:3b:17:87:0c:f4:e3:0f:
98:58:d4:8b:08:9b:65:7c:dc:e1:8f:9d:77:bc:b8:f7:f5:c8:
c5:37:bd:99:ca:07:2e:56:f4:8c:ac:9a:41:38:ae:7c:20:f7:
ca:61:06:2c:e1:c6:33:02:3a:8c:41:a0:cc:e8:e5:3d:28:2e:
3b:c1:ab:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 02:48:46 2024 by rpki-client on console-ams.rpki-client.org