Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36D6E6D/324E8CBC814711E98C0F4E24F8AEA228/4AAB98F0035911EB9D53632FF8AEA228.roa
File: 4AAB98F0035911EB9D53632FF8AEA228.roa (raw, json)
Hash identifier: u6MKKtyNGkyNHWMBVkyzfCJjg2ohp3vSDpNE9KtffTs=
Subject key identifier: 16:41:B6:C3:75:15:2B:32:3B:32:39:DB:41:25:0F:93:DF:60:DC:8E
Certificate issuer: /CN=F36D6E6DAF/serialNumber=E4C2E6BF4463C8EC342C455F3FE016E5CE53887F
Certificate serial: 0201
Authority key identifier: E4:C2:E6:BF:44:63:C8:EC:34:2C:45:5F:3F:E0:16:E5:CE:53:88:7F
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/5MLmv0RjyOw0LEVfP-AW5c5TiH8.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36D6E6D/324E8CBC814711E98C0F4E24F8AEA228/4AAB98F0035911EB9D53632FF8AEA228.roa
Signing time: Wed 30 Sep 2020 20:12:41 +0000
ROA not before: Wed 30 Sep 2020 20:12:37 +0000
ROA not after: Mon 30 Sep 2030 20:12:37 +0000
asID: 37599
IP address blocks: 2001:43f8:3e1::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36D6E6D/324E8CBC814711E98C0F4E24F8AEA228/5MLmv0RjyOw0LEVfP-AW5c5TiH8.crl
rsync://rpki.afrinic.net/repository/member_repository/F36D6E6D/324E8CBC814711E98C0F4E24F8AEA228/5MLmv0RjyOw0LEVfP-AW5c5TiH8.mft
rsync://rpki.afrinic.net/repository/afrinic/5MLmv0RjyOw0LEVfP-AW5c5TiH8.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 27 Nov 2024 00:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 513 (0x201)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36D6E6DAF/serialNumber=E4C2E6BF4463C8EC342C455F3FE016E5CE53887F
Validity
Not Before: Sep 30 20:12:37 2020 GMT
Not After : Sep 30 20:12:37 2030 GMT
Subject: CN=5f74e6b8-60fc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:26:a8:19:ce:a3:d7:56:39:b1:f6:37:91:07:
b3:96:a4:f8:e0:5b:e8:ea:13:5e:ce:57:e4:2f:b8:
4b:9d:95:d0:28:a2:17:36:c4:74:59:ed:89:a7:e3:
28:3d:1e:f4:70:82:c1:19:cb:fd:75:d9:17:78:ba:
f7:0a:99:47:9a:e6:69:27:be:7b:e3:03:24:63:c4:
29:19:f5:d6:b9:01:49:d5:54:3d:f9:51:f5:f6:b3:
98:74:4a:90:b5:ee:4a:fd:ce:86:26:18:48:44:9a:
f3:06:94:ed:30:d0:dd:78:76:e2:42:6f:f2:0a:71:
4f:be:4f:02:94:61:28:d4:c5:59:5b:76:9c:2f:b3:
d0:ef:64:51:29:4f:d0:61:b5:bc:09:37:f2:65:44:
4c:90:74:da:87:6a:72:c1:8f:e1:a1:a0:2c:42:6b:
a3:36:e6:9f:89:eb:f6:d1:dd:8e:43:24:48:85:d1:
be:4e:fc:ef:66:4d:16:f7:09:5a:f0:00:21:9f:a5:
9a:22:fe:d4:c0:1f:24:90:44:2d:8b:f7:50:7c:2d:
2b:63:df:30:34:bb:d7:96:e0:1e:35:d5:52:c4:e5:
f0:28:ae:d8:93:3d:ca:d4:13:df:2b:a5:de:6d:c3:
3c:04:8e:04:20:62:f2:99:d9:89:d8:08:f2:1a:01:
14:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:41:B6:C3:75:15:2B:32:3B:32:39:DB:41:25:0F:93:DF:60:DC:8E
X509v3 Authority Key Identifier:
keyid:E4:C2:E6:BF:44:63:C8:EC:34:2C:45:5F:3F:E0:16:E5:CE:53:88:7F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36D6E6D/324E8CBC814711E98C0F4E24F8AEA228/5MLmv0RjyOw0LEVfP-AW5c5TiH8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/5MLmv0RjyOw0LEVfP-AW5c5TiH8.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36D6E6D/324E8CBC814711E98C0F4E24F8AEA228/4AAB98F0035911EB9D53632FF8AEA228.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:43f8:3e1::/48
Signature Algorithm: sha256WithRSAEncryption
6e:12:36:d6:dd:57:d1:23:9c:ec:ce:8e:0c:5b:81:fe:84:5a:
fa:5f:26:21:25:a5:38:2d:5c:b5:87:ab:92:33:d1:55:5d:db:
5a:d5:3b:49:7c:da:6c:64:59:86:24:70:b7:c0:67:09:c6:e3:
b1:7d:95:c2:2e:ea:c2:b9:9f:3e:cf:94:12:e2:6f:4d:17:6d:
94:f5:14:88:a4:e3:4d:44:ff:b3:fe:ec:e2:c7:b5:c9:31:7d:
d3:5f:42:06:64:c5:cc:59:af:fd:63:5e:d6:7d:56:2e:1e:c2:
c9:ac:68:59:ac:50:b5:5d:e3:c2:3d:b1:80:6a:8d:7d:3b:23:
ca:f6:d2:39:86:b8:f1:1b:8b:54:49:1e:22:e2:2f:71:19:e6:
80:72:eb:63:ee:2f:5a:7d:fd:38:c8:bc:1d:61:16:13:50:55:
d5:ff:ee:3e:49:dc:d3:01:b8:ae:e4:54:13:68:40:48:f1:b9:
56:a1:c4:67:d8:e8:0b:ad:e5:ba:fd:8d:dc:d3:f4:ac:c6:da:
6c:0f:5b:dc:97:80:40:af:b2:e2:59:ed:ec:fa:f6:fe:4e:87:
69:e1:bf:e8:47:a4:6d:67:b0:3b:e3:52:5b:5d:13:a6:8a:9d:
07:97:ea:b6:06:b8:f5:71:c1:8b:a2:c9:7c:48:76:76:b0:57:
81:4f:fc:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 03:00:15 2024 by rpki-client on console-fra.rpki-client.org