Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36D5C19/6D11B7167BA711E9B091553CF8AEA228/DD1E8AE47BAB11E98D80B33FF8AEA228.roa
File: DD1E8AE47BAB11E98D80B33FF8AEA228.roa (raw, json)
Hash identifier: BTzcxln9lknQk/0gio9sglyD4baCdk8/WR9c29o94Hk=
Subject key identifier: 3B:F1:72:5A:24:94:5F:45:7D:6A:67:C0:7C:8B:4A:4E:21:5A:B6:68
Certificate issuer: /CN=F36D5C19AF/serialNumber=40E435D7F31415AFCE57D0DE9509B7862F960A57
Certificate serial: 06
Authority key identifier: 40:E4:35:D7:F3:14:15:AF:CE:57:D0:DE:95:09:B7:86:2F:96:0A:57
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/QOQ11_MUFa_OV9DelQm3hi-WClc.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36D5C19/6D11B7167BA711E9B091553CF8AEA228/DD1E8AE47BAB11E98D80B33FF8AEA228.roa
Signing time: Tue 21 May 2019 09:36:09 +0000
ROA not before: Tue 21 May 2019 09:36:03 +0000
ROA not after: Thu 31 May 2029 09:36:03 +0000
asID: 37497
IP address blocks: 2c0f:f9e8::/32 maxlen: 64
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36D5C19/6D11B7167BA711E9B091553CF8AEA228/QOQ11_MUFa_OV9DelQm3hi-WClc.crl
rsync://rpki.afrinic.net/repository/member_repository/F36D5C19/6D11B7167BA711E9B091553CF8AEA228/QOQ11_MUFa_OV9DelQm3hi-WClc.mft
rsync://rpki.afrinic.net/repository/afrinic/QOQ11_MUFa_OV9DelQm3hi-WClc.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 21 May 2024 00:04:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6 (0x6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36D5C19AF/serialNumber=40E435D7F31415AFCE57D0DE9509B7862F960A57
Validity
Not Before: May 21 09:36:03 2019 GMT
Not After : May 31 09:36:03 2029 GMT
Subject: CN=5ce3c689-224e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:ad:18:28:3f:cc:1d:1b:0b:85:10:5b:7b:0a:
2d:73:07:0a:1f:ec:84:88:6f:c8:33:cc:18:94:09:
3a:e8:7e:42:a6:b2:e2:b2:e2:78:b3:bd:9b:5d:76:
56:81:ca:fd:ae:4e:46:8f:93:65:ef:5a:bb:f2:44:
63:27:e7:a9:66:1c:95:7b:30:b7:0e:92:6d:c9:9b:
e8:54:fd:22:0a:a8:18:26:ac:13:9a:fb:dd:95:7b:
8a:86:62:32:7f:51:b1:58:44:6c:92:85:96:a7:89:
1d:26:0b:30:bf:db:2f:f9:5c:53:c6:a7:a7:a1:16:
1e:a2:0c:15:8c:79:f3:08:f3:ae:1d:ce:a9:40:c0:
35:b3:21:c2:3e:d8:05:0b:e6:0c:59:8d:2f:0f:41:
19:ed:99:b2:f6:06:ca:99:dc:91:ba:b8:1f:87:3f:
ae:c3:37:a0:21:5b:37:75:c4:1f:12:b0:ea:a1:ac:
2a:18:8b:12:5c:88:9a:be:b5:0e:66:9b:e9:86:37:
70:ae:ab:3a:fa:2f:71:8c:04:d4:38:70:30:06:5f:
1f:e2:ff:ef:03:74:39:da:a1:96:25:a5:8b:87:b3:
b9:58:6d:6a:3d:63:9b:2e:e6:74:b5:73:ee:40:a1:
ec:7d:2a:02:b0:0a:69:42:7f:42:31:ce:64:bf:92:
d7:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:F1:72:5A:24:94:5F:45:7D:6A:67:C0:7C:8B:4A:4E:21:5A:B6:68
X509v3 Authority Key Identifier:
keyid:40:E4:35:D7:F3:14:15:AF:CE:57:D0:DE:95:09:B7:86:2F:96:0A:57
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36D5C19/6D11B7167BA711E9B091553CF8AEA228/QOQ11_MUFa_OV9DelQm3hi-WClc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/QOQ11_MUFa_OV9DelQm3hi-WClc.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36D5C19/6D11B7167BA711E9B091553CF8AEA228/DD1E8AE47BAB11E98D80B33FF8AEA228.roa
sbgp-ipAddrBlock: critical
IPv6:
2c0f:f9e8::/32
Signature Algorithm: sha256WithRSAEncryption
35:6a:fa:46:31:c9:81:d6:bf:a0:33:cf:d6:79:44:16:82:9e:
3c:40:30:0d:c7:2f:2a:3d:8d:5b:8b:88:71:b0:33:75:02:15:
ee:fc:38:ac:ed:fb:76:2e:67:b3:c3:99:54:8e:19:09:fc:2a:
8c:7e:02:d6:5f:e2:59:1e:c2:d4:e1:63:e4:c9:da:3a:d2:ac:
28:40:4a:7b:0d:f1:49:29:55:8e:03:b5:1b:66:2f:c5:b6:87:
c0:80:5d:b1:bb:8f:13:aa:24:04:2d:ad:3d:b2:6c:5d:29:22:
65:1e:b9:41:90:00:04:c0:53:6d:21:c7:78:49:ff:54:c1:de:
78:df:50:67:b5:2b:8f:9c:57:67:20:8f:3a:ab:f8:6d:10:cc:
06:b1:01:03:0f:80:0e:71:25:0c:8c:f7:8e:c1:cd:75:75:bc:
b5:94:78:50:55:8c:03:f1:07:6d:ae:04:a9:68:eb:67:6f:34:
4b:73:2e:12:f4:57:4d:a2:27:d6:3b:4b:5e:b6:55:7b:ba:39:
86:34:1b:9c:48:4a:0b:27:bc:46:91:1f:d0:dd:a8:69:b2:2c:
82:c4:55:35:d1:c4:e4:6a:cb:15:bc:5b:1b:b8:98:06:fc:8f:
3c:4d:0d:2e:4c:eb:8a:ab:8c:22:13:42:cd:b8:69:91:e7:b3:
b7:79:41:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 19 01:47:07 2024 by rpki-client on console-ams.rpki-client.org