Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F361C3A1/2D96772EE0D011E88AE6071CF8AEA228/BF2A74367C2811EDA828B1DDF1222468.roa
File: BF2A74367C2811EDA828B1DDF1222468.roa (raw, json)
Hash identifier: 8Vz8jskWPkYysMtex35shbS5v1VNGyIr6NmUyZ7bv2c=
Subject key identifier: C6:B9:B5:B4:32:30:AC:91:5E:32:0B:71:3E:13:EE:6C:35:56:02:A5
Certificate issuer: /CN=F361C3A1AF/serialNumber=90E9887791CF2D960501F8AEDE24A2334ABA5403
Certificate serial: 0611
Authority key identifier: 90:E9:88:77:91:CF:2D:96:05:01:F8:AE:DE:24:A2:33:4A:BA:54:03
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/kOmId5HPLZYFAfiu3iSiM0q6VAM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F361C3A1/2D96772EE0D011E88AE6071CF8AEA228/BF2A74367C2811EDA828B1DDF1222468.roa
Signing time: Thu 15 Dec 2022 03:29:57 +0000
ROA not before: Thu 15 Dec 2022 03:29:53 +0000
ROA not after: Wed 15 Dec 2032 03:29:53 +0000
asID: 36915
IP address blocks: 2001:4370::/32 maxlen: 48
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F361C3A1/2D96772EE0D011E88AE6071CF8AEA228/kOmId5HPLZYFAfiu3iSiM0q6VAM.crl
rsync://rpki.afrinic.net/repository/member_repository/F361C3A1/2D96772EE0D011E88AE6071CF8AEA228/kOmId5HPLZYFAfiu3iSiM0q6VAM.mft
rsync://rpki.afrinic.net/repository/afrinic/kOmId5HPLZYFAfiu3iSiM0q6VAM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 21 Feb 2025 01:08:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1553 (0x611)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F361C3A1AF
Validity
Not Before: Dec 15 03:29:53 2022 GMT
Not After : Dec 15 03:29:53 2032 GMT
Subject: CN=639a94b5-832c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:59:b7:2f:88:91:ba:31:85:bb:c0:ba:32:10:
9c:a3:3c:96:3c:f9:76:0c:55:dc:f1:04:f6:23:13:
88:e1:64:ba:55:bb:92:59:93:c3:de:57:57:91:b7:
49:f4:15:3f:b5:89:c2:4a:78:02:9c:0c:91:d4:e5:
60:72:40:a2:f1:dd:fe:7c:c4:a1:b4:db:ca:82:54:
c7:4a:1c:b4:a0:15:b4:02:30:01:9c:ab:51:3e:45:
f7:1e:2a:0c:87:f0:51:ee:44:1a:28:09:95:a8:35:
14:95:4e:0b:a9:d1:2f:31:36:15:61:2b:9d:16:80:
4b:c4:9c:da:21:aa:a2:4a:21:b9:72:e9:ff:d0:19:
94:e8:58:c5:9d:27:c6:35:3b:c6:00:87:a2:9e:c0:
83:45:89:bc:72:c8:10:b1:2d:27:f0:23:ef:0f:5d:
3e:1e:94:b7:cf:02:b3:56:48:a7:92:73:82:7c:14:
8c:2c:7c:f7:77:5f:9b:55:cc:75:5c:7c:79:20:c5:
d4:eb:ff:d1:a0:96:cf:f2:d7:99:b1:06:69:f1:e3:
92:f6:51:67:27:bc:04:ed:71:bb:23:4c:78:39:73:
dc:61:11:e1:6e:fa:89:44:f7:cd:80:b7:39:73:bd:
19:df:0d:6a:da:2d:c0:51:6d:94:1b:4c:98:f5:d0:
57:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:B9:B5:B4:32:30:AC:91:5E:32:0B:71:3E:13:EE:6C:35:56:02:A5
X509v3 Authority Key Identifier:
keyid:90:E9:88:77:91:CF:2D:96:05:01:F8:AE:DE:24:A2:33:4A:BA:54:03
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F361C3A1/2D96772EE0D011E88AE6071CF8AEA228/kOmId5HPLZYFAfiu3iSiM0q6VAM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/kOmId5HPLZYFAfiu3iSiM0q6VAM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F361C3A1/2D96772EE0D011E88AE6071CF8AEA228/BF2A74367C2811EDA828B1DDF1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:4370::/32
Signature Algorithm: sha256WithRSAEncryption
53:2c:0a:aa:22:77:8f:5e:35:e7:f2:1c:4f:54:be:42:1a:17:
02:51:95:29:ef:41:72:2a:3a:0a:30:d9:9f:1f:4b:4b:50:6a:
f0:6a:12:6c:06:61:58:78:a7:7d:a2:66:7c:da:c9:8c:bf:ed:
94:fc:e3:0d:b1:ec:2c:7a:d0:71:e9:5b:35:98:a6:26:03:36:
a4:a6:ec:92:71:f9:5e:81:ba:a7:49:58:5c:7d:a4:3a:a6:05:
6f:36:b5:df:d1:9c:bc:fb:f8:15:da:97:d9:da:f8:e8:52:ec:
08:68:cd:48:db:13:7c:ab:b6:15:83:3c:ad:22:97:ec:4e:ab:
17:47:6e:58:c5:16:0f:e5:e0:61:e9:d7:c6:75:15:0b:bc:6f:
89:94:26:00:4a:a9:14:9f:ea:63:d1:49:bf:7f:1b:2a:e4:3d:
ce:07:80:15:ce:f0:85:72:61:a8:87:01:7e:35:98:ee:40:14:
97:94:1e:44:a1:48:78:fe:d5:c3:07:df:60:a6:4e:b4:ec:60:
69:1d:22:12:52:f4:32:ff:85:37:18:6b:f4:81:c2:2b:6f:6d:
c3:c4:80:9c:af:d6:5b:c3:e6:d9:80:86:23:63:77:16:0a:57:
5e:9b:4b:19:f6:7e:b6:65:67:3d:d6:1a:f1:18:97:7c:81:42:
f2:38:59:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 20:55:01 2025 by rpki-client