Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36DE22A/7FF6F8B8568411EC867AFA72D8A014CE/E8696DCC568411ECB9E33374D8A014CE.roa
File: E8696DCC568411ECB9E33374D8A014CE.roa (raw, json)
Hash identifier: X864gC2TVkDtCtR2TRyNnlqHwd7IrrNS7i4AnR682kk=
Subject key identifier: F9:AF:2A:CC:4A:66:AC:8D:47:85:B7:CA:59:4D:E8:CB:44:A5:04:5E
Certificate issuer: /CN=F36DE22AAF/serialNumber=58F5445C8A3A3511BCECDD1889542893F488C77A
Certificate serial: 04
Authority key identifier: 58:F5:44:5C:8A:3A:35:11:BC:EC:DD:18:89:54:28:93:F4:88:C7:7A
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/WPVEXIo6NRG87N0YiVQok_SIx3o.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36DE22A/7FF6F8B8568411EC867AFA72D8A014CE/E8696DCC568411ECB9E33374D8A014CE.roa
Signing time: Mon 06 Dec 2021 11:08:58 +0000
ROA not before: Mon 06 Dec 2021 11:08:54 +0000
ROA not after: Tue 24 Dec 2030 11:08:54 +0000
asID: 36924
IP address blocks: 2c0f:e00::/28 maxlen: 48
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36DE22A/7FF6F8B8568411EC867AFA72D8A014CE/WPVEXIo6NRG87N0YiVQok_SIx3o.crl
rsync://rpki.afrinic.net/repository/member_repository/F36DE22A/7FF6F8B8568411EC867AFA72D8A014CE/WPVEXIo6NRG87N0YiVQok_SIx3o.mft
rsync://rpki.afrinic.net/repository/afrinic/WPVEXIo6NRG87N0YiVQok_SIx3o.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 21 Apr 2024 00:04:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4 (0x4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36DE22AAF/serialNumber=58F5445C8A3A3511BCECDD1889542893F488C77A
Validity
Not Before: Dec 6 11:08:54 2021 GMT
Not After : Dec 24 11:08:54 2030 GMT
Subject: CN=61adef4a-9693
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:f6:c0:a0:86:7a:97:fb:e1:cf:81:3d:62:64:
52:3e:e6:57:f2:39:29:7f:28:eb:5f:93:f3:1b:be:
8b:08:d8:e9:90:60:bb:9d:a4:9f:21:16:25:94:f1:
f8:f5:ca:07:a1:9f:58:41:9f:de:cc:ed:7a:5e:b1:
36:fe:70:9e:c8:ba:d7:1f:54:5a:37:f6:44:d2:20:
95:22:73:85:89:e6:5c:07:16:fd:c0:05:06:1c:e3:
89:0c:76:67:b1:5a:d2:47:23:20:6c:b6:04:a3:62:
aa:b5:2c:04:36:ab:48:07:1b:d2:67:fd:52:6d:13:
96:00:53:53:ea:ea:52:15:56:70:50:5d:ea:36:4f:
66:f1:7f:f0:43:84:64:42:dc:b4:b1:aa:f9:12:b4:
40:76:2e:42:69:a2:1a:79:67:21:5a:8c:5d:46:58:
bb:0c:c1:b8:28:af:9e:e5:4d:2c:8e:47:a7:93:7b:
98:72:02:d1:f7:d9:6d:f3:10:43:ee:10:9b:4a:0b:
cc:87:f3:22:43:60:d3:ff:4f:80:b2:7d:e9:15:2c:
65:fd:33:3e:c8:4e:69:c7:89:3d:30:02:8f:47:b0:
08:65:d6:9c:13:c1:e5:69:2a:35:ae:c1:2d:54:fc:
20:bd:b7:d5:bc:40:38:43:ec:88:cd:c8:b6:80:ca:
0d:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:AF:2A:CC:4A:66:AC:8D:47:85:B7:CA:59:4D:E8:CB:44:A5:04:5E
X509v3 Authority Key Identifier:
keyid:58:F5:44:5C:8A:3A:35:11:BC:EC:DD:18:89:54:28:93:F4:88:C7:7A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36DE22A/7FF6F8B8568411EC867AFA72D8A014CE/WPVEXIo6NRG87N0YiVQok_SIx3o.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/WPVEXIo6NRG87N0YiVQok_SIx3o.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36DE22A/7FF6F8B8568411EC867AFA72D8A014CE/E8696DCC568411ECB9E33374D8A014CE.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2c0f:e00::/28
Signature Algorithm: sha256WithRSAEncryption
97:2a:4a:bb:a5:d4:bf:96:78:d7:de:3d:a2:e4:c8:a2:28:a3:
57:d9:f5:a9:33:0f:02:95:77:d4:e0:0a:6c:4f:7d:be:b5:fa:
96:94:b5:f7:9f:44:02:be:27:66:71:e6:8c:bb:32:1a:25:4e:
22:cf:04:1b:c3:36:34:c0:e3:b2:bf:a6:19:20:48:fd:29:f7:
2c:8a:6d:92:16:b1:c9:d6:20:4a:d9:08:5e:3b:6f:00:0f:52:
0b:98:74:96:6a:2d:c3:0c:61:69:54:63:df:38:ca:15:31:3d:
12:12:eb:66:98:02:a8:ea:84:6d:9f:f5:52:b9:78:51:ba:28:
e8:28:6e:70:4e:bb:ab:99:a3:41:79:97:68:c1:55:2a:c2:0e:
33:3d:78:fd:42:54:e9:85:d7:6b:70:75:33:92:ca:6e:89:5d:
3c:3c:2a:26:67:a8:bd:f3:39:65:d6:60:a9:ab:24:e3:13:68:
f9:08:26:bd:8c:48:e2:8e:3b:ad:dd:7b:fb:34:c9:db:8d:87:
a7:a9:d2:08:d3:55:ad:2a:ae:9a:38:d3:39:79:67:10:f3:c4:
be:85:d2:b4:7c:41:72:49:6e:97:8a:0c:f4:f8:8c:19:f4:60:
69:fe:d1:a0:4b:ee:d7:00:ec:4d:f3:a5:f0:5a:bd:2f:04:37:
d7:31:8f:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 19 02:47:15 2024 by rpki-client on console-ams.rpki-client.org