Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3614DFD/9187C5D4776711EE99DFD9724AD9E6FC/AF323FA6BEB611EE92751B56775412E6.roa
File: AF323FA6BEB611EE92751B56775412E6.roa (raw, json)
Hash identifier: GK2/9/UfmXeWntRnu6M2Z7FCwh1Nn+0g0buRneYltSM=
Subject key identifier: A6:F0:10:6A:1A:F1:A7:0B:E1:06:D9:E1:92:51:3C:6E:A8:CF:3F:EB
Certificate issuer: /CN=F3614DFDAF/serialNumber=3CE74AC525ABC9B505131E56D3AF4BAA0CA86BC7
Certificate serial: 69
Authority key identifier: 3C:E7:4A:C5:25:AB:C9:B5:05:13:1E:56:D3:AF:4B:AA:0C:A8:6B:C7
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/POdKxSWrybUFEx5W069Lqgyoa8c.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3614DFD/9187C5D4776711EE99DFD9724AD9E6FC/AF323FA6BEB611EE92751B56775412E6.roa
Signing time: Mon 29 Jan 2024 14:57:13 +0000
ROA not before: Mon 29 Jan 2024 14:57:09 +0000
ROA not after: Thu 31 Jan 2030 14:57:09 +0000
asID: 37738
IP address blocks: 2c0f:5f40::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3614DFD/9187C5D4776711EE99DFD9724AD9E6FC/POdKxSWrybUFEx5W069Lqgyoa8c.crl
rsync://rpki.afrinic.net/repository/member_repository/F3614DFD/9187C5D4776711EE99DFD9724AD9E6FC/POdKxSWrybUFEx5W069Lqgyoa8c.mft
rsync://rpki.afrinic.net/repository/afrinic/POdKxSWrybUFEx5W069Lqgyoa8c.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 105 (0x69)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3614DFDAF/serialNumber=3CE74AC525ABC9B505131E56D3AF4BAA0CA86BC7
Validity
Not Before: Jan 29 14:57:09 2024 GMT
Not After : Jan 31 14:57:09 2030 GMT
Subject: CN=65b7bcc9-7d8f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:c1:40:0b:1e:d9:02:75:d3:fb:24:a5:63:f3:
65:3e:4e:f0:dd:5d:5f:9a:8b:42:16:2f:82:e6:a2:
6a:d6:cf:de:10:c5:3b:d9:a4:08:7b:77:0b:6a:66:
d4:f4:4c:6c:f5:f3:fa:c3:8f:66:e6:ce:1f:52:a0:
05:a6:8b:98:92:c2:7e:15:d7:1d:59:37:5f:62:c2:
66:b8:78:ff:e8:19:50:b9:6f:8f:a5:82:37:5d:f2:
d8:75:4d:7e:60:f5:74:72:09:29:0f:5e:93:cf:cf:
6b:a1:22:d0:e1:d4:44:95:ed:31:67:08:c2:65:28:
b7:d6:d7:6b:98:24:f0:46:38:f6:12:93:66:a5:52:
b5:8c:8e:0f:e0:5e:ad:05:2f:8f:24:b3:e3:b6:f3:
a0:ea:2f:b6:1b:47:fa:4a:bf:38:10:86:aa:5d:0c:
8f:e4:b0:3e:58:39:06:cb:d3:71:3f:17:39:f9:f4:
0a:7c:89:df:74:e4:8b:ba:42:94:c6:ba:d5:3d:41:
6c:d1:9b:35:1d:04:ff:0d:15:ba:b2:42:d2:c4:0b:
00:6e:c8:49:2d:e9:5f:21:45:4e:d8:2b:ea:a7:92:
01:a7:7e:55:cd:22:70:88:ec:cd:de:4f:21:43:27:
4b:99:92:8c:2f:0d:e3:c8:90:0b:4d:21:d5:be:07:
d8:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:F0:10:6A:1A:F1:A7:0B:E1:06:D9:E1:92:51:3C:6E:A8:CF:3F:EB
X509v3 Authority Key Identifier:
keyid:3C:E7:4A:C5:25:AB:C9:B5:05:13:1E:56:D3:AF:4B:AA:0C:A8:6B:C7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3614DFD/9187C5D4776711EE99DFD9724AD9E6FC/POdKxSWrybUFEx5W069Lqgyoa8c.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/POdKxSWrybUFEx5W069Lqgyoa8c.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3614DFD/9187C5D4776711EE99DFD9724AD9E6FC/AF323FA6BEB611EE92751B56775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2c0f:5f40::/48
Signature Algorithm: sha256WithRSAEncryption
38:47:4d:91:71:87:8c:b1:9d:64:5e:12:5b:0a:44:3c:83:5d:
da:ac:bd:de:c3:b5:be:a2:a5:fa:31:e1:93:04:ac:5c:ab:c6:
14:1e:6b:64:d2:0e:7b:97:47:8d:95:7d:0d:8c:23:a9:e9:14:
38:7d:a2:7a:f0:35:45:3e:2f:d4:06:32:f7:94:e3:9c:9e:b4:
d7:4c:b3:9e:c0:f4:7d:01:9f:d4:53:10:cd:27:ac:4f:29:83:
c7:ff:7a:de:66:01:d9:46:72:47:43:ba:3a:87:35:ed:0f:2e:
9e:ff:b6:8b:d4:0c:c1:38:23:ea:fa:63:24:4a:5e:f0:6c:25:
99:ca:e3:81:86:2f:cc:81:73:f8:85:2a:c5:d5:4c:cf:f3:19:
88:25:ce:08:8e:dd:1b:e0:d6:88:96:91:82:60:18:b0:0b:68:
66:f6:1c:7b:e9:5b:ae:6e:f1:fd:85:cc:1d:32:e9:1e:b9:fc:
28:2a:4c:0e:a6:47:8f:c9:fb:11:66:ad:39:7b:b4:89:c3:23:
71:57:39:9d:95:14:00:cc:8c:ea:4f:dd:1d:bc:43:96:48:2f:
2c:eb:b9:b5:40:79:05:c0:37:a9:0c:a0:64:ca:ab:28:26:13:
7e:db:bc:98:b3:0e:2b:3e:f7:7c:f8:02:f8:1f:58:27:6d:b6:
da:c5:0e:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:03:30 2024 by rpki-client on console-ams.rpki-client.org