Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36E2B8C/C8F9DF1E0B6211EE862D868A4AD9E6FC/720F0A520B6811EE9E3EAA1C4AD9E6FC.roa
File: 720F0A520B6811EE9E3EAA1C4AD9E6FC.roa (raw, json)
Hash identifier: uH/tzSzjUIkoRMAuqz8zY/lUD15J6gDcSU69Vx3Gw3Q=
Subject key identifier: FA:C6:43:4F:6B:A2:B4:FF:5F:CA:84:28:17:3E:E9:84:66:CD:0A:DD
Certificate issuer: /CN=F36E2B8CAF/serialNumber=872130E69B3FB8035B1B25D3F6FB974A2A078ECC
Certificate serial: 06
Authority key identifier: 87:21:30:E6:9B:3F:B8:03:5B:1B:25:D3:F6:FB:97:4A:2A:07:8E:CC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/hyEw5ps_uANbGyXT9vuXSioHjsw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36E2B8C/C8F9DF1E0B6211EE862D868A4AD9E6FC/720F0A520B6811EE9E3EAA1C4AD9E6FC.roa
Signing time: Thu 15 Jun 2023 10:36:11 +0000
ROA not before: Thu 15 Jun 2023 10:36:07 +0000
ROA not after: Sat 15 Jun 2024 10:36:07 +0000
asID: 37684
IP address blocks: 2c0f:f408::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36E2B8C/C8F9DF1E0B6211EE862D868A4AD9E6FC/hyEw5ps_uANbGyXT9vuXSioHjsw.crl
rsync://rpki.afrinic.net/repository/member_repository/F36E2B8C/C8F9DF1E0B6211EE862D868A4AD9E6FC/hyEw5ps_uANbGyXT9vuXSioHjsw.mft
rsync://rpki.afrinic.net/repository/afrinic/hyEw5ps_uANbGyXT9vuXSioHjsw.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 03 Jun 2024 00:05:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6 (0x6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36E2B8CAF/serialNumber=872130E69B3FB8035B1B25D3F6FB974A2A078ECC
Validity
Not Before: Jun 15 10:36:07 2023 GMT
Not After : Jun 15 10:36:07 2024 GMT
Subject: CN=648ae99b-5a21
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:81:73:14:9b:6d:97:b4:4f:9b:18:b6:9e:f1:
ab:5e:df:f2:89:93:96:64:c9:e7:21:3d:54:c9:1e:
f7:10:7c:1f:17:c7:b9:cc:d1:cf:d0:00:1b:1f:d9:
71:78:ab:ba:e3:11:f3:07:69:ef:9d:96:12:da:30:
62:c9:18:89:5a:5d:20:d9:64:57:1e:ed:7c:b6:78:
aa:34:d7:1f:c4:b0:86:ff:de:15:6f:95:e2:d0:96:
67:2b:9f:29:c2:44:d1:9f:76:0e:fa:a0:00:b7:bd:
0f:af:7f:9b:ac:1f:58:b1:79:60:b6:c6:fb:a2:48:
3d:d4:56:90:3e:be:60:94:af:af:04:6b:e3:85:26:
f7:d0:04:13:c0:82:02:67:1b:bd:c7:4c:bb:fe:a4:
60:e5:fb:7c:0c:d1:2c:77:d5:bc:46:c8:b5:e4:b9:
f3:66:6d:50:cb:d4:9a:76:22:ff:0e:8d:82:26:62:
70:65:cc:3d:9e:2c:13:7b:0f:a6:a5:21:dd:b4:ca:
dc:3e:b2:38:84:e2:a8:2f:65:7b:4e:63:99:46:7d:
71:2d:3f:2a:d8:f7:fe:3f:bf:dd:09:59:99:ea:e7:
4b:f9:6d:10:89:17:b3:fc:bf:22:a2:85:fa:04:e4:
b9:64:69:c1:e8:dc:27:92:6c:b4:c5:17:15:19:fb:
60:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:C6:43:4F:6B:A2:B4:FF:5F:CA:84:28:17:3E:E9:84:66:CD:0A:DD
X509v3 Authority Key Identifier:
keyid:87:21:30:E6:9B:3F:B8:03:5B:1B:25:D3:F6:FB:97:4A:2A:07:8E:CC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36E2B8C/C8F9DF1E0B6211EE862D868A4AD9E6FC/hyEw5ps_uANbGyXT9vuXSioHjsw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/hyEw5ps_uANbGyXT9vuXSioHjsw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36E2B8C/C8F9DF1E0B6211EE862D868A4AD9E6FC/720F0A520B6811EE9E3EAA1C4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2c0f:f408::/32
