Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36E373D/4D22ACD68B7311E9A49A4368F8AEA228/DBFF1E3C43DD11ED95883DBCF1222468.roa
File: DBFF1E3C43DD11ED95883DBCF1222468.roa (raw, json)
Hash identifier: Y8zoZUQnQqpVoToxLOumwxqYjQxD2d4+Fg81697ZwlM=
Subject key identifier: 43:62:18:E7:81:BE:30:5B:AC:13:76:31:5F:EF:30:64:21:CB:0E:8C
Certificate issuer: /CN=F36E373DAF/serialNumber=FD8E045884B1669EBD430AE566721D97404A6CE8
Certificate serial: 0506
Authority key identifier: FD:8E:04:58:84:B1:66:9E:BD:43:0A:E5:66:72:1D:97:40:4A:6C:E8
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/_Y4EWISxZp69QwrlZnIdl0BKbOg.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36E373D/4D22ACD68B7311E9A49A4368F8AEA228/DBFF1E3C43DD11ED95883DBCF1222468.roa
Signing time: Tue 04 Oct 2022 12:12:48 +0000
ROA not before: Tue 04 Oct 2022 12:12:44 +0000
ROA not after: Mon 04 Oct 2032 12:12:44 +0000
asID: 327733
IP address blocks: 2c0f:ea00::/38 maxlen: 38
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36E373D/4D22ACD68B7311E9A49A4368F8AEA228/_Y4EWISxZp69QwrlZnIdl0BKbOg.crl
rsync://rpki.afrinic.net/repository/member_repository/F36E373D/4D22ACD68B7311E9A49A4368F8AEA228/_Y4EWISxZp69QwrlZnIdl0BKbOg.mft
rsync://rpki.afrinic.net/repository/afrinic/_Y4EWISxZp69QwrlZnIdl0BKbOg.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 03 Jun 2024 00:05:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1286 (0x506)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36E373DAF/serialNumber=FD8E045884B1669EBD430AE566721D97404A6CE8
Validity
Not Before: Oct 4 12:12:44 2022 GMT
Not After : Oct 4 12:12:44 2032 GMT
Subject: CN=633c2340-6e8c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:7b:73:9a:bb:30:8e:a2:c3:bd:f5:21:e5:72:
86:4e:50:54:2e:b2:d5:2a:f6:34:80:1a:05:1e:73:
d2:c7:0c:18:69:fa:63:c2:26:8f:52:26:1b:fc:b8:
a7:df:f8:25:b4:39:9d:60:1f:e2:ea:d9:1d:34:bf:
51:ca:11:d9:2b:1b:73:a4:83:4c:5d:cf:81:59:68:
d1:bd:92:53:b6:6f:48:ce:a7:ad:1b:28:2c:d4:f2:
0f:fb:1f:a7:e5:41:0e:a6:a5:b9:eb:94:4c:ab:ff:
8d:39:15:03:6a:ba:76:ba:80:cd:c7:e5:5d:43:02:
87:aa:19:80:bb:db:37:ed:bb:3e:47:d8:79:25:b1:
94:38:c0:23:b6:b2:06:9d:c6:b5:3e:48:75:fd:c9:
79:32:e2:b3:56:fe:6a:10:29:e2:a4:6f:fe:a2:ef:
22:23:ee:7c:62:ee:bb:40:57:c1:f3:37:a4:8e:b3:
c3:77:4b:b5:11:49:ac:a3:4d:4e:4a:98:36:ba:72:
a1:17:d3:20:bd:44:6f:b3:d4:84:91:7a:f3:c6:33:
e1:4d:f0:cd:bb:ea:8e:17:b9:f7:34:52:d0:1b:c1:
0f:e0:c7:4b:be:5e:e0:ee:33:f8:fd:7b:4d:3c:4c:
d3:2e:11:9d:cf:8c:2f:a4:00:14:c4:99:56:15:e4:
c8:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:62:18:E7:81:BE:30:5B:AC:13:76:31:5F:EF:30:64:21:CB:0E:8C
X509v3 Authority Key Identifier:
keyid:FD:8E:04:58:84:B1:66:9E:BD:43:0A:E5:66:72:1D:97:40:4A:6C:E8
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36E373D/4D22ACD68B7311E9A49A4368F8AEA228/_Y4EWISxZp69QwrlZnIdl0BKbOg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/_Y4EWISxZp69QwrlZnIdl0BKbOg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36E373D/4D22ACD68B7311E9A49A4368F8AEA228/DBFF1E3C43DD11ED95883DBCF1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2c0f:ea00::/38
Signature Algorithm: sha256WithRSAEncryption
6a:1f:06:44:b5:11:52:f1:42:50:7f:c3:a3:0c:4d:46:77:13:
b9:f3:4d:27:02:90:62:b2:ee:a3:6e:4d:88:b4:3c:2f:ca:5d:
b7:53:3a:fc:9e:c1:45:82:f1:bf:89:83:ca:44:2c:27:26:14:
ae:4c:66:fe:aa:e0:3c:3f:53:f6:6d:0f:08:5d:99:b1:b1:65:
85:54:22:04:41:ed:1c:58:3a:e9:7d:01:3c:a0:57:5f:36:2d:
b7:3a:d9:ec:2a:4d:6d:ba:44:ec:ef:2d:87:ba:20:7c:5d:a1:
fc:5d:2d:1e:aa:80:e1:18:bb:e7:18:01:ff:76:5e:de:34:31:
83:6f:66:bc:97:09:cb:67:20:92:3d:26:b5:75:3f:c5:51:a5:
4f:a5:52:df:65:41:8e:05:c6:d6:53:28:71:1b:2a:ae:b7:68:
e0:f9:a6:7e:28:7f:5a:90:ca:71:bd:f6:57:2c:59:49:77:ef:
ec:34:08:0c:70:86:d6:c0:a8:10:fa:40:6e:88:9e:9b:2d:f4:
40:d0:0a:bb:8b:cd:d4:62:21:9d:84:7b:67:49:0d:99:f3:c4:
7a:b9:13:ad:6c:73:dc:f9:c2:e8:3b:d0:13:74:38:c6:1c:9f:
21:ee:69:f9:68:1e:d1:77:2b:20:d7:2c:54:46:17:e7:88:04:
8c:60:b7:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 1 02:01:09 2024 by rpki-client on console-ams.rpki-client.org