Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3618519/2BFB6B42916111EB9B0F954AF8AEA228/257632CA2BBF11EE8D016D794AD9E6FC.roa
File: 257632CA2BBF11EE8D016D794AD9E6FC.roa (raw, json)
Hash identifier: FZvaLJO1ovX+ABRwzHcFz2fLzCeEcA9zt9+xiryNvJ0=
Subject key identifier: 62:A1:F7:28:94:ED:EA:7B:FD:EE:E7:74:A4:F2:4A:77:21:CF:F2:BB
Certificate issuer: /CN=F3618519AF/serialNumber=7BD8A2D0454D6263E227FA7EEA6A1F865AF02406
Certificate serial: 0386
Authority key identifier: 7B:D8:A2:D0:45:4D:62:63:E2:27:FA:7E:EA:6A:1F:86:5A:F0:24:06
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/e9ii0EVNYmPiJ_p-6mofhlrwJAY.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3618519/2BFB6B42916111EB9B0F954AF8AEA228/257632CA2BBF11EE8D016D794AD9E6FC.roa
Signing time: Wed 26 Jul 2023 14:17:26 +0000
ROA not before: Wed 26 Jul 2023 14:17:22 +0000
ROA not after: Mon 31 Jul 2028 14:17:22 +0000
asID: 328813
IP address blocks: 2001:43ff::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3618519/2BFB6B42916111EB9B0F954AF8AEA228/e9ii0EVNYmPiJ_p-6mofhlrwJAY.crl
rsync://rpki.afrinic.net/repository/member_repository/F3618519/2BFB6B42916111EB9B0F954AF8AEA228/e9ii0EVNYmPiJ_p-6mofhlrwJAY.mft
rsync://rpki.afrinic.net/repository/afrinic/e9ii0EVNYmPiJ_p-6mofhlrwJAY.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 27 Nov 2024 00:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 902 (0x386)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3618519AF/serialNumber=7BD8A2D0454D6263E227FA7EEA6A1F865AF02406
Validity
Not Before: Jul 26 14:17:22 2023 GMT
Not After : Jul 31 14:17:22 2028 GMT
Subject: CN=64c12af6-3516
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:da:10:ac:71:97:40:69:5f:38:d8:d2:3a:59:
03:a1:27:3f:c9:18:26:bc:5e:34:40:fd:c7:72:18:
3d:97:f3:d1:cf:76:c5:29:c2:f9:3a:90:bf:39:4e:
1d:0b:fe:75:e4:3f:1a:2a:50:ad:a7:c3:49:1e:2e:
cc:a0:54:b1:31:24:0b:69:1c:cc:0a:d3:cf:3d:d5:
7c:46:4e:84:08:b1:95:16:f2:28:c2:3b:0d:1d:3f:
50:df:e9:6d:7f:e6:1d:d2:c5:e8:a7:cd:f0:b3:ba:
24:2a:18:63:1f:05:ea:df:bf:83:d3:c6:2e:43:24:
b5:32:dd:b1:34:14:f5:87:8b:b4:98:6b:59:ee:99:
11:4d:f6:c8:92:ce:5b:44:e4:83:ea:0a:c3:76:62:
56:7f:f1:3a:b9:e0:c9:30:9e:14:5b:bb:85:21:29:
d3:e5:12:e6:5a:a4:e3:61:ea:36:d1:9d:2a:3f:bb:
f8:a4:c8:61:b0:64:1b:4c:ec:77:e1:9c:5e:78:27:
65:dd:c0:4e:bb:b2:e3:dd:92:7e:2d:a8:09:2f:50:
d3:c1:b0:69:7c:7e:1b:86:22:a2:5e:2f:46:fd:64:
67:e6:3c:e4:42:f1:fb:75:79:c1:92:b0:0d:c6:9d:
10:91:80:cd:51:52:9a:95:99:3d:2d:4e:aa:a1:f9:
02:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:A1:F7:28:94:ED:EA:7B:FD:EE:E7:74:A4:F2:4A:77:21:CF:F2:BB
X509v3 Authority Key Identifier:
keyid:7B:D8:A2:D0:45:4D:62:63:E2:27:FA:7E:EA:6A:1F:86:5A:F0:24:06
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3618519/2BFB6B42916111EB9B0F954AF8AEA228/e9ii0EVNYmPiJ_p-6mofhlrwJAY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/e9ii0EVNYmPiJ_p-6mofhlrwJAY.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3618519/2BFB6B42916111EB9B0F954AF8AEA228/257632CA2BBF11EE8D016D794AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:43ff::/48
Signature Algorithm: sha256WithRSAEncryption
7b:e1:0b:aa:7e:e7:b1:69:a9:bb:27:cb:92:79:68:47:7f:5a:
79:5a:b9:8a:f8:21:96:eb:0f:f0:a2:8f:ee:30:27:31:50:74:
ae:0d:1d:6a:57:22:48:d8:34:b9:0c:b2:2f:95:a8:d8:f5:c8:
1d:e8:a8:72:74:83:1b:25:53:bc:d6:cd:ba:d9:00:30:ec:aa:
ca:35:ad:07:a1:e3:7b:49:7a:1f:1a:dc:f6:6f:4a:33:e2:0d:
31:78:2d:15:92:49:3d:3d:54:14:37:20:dd:ca:37:92:a1:9b:
14:e1:2d:2b:43:3d:c7:1e:f4:9f:37:31:bd:db:0d:96:88:90:
7d:fc:3a:fe:e6:93:38:67:c7:3d:4d:e5:b9:d8:b0:e1:b2:d9:
59:5d:53:44:6d:2b:85:e8:a2:66:f1:60:1d:02:b9:01:98:1f:
ea:ec:8c:5c:57:e8:86:58:74:4e:92:22:56:99:29:a0:ae:11:
e6:7b:41:4f:9a:9a:2c:d8:20:f8:60:28:74:ce:34:1f:af:d4:
b2:04:c9:23:50:09:16:4f:d9:df:a6:fa:47:cd:cb:9c:0b:a2:
52:d6:d6:c3:1a:72:8c:aa:97:5c:fa:8a:83:b0:d7:f5:04:ab:
e3:73:04:5a:a1:8f:59:66:2d:ca:8d:a9:ae:74:81:c1:56:02:
c7:14:25:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 02:58:24 2024 by rpki-client on console-fra.rpki-client.org