Signature Algorithm: sha256WithRSAEncryption
6a:d5:28:87:e3:ea:a2:58:bf:92:5d:ee:c7:61:69:07:55:93:
7c:d0:54:40:38:1f:ee:1e:a7:22:54:96:f3:5c:13:9a:c3:ba:
49:78:d0:51:e8:6f:10:c2:61:fc:6d:23:17:66:78:f6:6e:ad:
f1:41:9e:a2:4d:ae:d8:6f:13:50:12:43:25:aa:59:4d:61:2d:
35:27:82:fc:7c:53:bb:09:ae:e5:18:49:27:1a:c4:01:8f:08:
78:1a:49:f1:bf:3e:1a:31:48:aa:bd:98:04:44:2d:56:21:50:
18:dd:6b:c4:27:af:55:6f:82:37:ca:1c:36:5f:82:b0:ec:2f:
b8:ce:52:85:41:70:e9:6a:31:a5:b4:89:91:1d:2c:61:d7:43:
a1:14:77:ec:0a:03:ee:bf:1e:28:a2:6e:33:33:ec:3d:14:4d:
c8:51:28:86:35:59:df:a7:ea:27:59:f5:97:ce:f7:a1:17:cf:
ed:f5:40:82:06:0f:df:14:71:d2:f1:56:33:8c:e2:59:4b:8c:
4e:c8:8c:35:4a:27:24:27:40:45:07:bc:b3:1b:4d:27:bc:94:
76:0e:0d:a1:a7:a0:a5:70:99:75:e2:91:45:bc:bc:13:d9:8a:
f9:51:e9:c6:7d:9a:e1:ac:a8:4a:eb:49:e2:1d:c0:53:be:e2:
ae:99:e8:e2
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgIBBjANBgkqhkiG9w0BAQsFADBIMRMwEQYDVQQDEwpGMzZF
MkI4Q0FGMTEwLwYDVQQFEyg4NzIxMzBFNjlCM0ZCODAzNUIxQjI1RDNGNkZCOTc0
QTJBMDc4RUNDMB4XDTIzMDYxNTEwMzYwN1oXDTI0MDYxNTEwMzYwN1owGDEWMBQG
A1UEAxMNNjQ4YWU5OWItNWEyMTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBAN2BcxSbbZe0T5sYtp7xq17f8omTlmTJ5yE9VMke9xB8HxfHuczRz9AAGx/Z
cXiruuMR8wdp752WEtowYskYiVpdINlkVx7tfLZ4qjTXH8Swhv/eFW+V4tCWZyuf
KcJE0Z92DvqgALe9D69/m6wfWLF5YLbG+6JIPdRWkD6+YJSvrwRr44Um99AEE8CC
AmcbvcdMu/6kYOX7fAzRLHfVvEbIteS582ZtUMvUmnYi/w6NgiZicGXMPZ4sE3sP
pqUh3bTK3D6yOITiqC9le05jmUZ9cS0/Ktj3/j+/3QlZmernS/ltEIkXs/y/IqKF
+gTkuWRpwejcJ5JstMUXFRn7YPECAwEAAaOCAqYwggKiMB0GA1UdDgQWBBT6xkNP
a6K0/1/KhCgXPumEZs0K3TAfBgNVHSMEGDAWgBSHITDmmz+4A1sbJdP2+5dKKgeO
zDAOBgNVHQ8BAf8EBAMCB4AwgZUGA1UdHwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6
Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVyX3JlcG9zaXRvcnkv
RjM2RTJCOEMvQzhGOURGMUUwQjYyMTFFRTg2MkQ4NjhBNEFEOUU2RkMvaHlFdzVw
c191QU5iR3lYVDl2dVhTaW9IanN3LmNybDBnBggrBgEFBQcBAQRbMFkwVwYIKwYB
BQUHMAKGS3JzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L2Fmcmlu
aWMvaHlFdzVwc191QU5iR3lYVDl2dVhTaW9IanN3LmNlcjBPBgNVHSABAf8ERTBD
MEEGCCsGAQUFBw4CMDUwMwYIKwYBBQUHAgEWJ2h0dHBzOi8vcnBraS5hZnJpbmlj
Lm5ldC9wb2xpY3kvQ1BTLnBkZjCB2wYIKwYBBQUHAQsEgc4wgcswgZEGCCsGAQUF
BzALhoGEcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVy
X3JlcG9zaXRvcnkvRjM2RTJCOEMvQzhGOURGMUUwQjYyMTFFRTg2MkQ4NjhBNEFE
OUU2RkMvNzIwRjBBNTIwQjY4MTFFRTlFM0VBQTFDNEFEOUU2RkMucm9hMDUGCCsG
AQUFBzANhilodHRwczovL3JyZHAuYWZyaW5pYy5uZXQvbm90aWZpY2F0aW9uLnht
bDAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACwP9AgwDQYJKoZIhvcNAQEL
BQADggEBAGrVKIfj6qJYv5Jd7sdhaQdVk3zQVEA4H+4epyJUlvNcE5rDukl40FHo
bxDCYfxtIxdmePZurfFBnqJNrthvE1ASQyWqWU1hLTUngvx8U7sJruUYSScaxAGP
CHgaSfG/PhoxSKq9mARELVYhUBjda8Qnr1VvgjfKHDZfgrDsL7jOUoVBcOlqMaW0
iZEdLGHXQ6EUd+wKA+6/HiiibjMz7D0UTchRKIY1Wd+n6idZ9ZfO96EXz+31QIIG
D98UcdLxVjOM4llLjE7IjDVKJyQnQEUHvLMbTSe8lHYODaGnoKVwmXXikUW8vBPZ
ivlR6cZ9muGsqErrSeIdwFO+4q6Z6OI=
-----END CERTIFICATE-----
Generated at Sat Jun 1 04:07:19 2024 by rpki-client on console-ams.rpki-client.org