Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36F6E4A/9D594F7241A611EA88863E28F8AEA228/41B6AD86469C11EA81469227F8AEA228.roa
File: 41B6AD86469C11EA81469227F8AEA228.roa (raw, json)
Hash identifier: GFpsTEOd32IACxfCYv+4g0rk0Bgklgcuemi0F5TjBIo=
Subject key identifier: 2F:5F:71:6B:4A:7A:41:37:32:6C:E9:62:11:8A:15:DD:87:7D:CA:FF
Certificate issuer: /CN=F36F6E4AAF/serialNumber=4FEE129D09AB850DA039E7F5BB24B6699A0F8179
Certificate serial: 11
Authority key identifier: 4F:EE:12:9D:09:AB:85:0D:A0:39:E7:F5:BB:24:B6:69:9A:0F:81:79
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/T-4SnQmrhQ2gOef1uyS2aZoPgXk.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36F6E4A/9D594F7241A611EA88863E28F8AEA228/41B6AD86469C11EA81469227F8AEA228.roa
Signing time: Mon 03 Feb 2020 15:45:52 +0000
ROA not before: Mon 03 Feb 2020 15:45:48 +0000
ROA not after: Thu 31 Jan 2030 15:45:48 +0000
asID: 3491
IP address blocks: 2c0f:f3d0::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36F6E4A/9D594F7241A611EA88863E28F8AEA228/T-4SnQmrhQ2gOef1uyS2aZoPgXk.crl
rsync://rpki.afrinic.net/repository/member_repository/F36F6E4A/9D594F7241A611EA88863E28F8AEA228/T-4SnQmrhQ2gOef1uyS2aZoPgXk.mft
rsync://rpki.afrinic.net/repository/afrinic/T-4SnQmrhQ2gOef1uyS2aZoPgXk.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17 (0x11)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36F6E4AAF/serialNumber=4FEE129D09AB850DA039E7F5BB24B6699A0F8179
Validity
Not Before: Feb 3 15:45:48 2020 GMT
Not After : Jan 31 15:45:48 2030 GMT
Subject: CN=5e384030-392e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:de:4f:92:c1:55:1c:c4:05:b1:80:1d:20:21:
3d:8c:4d:d7:cc:2d:63:d6:14:73:e6:ab:54:ec:17:
21:3a:e0:02:50:b5:5b:ff:b1:18:48:f4:14:38:61:
db:8e:f9:67:ca:0b:04:57:65:51:7e:0f:92:33:c8:
23:ba:c9:73:86:12:45:74:28:7c:67:95:76:39:ce:
ad:f0:98:dd:b5:ea:07:b6:d1:5c:c9:fb:5c:27:1a:
7d:65:6a:4f:8b:e3:3e:bf:89:e0:c5:3d:80:27:12:
be:41:e5:06:43:e6:c4:cd:b0:fd:e2:b0:9b:4c:62:
98:33:36:c3:06:ad:5d:4d:af:c6:57:f5:55:df:5f:
35:f3:8b:ad:a0:f7:1a:d0:cc:a4:43:c9:5a:16:5a:
66:84:23:b1:e1:e2:ec:06:85:ec:02:2c:03:d0:13:
de:31:5c:65:e0:75:f6:18:8f:96:e6:7d:8c:59:af:
79:aa:99:af:ea:40:8d:5e:6a:07:04:b2:14:91:fe:
46:15:10:60:72:70:13:f2:69:06:e7:df:9f:72:c6:
7b:ba:89:64:53:d2:2c:dd:30:e5:54:ab:71:4e:6f:
c7:57:84:36:c8:5f:75:cd:83:81:ee:20:d5:38:a3:
2f:43:35:86:7d:77:c1:95:b9:b5:24:b3:71:6f:64:
fe:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:5F:71:6B:4A:7A:41:37:32:6C:E9:62:11:8A:15:DD:87:7D:CA:FF
X509v3 Authority Key Identifier:
keyid:4F:EE:12:9D:09:AB:85:0D:A0:39:E7:F5:BB:24:B6:69:9A:0F:81:79
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36F6E4A/9D594F7241A611EA88863E28F8AEA228/T-4SnQmrhQ2gOef1uyS2aZoPgXk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/T-4SnQmrhQ2gOef1uyS2aZoPgXk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36F6E4A/9D594F7241A611EA88863E28F8AEA228/41B6AD86469C11EA81469227F8AEA228.roa
