Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36D9B5B/9E1BD378135A11E5B68D4286F8AEA228/86606974028F11E98C883E0FF8AEA228.roa
File: 86606974028F11E98C883E0FF8AEA228.roa (raw, json)
Hash identifier: IsZ6cJV4+0zN9ms5jaDsieqPGhductkQxgMv7qyHTNI=
Subject key identifier: A3:39:79:57:4F:7F:A2:86:B7:B0:AF:9E:A7:6D:79:B1:91:14:61:36
Certificate issuer: /CN=F36D9B5BAF/serialNumber=23F814BB47D5C3AEDD5103F36F5DB8A29BE3D71D
Certificate serial: 0535
Authority key identifier: 23:F8:14:BB:47:D5:C3:AE:DD:51:03:F3:6F:5D:B8:A2:9B:E3:D7:1D
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/I_gUu0fVw67dUQPzb124opvj1x0.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36D9B5B/9E1BD378135A11E5B68D4286F8AEA228/86606974028F11E98C883E0FF8AEA228.roa
Signing time: Tue 18 Dec 2018 06:38:28 +0000
ROA not before: Tue 18 Dec 2018 06:38:20 +0000
ROA not after: Mon 18 Dec 2028 06:38:20 +0000
asID: 32653
IP address blocks: 2c0f:fbf0::/28 maxlen: 48
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36D9B5B/9E1BD378135A11E5B68D4286F8AEA228/I_gUu0fVw67dUQPzb124opvj1x0.crl
rsync://rpki.afrinic.net/repository/member_repository/F36D9B5B/9E1BD378135A11E5B68D4286F8AEA228/I_gUu0fVw67dUQPzb124opvj1x0.mft
rsync://rpki.afrinic.net/repository/afrinic/I_gUu0fVw67dUQPzb124opvj1x0.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1333 (0x535)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36D9B5BAF/serialNumber=23F814BB47D5C3AEDD5103F36F5DB8A29BE3D71D
Validity
Not Before: Dec 18 06:38:20 2018 GMT
Not After : Dec 18 06:38:20 2028 GMT
Subject: CN=5c1895e3-f014
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:54:3a:0e:08:26:74:65:13:ad:be:c4:d8:f2:
59:56:68:45:ed:7e:36:6f:9a:4d:fd:77:66:d9:7a:
a5:aa:86:d2:e7:f5:f7:d3:46:8d:c1:f1:1c:40:77:
60:ae:10:5b:14:ba:bf:19:82:35:03:e9:ed:d1:b5:
a4:c5:7b:ec:76:b6:12:cd:af:8a:33:19:2d:27:17:
c3:b8:a7:be:f9:39:38:16:18:37:c1:0c:d8:90:92:
b7:36:8f:c1:e4:99:37:f6:93:c4:35:a4:60:c1:fb:
b8:2f:51:64:b4:c7:49:51:5c:43:57:d1:9d:50:f3:
df:5f:78:a7:12:f1:c2:3c:be:06:78:f6:01:30:fb:
f5:8f:41:1c:71:df:e5:96:f9:4e:5b:96:4f:9f:c7:
a5:e3:f8:69:78:22:c1:18:cb:14:71:c4:9d:e8:1c:
bf:cb:0a:6e:e7:8c:70:10:3c:63:9c:21:57:e4:0c:
a0:be:0d:32:8d:f4:3a:71:ba:74:9e:1b:eb:96:70:
37:f0:d0:77:54:0a:09:cf:2e:d2:dc:f0:9d:35:8c:
2e:9b:e4:d9:d3:91:4c:e8:eb:09:b6:03:4b:df:20:
00:51:82:4a:f0:d6:bc:98:51:25:7f:0d:13:45:78:
b1:14:87:69:9c:56:af:8d:65:b3:b3:b2:b0:6b:4e:
46:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:39:79:57:4F:7F:A2:86:B7:B0:AF:9E:A7:6D:79:B1:91:14:61:36
X509v3 Authority Key Identifier:
keyid:23:F8:14:BB:47:D5:C3:AE:DD:51:03:F3:6F:5D:B8:A2:9B:E3:D7:1D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36D9B5B/9E1BD378135A11E5B68D4286F8AEA228/I_gUu0fVw67dUQPzb124opvj1x0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/I_gUu0fVw67dUQPzb124opvj1x0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36D9B5B/9E1BD378135A11E5B68D4286F8AEA228/86606974028F11E98C883E0FF8AEA228.roa
sbgp-ipAddrBlock: critical
IPv6:
2c0f:fbf0::/28
Signature Algorithm: sha256WithRSAEncryption
17:f9:de:ea:dd:a6:3c:4e:75:d2:f3:c6:0d:5d:19:15:90:27:
c2:1c:ec:f5:5c:7c:67:8b:a7:f5:6e:0d:8a:c4:a5:73:ab:ef:
c5:78:d1:1c:2e:c5:5c:8a:b3:54:a1:86:1d:a2:f8:f7:e8:2c:
0c:d7:67:ae:38:a2:1c:9c:27:4f:c5:d8:eb:be:43:1e:a5:c2:
3e:ca:6c:b9:e1:c6:a3:7a:85:17:07:b0:7a:2a:50:74:de:66:
6e:77:91:bd:31:50:ab:a7:9e:bf:e9:99:7c:cf:31:2b:ac:c6:
a6:5d:ae:d2:f1:c8:c0:d7:39:36:f0:f8:10:da:c6:60:af:64:
15:68:e3:40:ba:fb:9e:2c:4b:a8:6e:e8:2e:6c:ca:02:7f:d7:
aa:26:0c:8c:f8:a9:56:a6:8b:67:82:f6:bd:b7:e5:9c:85:40:
63:50:fd:95:6b:a7:8d:65:76:5b:09:e8:8a:8c:87:f2:5a:f7:
84:44:09:d0:99:02:09:f6:0c:62:9a:b6:f6:ad:b1:1d:16:8b:
8d:f5:a8:00:df:17:d6:a3:c7:c9:d2:0f:a3:07:d5:a9:3d:03:
2f:dc:ab:76:62:dc:1e:52:95:b4:19:a4:7e:ea:d4:23:24:cb:
9b:bf:c6:56:94:60:92:e2:4f:a5:87:e2:6a:c6:46:92:90:1c:
ea:bc:6e:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 01:34:53 2024 by rpki-client on console-ams.rpki-client.org