Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36D0F50/5EAAA6B8258F11EBB70B7C19F8AEA228/970912BCD16C11ECA8CC13B4F1222468.roa
File: 970912BCD16C11ECA8CC13B4F1222468.roa (raw, json)
Hash identifier: jsYicEY0Iopy6U8r/KCssqiy8NqJ91N5eCh+J5AcwW4=
Subject key identifier: E1:17:0B:C9:A6:C2:33:A2:88:DF:63:64:E6:07:46:9E:33:D5:7B:50
Certificate issuer: /CN=F36D0F50AF/serialNumber=AE98A5FDAD2DC9F4FC1BE47F66857A8C47988102
Certificate serial: 02C3
Authority key identifier: AE:98:A5:FD:AD:2D:C9:F4:FC:1B:E4:7F:66:85:7A:8C:47:98:81:02
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/rpil_a0tyfT8G-R_ZoV6jEeYgQI.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36D0F50/5EAAA6B8258F11EBB70B7C19F8AEA228/970912BCD16C11ECA8CC13B4F1222468.roa
Signing time: Wed 11 May 2022 20:54:46 +0000
ROA not before: Wed 11 May 2022 20:54:43 +0000
ROA not after: Wed 15 May 2030 20:54:43 +0000
asID: 37119
IP address blocks: 2c0f:f888:dfff::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36D0F50/5EAAA6B8258F11EBB70B7C19F8AEA228/rpil_a0tyfT8G-R_ZoV6jEeYgQI.crl
rsync://rpki.afrinic.net/repository/member_repository/F36D0F50/5EAAA6B8258F11EBB70B7C19F8AEA228/rpil_a0tyfT8G-R_ZoV6jEeYgQI.mft
rsync://rpki.afrinic.net/repository/afrinic/rpil_a0tyfT8G-R_ZoV6jEeYgQI.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 707 (0x2c3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36D0F50AF/serialNumber=AE98A5FDAD2DC9F4FC1BE47F66857A8C47988102
Validity
Not Before: May 11 20:54:43 2022 GMT
Not After : May 15 20:54:43 2030 GMT
Subject: CN=627c2296-e380
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:1f:6c:e6:74:13:e0:81:28:df:6a:95:cf:63:
5f:46:39:7e:1e:88:d5:a2:b8:5e:18:e2:bb:37:09:
ea:fa:db:4c:2f:be:ee:7b:b1:35:23:e4:24:8f:60:
95:d6:c2:df:06:d5:de:6e:03:86:b9:8f:48:ee:fb:
32:32:11:2d:76:47:6a:47:92:f8:4b:39:6a:45:b3:
ea:b3:24:3b:ec:cb:54:72:d3:ca:06:3d:45:a9:9c:
38:2c:d5:f3:07:fd:12:fa:74:96:65:9e:cb:fa:56:
b6:b0:73:bb:3d:b6:92:0f:02:24:3f:07:da:6d:d8:
34:27:70:e4:6e:d3:8a:3f:f4:45:a4:e3:0a:85:4b:
2a:c4:70:63:fd:56:ad:74:f6:d5:3b:28:c2:21:88:
48:05:51:41:40:20:53:99:20:5a:7f:b5:54:c7:8b:
ef:f8:6b:a0:1d:39:be:92:68:25:eb:d8:fb:c8:bb:
a1:56:7a:58:37:0d:3e:cd:bc:d6:69:e2:31:61:4d:
e4:36:54:cf:75:b0:51:da:b0:ff:13:80:21:9b:09:
9f:29:32:52:87:72:7e:57:f3:36:ae:14:59:75:86:
70:cc:c8:8e:27:8e:61:0f:d6:61:7e:0b:3d:d6:8a:
53:6f:b8:54:6f:ce:44:a9:6a:78:60:53:de:52:72:
ab:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:17:0B:C9:A6:C2:33:A2:88:DF:63:64:E6:07:46:9E:33:D5:7B:50
X509v3 Authority Key Identifier:
keyid:AE:98:A5:FD:AD:2D:C9:F4:FC:1B:E4:7F:66:85:7A:8C:47:98:81:02
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36D0F50/5EAAA6B8258F11EBB70B7C19F8AEA228/rpil_a0tyfT8G-R_ZoV6jEeYgQI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/rpil_a0tyfT8G-R_ZoV6jEeYgQI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36D0F50/5EAAA6B8258F11EBB70B7C19F8AEA228/970912BCD16C11ECA8CC13B4F1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2c0f:f888:dfff::/48
Signature Algorithm: sha256WithRSAEncryption
66:8f:06:e0:4f:db:96:d2:cb:97:f1:30:e6:e6:49:c4:e6:7c:
9a:e0:b8:52:d2:96:01:6d:af:71:36:3d:fc:fc:c5:0a:7f:51:
09:b0:d4:b5:7e:6a:8d:98:07:66:05:2a:14:d6:75:f5:45:e2:
92:98:bc:dd:18:42:72:49:a1:09:b2:03:96:22:9d:f0:e7:f2:
19:cf:02:f9:cd:52:91:7c:23:f3:2e:ab:43:69:bc:70:7f:87:
31:13:1f:9b:09:45:b7:cf:d6:d7:40:4a:f8:97:21:de:9d:a2:
e2:c1:e1:fa:45:56:83:8d:24:a7:53:ff:65:b9:14:1e:09:ef:
f7:70:21:af:9f:47:a4:49:14:a4:d3:55:5b:26:62:58:ba:1b:
a3:db:09:60:34:e0:e7:26:df:5e:f5:82:74:1a:59:e5:17:37:
92:b9:a2:ff:7a:87:65:2e:dc:6d:4e:b5:14:b2:5d:1b:58:6b:
95:81:7e:a5:99:5d:0a:86:ef:b0:20:3d:0e:40:d7:0d:86:29:
b5:b2:f0:70:ec:12:03:93:8b:45:e3:50:b8:f1:23:07:86:74:
ab:51:29:df:8d:58:69:12:56:4c:3b:f0:75:44:ee:b4:29:39:
a0:a0:a5:06:7c:85:a7:23:2c:b7:26:95:d3:d5:49:95:d6:7e:
d5:a1:33:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:10:18 2024 by rpki-client on console-fra.rpki-client.org