Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3614D1D/58CF30E4292811ED8E68E8F8F1222468/0946AEE0EAAA11EEB6FC8A4D775412E6.roa
File: 0946AEE0EAAA11EEB6FC8A4D775412E6.roa (raw, json)
Hash identifier: 4pe1psZanxElcih1u5RzgCI4HGeJZYc0Z4ZB69lx+r4=
Subject key identifier: 9A:B2:BF:59:9F:3D:1A:0D:D5:04:69:EB:78:32:C3:1F:8F:D5:CD:1B
Certificate issuer: /CN=F3614D1DAF/serialNumber=27793D215F08805DB8D0BA892D336F29AB7BB05B
Certificate serial: 0272
Authority key identifier: 27:79:3D:21:5F:08:80:5D:B8:D0:BA:89:2D:33:6F:29:AB:7B:B0:5B
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/J3k9IV8IgF240LqJLTNvKat7sFs.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3614D1D/58CF30E4292811ED8E68E8F8F1222468/0946AEE0EAAA11EEB6FC8A4D775412E6.roa
Signing time: Mon 25 Mar 2024 13:17:32 +0000
ROA not before: Mon 25 Mar 2024 13:17:27 +0000
ROA not after: Fri 31 Mar 2034 13:17:27 +0000
asID: 329063
IP address blocks: 2c0f:7680::/33 maxlen: 33
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3614D1D/58CF30E4292811ED8E68E8F8F1222468/J3k9IV8IgF240LqJLTNvKat7sFs.crl
rsync://rpki.afrinic.net/repository/member_repository/F3614D1D/58CF30E4292811ED8E68E8F8F1222468/J3k9IV8IgF240LqJLTNvKat7sFs.mft
rsync://rpki.afrinic.net/repository/afrinic/J3k9IV8IgF240LqJLTNvKat7sFs.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 28 May 2024 00:04:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 626 (0x272)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3614D1DAF/serialNumber=27793D215F08805DB8D0BA892D336F29AB7BB05B
Validity
Not Before: Mar 25 13:17:27 2024 GMT
Not After : Mar 31 13:17:27 2034 GMT
Subject: CN=6601796c-86ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:87:a1:96:0c:94:be:14:b3:5e:1c:85:9a:3f:
2c:da:c7:54:ce:5e:09:55:ea:03:4d:bf:fb:5e:70:
00:fc:36:16:34:fb:c0:a3:ef:50:dd:73:20:99:98:
a5:d4:7f:84:8e:f1:58:68:b9:c5:5a:af:81:1e:9a:
21:f5:58:6b:cc:c3:13:30:29:5f:5a:18:a9:e5:5c:
2b:e6:d6:b0:70:4b:ad:72:0b:cb:d2:3b:16:de:3d:
f2:b3:33:9d:6d:8b:8b:8a:e1:b7:a6:5b:d4:fa:f8:
89:b2:bc:fb:d7:7a:8f:7d:16:e9:41:7b:2f:0e:c5:
10:95:7d:0f:f0:a5:18:a5:b8:db:5b:bc:bb:74:b5:
9d:ff:e5:bf:d6:43:a9:0e:38:7e:ab:2d:fd:9a:3f:
0c:58:38:52:13:50:21:1d:7d:42:95:e7:b0:8f:60:
29:bc:b4:de:68:bd:25:d7:27:33:76:65:05:18:8a:
cf:ab:6e:e9:e9:2f:f1:b4:e1:0e:b1:1c:27:7e:c6:
5a:b2:77:29:e5:c7:51:c2:24:b7:9b:ae:e7:d1:47:
b3:09:e4:81:62:43:a3:e3:34:27:83:6a:38:05:e4:
ba:a2:9c:3c:df:04:9f:a8:fb:a1:6a:8a:23:13:31:
77:37:f3:eb:d5:02:8f:c8:37:a3:bd:af:18:6c:b4:
a4:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:B2:BF:59:9F:3D:1A:0D:D5:04:69:EB:78:32:C3:1F:8F:D5:CD:1B
X509v3 Authority Key Identifier:
keyid:27:79:3D:21:5F:08:80:5D:B8:D0:BA:89:2D:33:6F:29:AB:7B:B0:5B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3614D1D/58CF30E4292811ED8E68E8F8F1222468/J3k9IV8IgF240LqJLTNvKat7sFs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/J3k9IV8IgF240LqJLTNvKat7sFs.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3614D1D/58CF30E4292811ED8E68E8F8F1222468/0946AEE0EAAA11EEB6FC8A4D775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2c0f:7680::/33
Signature Algorithm: sha256WithRSAEncryption
72:8f:86:8c:18:6b:99:c9:36:aa:da:2f:7d:0a:63:c7:e1:e8:
24:9b:fa:9b:e0:77:51:f1:e4:47:64:0f:b0:6a:2c:0b:62:41:
7a:28:73:6f:0f:12:6f:3a:c3:15:87:af:35:73:a0:2e:67:6b:
3a:84:14:a2:ac:7a:75:79:7e:08:eb:fd:b4:23:69:62:e9:87:
34:78:72:a1:21:85:a4:28:45:21:b0:4f:ee:00:47:98:20:e6:
bd:26:b1:15:90:10:aa:b1:20:e5:d0:26:d5:71:50:ae:1a:35:
64:08:07:ca:e1:40:a8:ef:83:8e:f1:a4:89:8a:74:73:cd:c8:
fd:a4:a9:ad:24:f4:ce:54:81:4b:52:bf:2b:89:c3:0c:05:b4:
32:27:d7:f0:ec:1c:ec:dc:fd:14:7a:e5:74:89:d1:6f:39:fd:
8d:1c:5b:71:57:4b:4f:db:28:07:23:b1:4e:0e:a4:5a:48:ae:
0f:34:21:93:7b:4c:3e:f6:d5:23:3c:d3:a6:c9:21:36:2e:65:
84:cd:d8:87:71:06:89:af:5f:8a:72:c7:d8:6d:78:34:55:2a:
6e:0c:63:10:fe:53:78:b0:f8:fd:0b:25:a5:68:22:23:20:4c:
24:3a:17:21:52:35:91:56:4a:7e:58:5e:1c:04:5d:fa:99:89:
d0:ab:3f:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 26 02:55:16 2024 by rpki-client on console-fra.rpki-client.org