Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36D8DFA/0E9B19BA140A11E5A7F5FC4CF8AEA228/8A1CC04C140B11E58809AA4DF8AEA228.roa
File: 8A1CC04C140B11E58809AA4DF8AEA228.roa (raw, json)
Hash identifier: dCL0QZzcisyVW5isLNpIzzEFj2Pji8MJ++4ffINcbPU=
Subject key identifier: D1:43:BB:14:7A:49:62:10:BC:57:5A:5D:55:59:58:DC:3A:2B:0B:BD
Certificate issuer: /CN=F36D8DFAAF/serialNumber=D668BECAF3CB14DB624A3425D666609BF27B52EE
Certificate serial: 08
Authority key identifier: D6:68:BE:CA:F3:CB:14:DB:62:4A:34:25:D6:66:60:9B:F2:7B:52:EE
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/1mi-yvPLFNtiSjQl1mZgm_J7Uu4.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36D8DFA/0E9B19BA140A11E5A7F5FC4CF8AEA228/8A1CC04C140B11E58809AA4DF8AEA228.roa
Signing time: Tue 16 Jun 2015 09:38:47 +0000
ROA not before: Tue 16 Jun 2015 09:39:04 +0000
ROA not after: Mon 16 Jun 2025 09:39:04 +0000
asID: 37271
IP address blocks: 2c0f:fa90:f00::/40 maxlen: 40
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36D8DFA/0E9B19BA140A11E5A7F5FC4CF8AEA228/1mi-yvPLFNtiSjQl1mZgm_J7Uu4.crl
rsync://rpki.afrinic.net/repository/member_repository/F36D8DFA/0E9B19BA140A11E5A7F5FC4CF8AEA228/1mi-yvPLFNtiSjQl1mZgm_J7Uu4.mft
rsync://rpki.afrinic.net/repository/afrinic/1mi-yvPLFNtiSjQl1mZgm_J7Uu4.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8 (0x8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36D8DFAAF/serialNumber=D668BECAF3CB14DB624A3425D666609BF27B52EE
Validity
Not Before: Jun 16 09:39:04 2015 GMT
Not After : Jun 16 09:39:04 2025 GMT
Subject: CN=557feea7-dd4d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:8f:07:22:06:7e:92:ec:8b:b0:70:e4:9d:d1:
18:36:34:f7:21:68:b0:32:0b:24:50:02:93:fd:40:
79:e7:24:d9:77:78:05:6a:49:a4:07:f3:86:33:05:
aa:03:2b:e5:18:4d:1c:d9:ad:5b:14:bd:75:c9:ff:
48:48:ba:2c:40:6e:ec:9b:0e:a0:78:0a:04:4d:f0:
c7:d0:e6:a9:92:8a:27:b9:6c:4e:3e:01:e4:c1:a4:
8d:f9:7f:1a:af:35:4a:23:77:36:56:8d:9f:67:16:
b7:83:eb:b6:35:19:8d:3b:b2:bb:87:a6:f3:3a:a6:
1e:68:61:02:3a:34:34:9b:f0:57:68:9c:28:84:af:
b0:61:54:8f:44:6f:61:66:5e:c8:c5:69:a9:37:d9:
fa:6a:7e:eb:6a:8b:1c:af:dc:37:95:aa:b2:68:c0:
78:e0:bb:22:be:ef:5c:61:4c:dd:26:04:c8:3d:7d:
b9:3b:db:5d:9f:21:16:88:cc:46:22:a1:67:9a:65:
14:ae:46:13:53:e4:e8:1c:58:89:eb:03:4d:da:45:
d2:e5:47:66:db:f4:de:47:8b:7e:42:1b:b9:de:1a:
70:73:2a:82:fa:d9:b2:7d:fe:3f:5a:2e:8b:a1:9b:
f1:80:e0:29:53:47:da:ef:7f:72:5a:09:32:92:9c:
a7:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:43:BB:14:7A:49:62:10:BC:57:5A:5D:55:59:58:DC:3A:2B:0B:BD
X509v3 Authority Key Identifier:
keyid:D6:68:BE:CA:F3:CB:14:DB:62:4A:34:25:D6:66:60:9B:F2:7B:52:EE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36D8DFA/0E9B19BA140A11E5A7F5FC4CF8AEA228/1mi-yvPLFNtiSjQl1mZgm_J7Uu4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/1mi-yvPLFNtiSjQl1mZgm_J7Uu4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36D8DFA/0E9B19BA140A11E5A7F5FC4CF8AEA228/8A1CC04C140B11E58809AA4DF8AEA228.roa
