Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36E2B8C/B50CA4AA0B6211EEB2D35E8A4AD9E6FC/1F5F2FF8216A11EFBE9F000E7DDC24C2.roa
File: 1F5F2FF8216A11EFBE9F000E7DDC24C2.roa (raw, json)
Hash identifier: Lnp4R2zpiassu92nP7+9bZsA7WacYQhSdB9Irhb4Gho=
Subject key identifier: FE:3D:3E:F9:D3:DB:64:30:BF:4A:AA:BC:31:4E:E6:31:FE:07:C2:9E
Certificate issuer: /CN=F36E2B8CRI/serialNumber=0629C99D4760C289B84CDBECF1B6C13CF525EAAF
Certificate serial: 017F
Authority key identifier: 06:29:C9:9D:47:60:C2:89:B8:4C:DB:EC:F1:B6:C1:3C:F5:25:EA:AF
Authority info access: rsync://rpki.afrinic.net/repository/ripe/BinJnUdgwom4TNvs8bbBPPUl6q8.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36E2B8C/B50CA4AA0B6211EEB2D35E8A4AD9E6FC/1F5F2FF8216A11EFBE9F000E7DDC24C2.roa
Signing time: Mon 03 Jun 2024 05:28:35 +0000
ROA not before: Mon 03 Jun 2024 05:28:32 +0000
ROA not after: Tue 01 Jan 2030 05:28:32 +0000
asID: 37684
IP address blocks: 62.12.112.0/21 maxlen: 21
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36E2B8C/B50CA4AA0B6211EEB2D35E8A4AD9E6FC/BinJnUdgwom4TNvs8bbBPPUl6q8.crl
rsync://rpki.afrinic.net/repository/member_repository/F36E2B8C/B50CA4AA0B6211EEB2D35E8A4AD9E6FC/BinJnUdgwom4TNvs8bbBPPUl6q8.mft
rsync://rpki.afrinic.net/repository/ripe/BinJnUdgwom4TNvs8bbBPPUl6q8.cer
rsync://rpki.afrinic.net/repository/ripe/f3rBgIl5g-Kek3wKGHgDwHJ1VUU.crl
rsync://rpki.afrinic.net/repository/ripe/f3rBgIl5g-Kek3wKGHgDwHJ1VUU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/ripe-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:30:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 383 (0x17f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36E2B8CRI/serialNumber=0629C99D4760C289B84CDBECF1B6C13CF525EAAF
Validity
Not Before: Jun 3 05:28:32 2024 GMT
Not After : Jan 1 05:28:32 2030 GMT
Subject: CN=665d5483-bdc7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:cf:57:a6:9e:a7:fe:7d:46:b4:9d:5a:3e:0f:
6f:91:24:d3:77:78:55:13:aa:a5:94:ad:2f:dc:27:
31:77:a3:d7:15:d0:19:ed:f5:72:f3:20:bf:ee:9e:
6d:02:a8:da:3e:c2:f7:35:f6:79:2e:f7:d3:54:a4:
00:58:29:9d:84:7a:e4:a4:57:a9:ff:9f:3c:f4:61:
2d:9e:b2:80:25:f8:3b:40:6a:23:97:8d:9b:8a:6c:
63:35:44:7d:9f:29:7b:54:62:cc:4c:eb:f1:64:7b:
0b:b6:8a:62:d0:72:37:c6:dc:c4:81:97:fb:eb:8f:
c6:e2:e8:11:e6:d6:0e:e7:53:ed:9b:ea:37:31:96:
c5:b2:f7:d4:7d:14:5e:5a:42:73:f0:3c:05:f5:bc:
2d:48:bf:fd:08:81:a3:05:f2:eb:a8:28:17:5e:09:
73:6d:2d:76:42:da:ab:df:4c:15:18:ad:51:25:a1:
1f:37:5b:ad:96:05:61:24:4f:11:19:d4:7f:02:79:
a9:bf:e9:14:2d:c9:15:21:0b:93:c4:45:3f:aa:c9:
98:c0:3f:8d:26:3c:e3:e3:8d:2f:77:50:ff:c6:4b:
5f:fe:b3:ce:7c:0a:55:e6:4f:f8:4b:8f:5a:22:f1:
fb:f1:e9:eb:20:ea:e0:e7:12:13:ce:87:72:15:32:
f4:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:3D:3E:F9:D3:DB:64:30:BF:4A:AA:BC:31:4E:E6:31:FE:07:C2:9E
X509v3 Authority Key Identifier:
keyid:06:29:C9:9D:47:60:C2:89:B8:4C:DB:EC:F1:B6:C1:3C:F5:25:EA:AF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36E2B8C/B50CA4AA0B6211EEB2D35E8A4AD9E6FC/BinJnUdgwom4TNvs8bbBPPUl6q8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/ripe/BinJnUdgwom4TNvs8bbBPPUl6q8.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36E2B8C/B50CA4AA0B6211EEB2D35E8A4AD9E6FC/1F5F2FF8216A11EFBE9F000E7DDC24C2.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
62.12.112.0/21
Signature Algorithm: sha256WithRSAEncryption
aa:0a:35:d0:36:82:f8:d6:98:66:d9:b1:53:7b:bf:32:99:bb:
a4:3f:6f:32:54:81:ac:ff:ed:28:48:66:6b:27:c1:a9:62:52:
02:16:ea:f6:7c:cd:5f:1e:19:e8:91:b4:e1:64:88:fd:8d:db:
9b:49:49:0c:99:c7:9a:a4:39:f2:44:8b:ff:54:e5:45:7f:69:
c1:1e:02:b3:3a:e9:82:d0:ae:cc:e4:49:75:f3:53:9b:34:2f:
c5:e0:82:68:32:f2:2e:8c:4e:34:9a:63:12:a3:5f:78:79:70:
75:fa:47:37:84:a7:13:df:22:61:91:ac:04:90:98:d7:c1:99:
c3:a5:45:41:d4:68:50:d7:0d:12:e4:c1:7c:15:02:a8:4e:16:
de:40:f7:2e:fd:52:4d:d5:9a:f8:31:87:07:8f:31:f2:20:8e:
94:09:58:c8:21:ec:62:1c:3d:3f:39:14:4a:91:73:2c:c1:4e:
00:37:3b:46:c9:8e:58:5c:a7:2d:a0:c0:31:ad:a7:7c:8f:6c:
5e:bd:6c:5e:f5:e4:04:3e:fb:f1:bd:db:c6:5c:91:89:69:c6:
75:2f:f0:7b:85:a5:42:e2:78:a2:b0:ac:b7:e5:4c:5f:ce:26:
91:02:04:bd:49:04:09:46:3c:f7:eb:56:36:d6:02:8f:da:aa:
cd:ac:a5:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 03:52:59 2024 by rpki-client on console-fra.rpki-client.org