Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36FA5EA/0B1437CA38B211ED8B64E4DBF1222468/CDD57DB838B311ED8F2565E0F1222468.roa
File: CDD57DB838B311ED8F2565E0F1222468.roa (raw, json)
Hash identifier: lvpuPAayZCAZ8sAWxk4Bh6TuSa4Vk3CsOj5MACj5/q4=
Subject key identifier: 8E:3F:44:FF:52:F2:CF:83:0C:1F:F3:8F:67:DA:0F:E4:30:83:73:5C
Certificate issuer: /CN=F36FA5EAAF/serialNumber=3DCB79C7386C14A69C4355F34C3BC5B34F444BAE
Certificate serial: 04
Authority key identifier: 3D:CB:79:C7:38:6C:14:A6:9C:43:55:F3:4C:3B:C5:B3:4F:44:4B:AE
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/Pct5xzhsFKacQ1XzTDvFs09ES64.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36FA5EA/0B1437CA38B211ED8B64E4DBF1222468/CDD57DB838B311ED8F2565E0F1222468.roa
Signing time: Tue 20 Sep 2022 07:14:02 +0000
ROA not before: Tue 20 Sep 2022 07:13:59 +0000
ROA not after: Sat 20 Sep 2025 07:13:59 +0000
asID: 36909
IP address blocks: 2c0f:fd20::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36FA5EA/0B1437CA38B211ED8B64E4DBF1222468/Pct5xzhsFKacQ1XzTDvFs09ES64.crl
rsync://rpki.afrinic.net/repository/member_repository/F36FA5EA/0B1437CA38B211ED8B64E4DBF1222468/Pct5xzhsFKacQ1XzTDvFs09ES64.mft
rsync://rpki.afrinic.net/repository/afrinic/Pct5xzhsFKacQ1XzTDvFs09ES64.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4 (0x4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36FA5EAAF/serialNumber=3DCB79C7386C14A69C4355F34C3BC5B34F444BAE
Validity
Not Before: Sep 20 07:13:59 2022 GMT
Not After : Sep 20 07:13:59 2025 GMT
Subject: CN=6329683a-56d2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:b2:2d:17:e8:8f:f4:92:b6:52:77:52:c3:ac:
e4:19:c6:e5:47:d2:27:3c:12:08:12:d8:c1:b8:94:
5f:2d:6e:fe:fa:bd:e0:82:6d:32:fd:e9:f1:09:2c:
5e:ba:9d:0d:d9:c4:20:ea:1a:41:83:57:40:8f:c7:
8d:70:6c:ac:17:20:52:33:e9:0c:26:36:b3:21:4d:
62:3b:7d:81:d3:9d:f8:42:dc:f0:87:c8:23:33:6f:
98:f7:c9:be:2c:75:b9:2d:63:fa:59:5b:31:21:1f:
b2:a7:58:58:55:5f:f5:99:d2:2a:94:ab:14:5e:e2:
f7:58:67:fd:20:2e:d4:60:92:1c:20:e4:68:f3:d5:
ae:8b:89:da:3d:7b:11:5f:2e:7d:e8:5c:4e:3c:cf:
bb:6c:c6:d0:26:82:f1:ff:cd:c7:d4:b3:d1:05:2e:
f3:45:08:8b:43:1f:a0:2a:23:2f:16:1a:f3:ca:7c:
46:62:9c:54:c1:96:6e:28:90:83:88:05:47:c2:a5:
36:0e:9d:20:33:49:a2:79:42:bd:ce:39:03:6a:33:
e2:20:bd:dc:91:92:85:3c:1d:12:f0:f2:7a:cb:91:
d5:91:4e:92:31:61:36:98:a3:9a:e9:cf:d2:1b:07:
99:e0:38:4a:39:12:40:3d:8c:65:40:98:a1:75:44:
97:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:3F:44:FF:52:F2:CF:83:0C:1F:F3:8F:67:DA:0F:E4:30:83:73:5C
X509v3 Authority Key Identifier:
keyid:3D:CB:79:C7:38:6C:14:A6:9C:43:55:F3:4C:3B:C5:B3:4F:44:4B:AE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36FA5EA/0B1437CA38B211ED8B64E4DBF1222468/Pct5xzhsFKacQ1XzTDvFs09ES64.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/Pct5xzhsFKacQ1XzTDvFs09ES64.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36FA5EA/0B1437CA38B211ED8B64E4DBF1222468/CDD57DB838B311ED8F2565E0F1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2c0f:fd20::/32
Signature Algorithm: sha256WithRSAEncryption
35:92:51:2d:52:81:58:61:2f:cc:d4:d0:95:7e:24:ba:3f:f3:
12:bd:18:68:67:1b:cc:67:aa:26:53:9c:1d:68:94:ad:15:c5:
b0:df:81:83:f0:50:b2:ad:7d:dd:c8:ef:37:b6:e4:1f:b7:38:
6b:85:7e:83:4c:78:66:b2:ac:5c:ff:bd:cb:7f:37:a2:94:7c:
54:89:f5:42:c3:6c:4e:a3:9d:8a:b1:5c:19:cb:33:de:2f:cf:
ce:b6:f7:02:8d:a9:d5:51:14:95:0b:d8:d8:64:2b:9f:ee:be:
1e:42:34:46:4d:b5:a2:f6:b4:bd:75:82:54:f6:90:8e:16:0d:
1d:dc:d8:8c:ff:77:9c:34:d4:4d:7c:bf:04:d3:c9:c1:38:a5:
a3:ef:0f:92:10:82:12:bc:65:65:fa:58:d3:ab:d7:86:57:6f:
d9:16:d4:64:03:88:8c:7e:62:97:fc:c1:0d:19:40:b7:94:ba:
a4:53:3b:80:51:d1:1c:3d:78:d8:d2:67:58:08:d1:78:c6:7a:
f2:4f:c9:25:68:8b:93:e8:64:eb:d9:01:f4:18:d7:2d:4f:b3:
1d:4d:d4:c3:47:b6:98:65:ba:e7:f5:c8:1a:5e:ce:b0:ae:6e:
d9:c6:39:0e:70:ce:bd:5a:7e:9a:61:f1:53:3a:e3:2b:f5:76:
fe:00:31:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 03:53:01 2024 by rpki-client on console-fra.rpki-client.org