Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F361F1DA/2DA8F37A77E011EEA233EA7B4AD9E6FC/6684D06A960311EEBA07EA0DD25BE465.roa
File: 6684D06A960311EEBA07EA0DD25BE465.roa (raw, json)
Hash identifier: 43CBfTPYLSaOl2NwiPQTIsa3VBBdU7WdHBgYb3+EOHI=
Subject key identifier: C5:6C:32:92:00:B8:90:A3:D3:1F:34:19:89:B8:D5:5F:83:E3:32:56
Certificate issuer: /CN=F361F1DAAF/serialNumber=5375B678F36B8D9C6B5DC3281B6F5EB6716A1109
Certificate serial: 2D
Authority key identifier: 53:75:B6:78:F3:6B:8D:9C:6B:5D:C3:28:1B:6F:5E:B6:71:6A:11:09
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/U3W2ePNrjZxrXcMoG29etnFqEQk.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F361F1DA/2DA8F37A77E011EEA233EA7B4AD9E6FC/6684D06A960311EEBA07EA0DD25BE465.roa
Signing time: Fri 08 Dec 2023 19:53:04 +0000
ROA not before: Fri 08 Dec 2023 19:53:00 +0000
ROA not after: Mon 08 Dec 2025 19:53:00 +0000
asID: 327907
IP address blocks: 2c0f:f020::/32 maxlen: 48
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F361F1DA/2DA8F37A77E011EEA233EA7B4AD9E6FC/U3W2ePNrjZxrXcMoG29etnFqEQk.crl
rsync://rpki.afrinic.net/repository/member_repository/F361F1DA/2DA8F37A77E011EEA233EA7B4AD9E6FC/U3W2ePNrjZxrXcMoG29etnFqEQk.mft
rsync://rpki.afrinic.net/repository/afrinic/U3W2ePNrjZxrXcMoG29etnFqEQk.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 45 (0x2d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F361F1DAAF/serialNumber=5375B678F36B8D9C6B5DC3281B6F5EB6716A1109
Validity
Not Before: Dec 8 19:53:00 2023 GMT
Not After : Dec 8 19:53:00 2025 GMT
Subject: CN=65737420-f734
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:0f:08:52:95:cb:6f:2d:9a:77:99:4c:78:72:
85:b7:41:96:45:75:85:a4:20:51:c2:6f:e5:06:88:
75:12:a7:7f:18:bd:c1:32:d8:b6:6c:30:40:20:1a:
aa:84:f6:69:2f:69:21:dd:3a:f7:d1:61:f7:0e:10:
2e:99:5d:05:79:0d:fe:a8:59:64:10:83:a6:91:75:
e5:8d:d9:9b:f2:7a:6d:2a:7f:8e:7b:de:62:20:b6:
85:a0:08:68:7b:80:93:31:35:df:b5:ab:20:e0:df:
52:68:ab:9c:03:14:0c:aa:cc:7a:ac:8e:52:fa:26:
7b:d6:d8:7c:68:c1:f4:e7:fa:f9:07:78:8c:d4:16:
14:8d:3d:c0:37:aa:e3:87:7f:2c:21:0c:93:0d:e0:
30:f4:33:7b:4c:e0:f2:55:2b:04:94:13:73:19:2d:
4b:fc:51:d8:fe:b1:38:a7:84:1d:71:f4:28:f2:84:
e3:dc:77:1e:fa:10:bd:4c:0d:f9:ce:9f:aa:98:ab:
34:16:58:52:2d:ce:00:97:2d:e5:7b:42:a2:8e:93:
de:21:8b:62:30:a1:de:95:fe:bd:40:45:c4:aa:1a:
47:26:b1:89:cd:16:f8:eb:82:c5:83:81:a2:10:57:
c4:f6:cb:3f:34:ab:45:c6:f7:5d:f1:63:c4:74:78:
4c:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:6C:32:92:00:B8:90:A3:D3:1F:34:19:89:B8:D5:5F:83:E3:32:56
X509v3 Authority Key Identifier:
keyid:53:75:B6:78:F3:6B:8D:9C:6B:5D:C3:28:1B:6F:5E:B6:71:6A:11:09
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F361F1DA/2DA8F37A77E011EEA233EA7B4AD9E6FC/U3W2ePNrjZxrXcMoG29etnFqEQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/U3W2ePNrjZxrXcMoG29etnFqEQk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F361F1DA/2DA8F37A77E011EEA233EA7B4AD9E6FC/6684D06A960311EEBA07EA0DD25BE465.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2c0f:f020::/32
Signature Algorithm: sha256WithRSAEncryption
7a:01:d2:79:d4:17:cf:df:20:81:71:d7:8c:0c:b7:67:e5:2b:
90:7f:48:48:02:58:16:5b:c7:c8:50:b4:e2:22:83:fd:83:11:
3b:6f:be:ed:d7:53:55:57:34:4b:c5:8a:12:84:3b:76:09:f5:
02:b5:19:93:42:4c:51:19:7d:66:55:4a:0d:78:d8:28:33:2b:
a7:0a:b0:63:e2:35:96:53:db:0c:e4:f3:6c:b6:18:7f:17:ca:
00:ee:89:73:ce:8d:47:c9:ff:2f:68:17:98:4f:9a:61:e0:9a:
3d:d7:75:d5:5b:0e:60:99:cb:bc:df:fb:7d:31:f6:00:56:89:
9f:a4:04:c5:3d:8d:a4:0e:11:04:5e:c1:71:32:b8:d7:c3:98:
ba:32:75:1a:bd:bb:4b:94:bd:42:8e:a9:0e:d4:d6:fd:ce:cd:
fa:15:35:1b:23:e5:c8:67:f0:c3:fe:74:ed:de:56:59:a3:de:
2d:4e:79:83:f7:1d:0c:d9:75:d1:9a:59:1d:85:2e:77:65:86:
c6:3e:c4:27:e7:d2:4c:61:9a:18:91:1f:8b:57:c7:50:a2:75:
aa:3c:99:6a:b7:52:a6:37:9d:d7:40:8a:ae:03:e5:f3:d8:4b:
e0:03:13:f1:8a:e4:47:45:cf:ed:a9:75:bd:69:99:5c:0f:64:
b5:48:6f:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:03:31 2024 by rpki-client on console-ams.rpki-client.org