sbgp-ipAddrBlock: critical
IPv6:
2c0f:fa90:f00::/40
Signature Algorithm: sha256WithRSAEncryption
24:55:54:95:97:20:f0:15:2b:9b:1f:8b:32:5d:58:d1:18:8b:
96:e6:bd:1d:db:30:f9:7e:be:56:2c:16:19:c3:94:02:8e:18:
76:84:75:ac:eb:7e:1d:0a:51:aa:c4:a2:eb:a0:95:06:78:0e:
6b:62:28:e7:e0:4c:23:1f:88:62:32:44:43:67:bc:fd:fa:bc:
b7:4e:41:fd:b9:44:cc:29:0b:b1:e9:7a:92:bf:79:f1:44:d4:
04:60:34:e4:cb:ed:0d:49:40:72:2c:1f:01:e6:5e:6d:52:59:
90:67:e4:5e:27:97:ee:8a:c7:ef:26:c5:af:21:40:28:7e:25:
f0:6b:32:98:bc:de:2c:b4:53:fa:9d:32:c9:ab:17:07:09:77:
af:89:5f:e1:7e:25:b9:98:2d:72:a3:3e:d1:25:d0:2b:68:2d:
01:9a:72:01:65:41:2a:35:4b:87:4d:e3:72:8a:9e:49:86:8f:
9b:6c:b1:ac:e0:a5:38:8b:7c:15:04:bb:78:d9:e8:64:0c:43:
53:63:ca:8b:fd:80:3e:6b:5a:d5:29:0f:ed:05:05:bd:28:9e:
63:6b:f5:df:ea:99:12:c8:c8:9d:25:3e:82:c5:54:ea:d6:42:
69:e8:ca:8b:81:24:be:72:dd:e0:04:31:9b:c7:59:0b:c9:78:
a8:09:73:f7
-----BEGIN CERTIFICATE-----
MIIFTTCCBDWgAwIBAgIBCDANBgkqhkiG9w0BAQsFADBIMRMwEQYDVQQDEwpGMzZE
OERGQUFGMTEwLwYDVQQFEyhENjY4QkVDQUYzQ0IxNERCNjI0QTM0MjVENjY2NjA5
QkYyN0I1MkVFMB4XDTE1MDYxNjA5MzkwNFoXDTI1MDYxNjA5MzkwNFowGDEWMBQG
A1UEAxMNNTU3ZmVlYTctZGQ0ZDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBAKWPByIGfpLsi7Bw5J3RGDY09yFosDILJFACk/1Aeeck2Xd4BWpJpAfzhjMF
qgMr5RhNHNmtWxS9dcn/SEi6LEBu7JsOoHgKBE3wx9DmqZKKJ7lsTj4B5MGkjfl/
Gq81SiN3NlaNn2cWt4PrtjUZjTuyu4em8zqmHmhhAjo0NJvwV2icKISvsGFUj0Rv
YWZeyMVpqTfZ+mp+62qLHK/cN5WqsmjAeOC7Ir7vXGFM3SYEyD19uTvbXZ8hFojM
RiKhZ5plFK5GE1Pk6BxYiesDTdpF0uVHZtv03keLfkIbud4acHMqgvrZsn3+P1ou
i6Gb8YDgKVNH2u9/cloJMpKcp9MCAwEAAaOCAnAwggJsMB0GA1UdDgQWBBTRQ7sU
ekliELxXWl1VWVjcOisLvTAfBgNVHSMEGDAWgBTWaL7K88sU22JKNCXWZmCb8ntS
7jAOBgNVHQ8BAf8EBAMCB4AwgZUGA1UdHwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6
Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVyX3JlcG9zaXRvcnkv
RjM2RDhERkEvMEU5QjE5QkExNDBBMTFFNUE3RjVGQzRDRjhBRUEyMjgvMW1pLXl2
UExGTnRpU2pRbDFtWmdtX0o3VXU0LmNybDBnBggrBgEFBQcBAQRbMFkwVwYIKwYB
BQUHMAKGS3JzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L2Fmcmlu
aWMvMW1pLXl2UExGTnRpU2pRbDFtWmdtX0o3VXU0LmNlcjBPBgNVHSABAf8ERTBD
MEEGCCsGAQUFBw4CMDUwMwYIKwYBBQUHAgEWJ2h0dHBzOi8vcnBraS5hZnJpbmlj
Lm5ldC9wb2xpY3kvQ1BTLnBkZjCBpAYIKwYBBQUHAQsEgZcwgZQwgZEGCCsGAQUF
BzALhoGEcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVy
X3JlcG9zaXRvcnkvRjM2RDhERkEvMEU5QjE5QkExNDBBMTFFNUE3RjVGQzRDRjhB
RUEyMjgvOEExQ0MwNEMxNDBCMTFFNTg4MDlBQTRERjhBRUEyMjgucm9hMCEGCCsG
AQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYALA/6kA8wDQYJKoZIhvcNAQELBQADggEB
ACRVVJWXIPAVK5sfizJdWNEYi5bmvR3bMPl+vlYsFhnDlAKOGHaEdazrfh0KUarE
ouuglQZ4DmtiKOfgTCMfiGIyRENnvP36vLdOQf25RMwpC7HpepK/efFE1ARgNOTL
7Q1JQHIsHwHmXm1SWZBn5F4nl+6Kx+8mxa8hQCh+JfBrMpi83iy0U/qdMsmrFwcJ
d6+JX+F+JbmYLXKjPtEl0CtoLQGacgFlQSo1S4dN43KKnkmGj5tssazgpTiLfBUE
u3jZ6GQMQ1Njyov9gD5rWtUpD+0FBb0onmNr9d/qmRLIyJ0lPoLFVOrWQmnoyouB
JL5y3eAEMZvHWQvJeKgJc/c=
-----END CERTIFICATE-----
Generated at Fri Nov 22 01:34:53 2024 by rpki-client on console-ams.rpki-client.org