sbgp-ipAddrBlock: critical
IPv6:
2c0f:f3d0::/32
Signature Algorithm: sha256WithRSAEncryption
7f:4f:5a:62:90:11:48:dc:fc:1a:94:6b:ab:66:68:cc:91:8a:
29:4f:32:50:1c:6a:4f:19:7a:0f:bd:2b:d9:fd:17:ca:23:62:
5b:21:3a:25:f4:ab:91:c2:8c:7c:47:69:71:86:75:e9:d9:49:
b1:ad:92:c9:ff:84:ee:ae:b3:16:81:fe:55:81:b3:03:b6:be:
a0:c6:3f:70:31:a2:c2:d4:d0:09:f6:98:40:6f:c6:f2:ad:e9:
0c:1e:e1:29:bf:71:f4:4e:04:ab:5a:48:e5:c9:4b:e0:84:4f:
47:8c:b5:f9:34:f0:ff:42:89:d9:74:bd:42:86:ea:ae:aa:c7:
f4:81:06:eb:cc:a1:40:60:82:f6:e0:48:cd:79:c5:3f:b0:82:
0b:95:90:af:25:52:89:a8:10:17:fe:4f:57:04:9c:3d:5c:19:
d8:a1:c1:37:12:2e:21:73:a7:75:c5:1c:29:3f:eb:b1:d0:52:
7f:ba:49:40:6c:00:1c:28:0d:41:f3:3c:9e:ad:07:55:bc:88:
a2:9a:33:d0:a6:38:b8:6b:89:be:39:5a:a0:f4:52:94:f7:27:
e7:ab:6d:20:ee:9a:d2:39:b8:04:b1:e2:b0:66:90:81:14:8d:
a6:d9:79:36:bc:d3:4d:27:b7:ba:24:5c:a7:c2:35:27:bc:7c:
23:e0:05:8e
-----BEGIN CERTIFICATE-----
MIIFTDCCBDSgAwIBAgIBETANBgkqhkiG9w0BAQsFADBIMRMwEQYDVQQDEwpGMzZG
NkU0QUFGMTEwLwYDVQQFEyg0RkVFMTI5RDA5QUI4NTBEQTAzOUU3RjVCQjI0QjY2
OTlBMEY4MTc5MB4XDTIwMDIwMzE1NDU0OFoXDTMwMDEzMTE1NDU0OFowGDEWMBQG
A1UEAxMNNWUzODQwMzAtMzkyZTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBAKjeT5LBVRzEBbGAHSAhPYxN18wtY9YUc+arVOwXITrgAlC1W/+xGEj0FDhh
2475Z8oLBFdlUX4PkjPII7rJc4YSRXQofGeVdjnOrfCY3bXqB7bRXMn7XCcafWVq
T4vjPr+J4MU9gCcSvkHlBkPmxM2w/eKwm0ximDM2wwatXU2vxlf1Vd9fNfOLraD3
GtDMpEPJWhZaZoQjseHi7AaF7AIsA9AT3jFcZeB19hiPluZ9jFmveaqZr+pAjV5q
BwSyFJH+RhUQYHJwE/JpBuffn3LGe7qJZFPSLN0w5VSrcU5vx1eENshfdc2Dge4g
1TijL0M1hn13wZW5tSSzcW9k/lsCAwEAAaOCAm8wggJrMB0GA1UdDgQWBBQvX3Fr
SnpBNzJs6WIRihXdh33K/zAfBgNVHSMEGDAWgBRP7hKdCauFDaA55/W7JLZpmg+B
eTAOBgNVHQ8BAf8EBAMCB4AwgZUGA1UdHwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6
Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVyX3JlcG9zaXRvcnkv
RjM2RjZFNEEvOUQ1OTRGNzI0MUE2MTFFQTg4ODYzRTI4RjhBRUEyMjgvVC00U25R
bXJoUTJnT2VmMXV5UzJhWm9QZ1hrLmNybDBnBggrBgEFBQcBAQRbMFkwVwYIKwYB
BQUHMAKGS3JzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L2Fmcmlu
aWMvVC00U25RbXJoUTJnT2VmMXV5UzJhWm9QZ1hrLmNlcjBPBgNVHSABAf8ERTBD
MEEGCCsGAQUFBw4CMDUwMwYIKwYBBQUHAgEWJ2h0dHBzOi8vcnBraS5hZnJpbmlj
Lm5ldC9wb2xpY3kvQ1BTLnBkZjCBpAYIKwYBBQUHAQsEgZcwgZQwgZEGCCsGAQUF
BzALhoGEcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVy
X3JlcG9zaXRvcnkvRjM2RjZFNEEvOUQ1OTRGNzI0MUE2MTFFQTg4ODYzRTI4RjhB
RUEyMjgvNDFCNkFEODY0NjlDMTFFQTgxNDY5MjI3RjhBRUEyMjgucm9hMCAGCCsG
AQUFBwEHAQH/BBEwDzANBAIAAjAHAwUALA/z0DANBgkqhkiG9w0BAQsFAAOCAQEA
f09aYpARSNz8GpRrq2ZozJGKKU8yUBxqTxl6D70r2f0XyiNiWyE6JfSrkcKMfEdp
cYZ16dlJsa2Syf+E7q6zFoH+VYGzA7a+oMY/cDGiwtTQCfaYQG/G8q3pDB7hKb9x
9E4Eq1pI5clL4IRPR4y1+TTw/0KJ2XS9QobqrqrH9IEG68yhQGCC9uBIzXnFP7CC
C5WQryVSiagQF/5PVwScPVwZ2KHBNxIuIXOndcUcKT/rsdBSf7pJQGwAHCgNQfM8
nq0HVbyIopoz0KY4uGuJvjlaoPRSlPcn56ttIO6a0jm4BLHisGaQgRSNptl5NrzT
TSe3uiRcp8I1J7x8I+AFjg==
-----END CERTIFICATE-----
Generated at Fri Nov 22 02:10:19 2024 by rpki-client on console-fra.rpki-client.org