Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F362412E/3A239A207E3811EE854EE4394AD9E6FC/AD4DC7B2E81B11EE9D0AAC4C775412E6.roa
File: AD4DC7B2E81B11EE9D0AAC4C775412E6.roa (raw, json)
Hash identifier: Rg0rPDoDCNsPvE5jk03o2oztgTr1S1Uz/K+MpVZVO/k=
Subject key identifier: 79:23:8E:61:B0:62:7B:99:C9:0F:A2:85:0E:14:0D:A3:78:78:A2:98
Certificate issuer: /CN=F362412EAF/serialNumber=D628E4C96ABA9CFB124477867BBDF1A4435F0F5B
Certificate serial: A1
Authority key identifier: D6:28:E4:C9:6A:BA:9C:FB:12:44:77:86:7B:BD:F1:A4:43:5F:0F:5B
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/1ijkyWq6nPsSRHeGe73xpENfD1s.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F362412E/3A239A207E3811EE854EE4394AD9E6FC/AD4DC7B2E81B11EE9D0AAC4C775412E6.roa
Signing time: Fri 22 Mar 2024 07:13:27 +0000
ROA not before: Fri 22 Mar 2024 07:13:23 +0000
ROA not after: Tue 22 Mar 2044 07:13:23 +0000
asID: 36962
IP address blocks: 2c0f:fd98::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F362412E/3A239A207E3811EE854EE4394AD9E6FC/1ijkyWq6nPsSRHeGe73xpENfD1s.crl
rsync://rpki.afrinic.net/repository/member_repository/F362412E/3A239A207E3811EE854EE4394AD9E6FC/1ijkyWq6nPsSRHeGe73xpENfD1s.mft
rsync://rpki.afrinic.net/repository/afrinic/1ijkyWq6nPsSRHeGe73xpENfD1s.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 04 Jun 2024 00:04:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 161 (0xa1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F362412EAF/serialNumber=D628E4C96ABA9CFB124477867BBDF1A4435F0F5B
Validity
Not Before: Mar 22 07:13:23 2024 GMT
Not After : Mar 22 07:13:23 2044 GMT
Subject: CN=65fd2f96-7def
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f8:16:86:ec:fb:b8:25:e5:69:fe:be:95:9e:ef:
13:26:b6:aa:7a:9a:fe:c6:4a:78:68:0b:e1:c9:f8:
5d:69:4d:02:86:a3:54:bf:12:f1:1e:ae:17:cc:18:
5f:52:c9:d7:05:59:bb:8a:35:61:6c:b1:5f:a9:cc:
2f:ce:15:a5:cd:33:ea:f4:32:bc:6a:3e:09:83:e3:
8c:a0:3b:c7:84:79:f9:96:97:f1:b1:31:80:2c:c9:
10:4b:03:3e:34:2d:70:9f:94:f0:b0:fd:a4:c8:3c:
a8:b1:2d:da:1a:d7:45:f7:f7:2b:fd:ca:f8:52:17:
3a:96:43:a6:db:01:4d:d1:7f:f8:9e:2e:23:59:a3:
0e:39:70:a2:5d:51:8d:8b:94:56:c1:19:82:ca:cd:
93:4e:9a:5c:ba:8f:bb:1b:2b:7e:ec:a3:1c:78:dc:
b2:10:e8:41:57:e1:15:29:e0:e4:da:6f:b1:d9:1a:
cd:f7:f8:43:84:5e:c6:78:87:b2:5e:d1:28:b1:78:
b6:4d:c5:c3:2d:23:03:fd:c4:cc:82:a7:a6:68:33:
3b:5a:b1:8c:16:df:53:fe:03:33:76:d1:09:7f:36:
21:f6:52:f3:82:04:f8:28:d9:ea:c7:2b:c9:6f:3e:
69:5c:05:22:bb:0a:30:c1:1c:a1:76:83:fd:02:be:
e9:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:23:8E:61:B0:62:7B:99:C9:0F:A2:85:0E:14:0D:A3:78:78:A2:98
X509v3 Authority Key Identifier:
keyid:D6:28:E4:C9:6A:BA:9C:FB:12:44:77:86:7B:BD:F1:A4:43:5F:0F:5B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F362412E/3A239A207E3811EE854EE4394AD9E6FC/1ijkyWq6nPsSRHeGe73xpENfD1s.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/1ijkyWq6nPsSRHeGe73xpENfD1s.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F362412E/3A239A207E3811EE854EE4394AD9E6FC/AD4DC7B2E81B11EE9D0AAC4C775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2c0f:fd98::/32
Signature Algorithm: sha256WithRSAEncryption
69:93:27:79:d0:39:b7:6c:9f:fd:0d:ce:de:2e:6a:46:f6:b7:
a2:3f:d9:19:33:f2:c7:13:fa:7b:dd:0f:50:fd:95:89:ea:65:
04:6f:48:7d:ad:0c:bf:db:15:24:31:7e:26:e0:99:f6:db:e0:
cb:6f:e8:dc:7b:4a:7e:17:f9:2c:37:96:ee:70:8b:d4:ee:96:
b7:89:69:60:4d:3c:45:a7:6f:fa:76:4b:4f:a3:52:67:f3:d2:
09:da:de:23:32:f4:b3:36:10:39:4f:d5:b4:f9:8a:52:5d:de:
f7:b5:02:2b:c6:ae:63:a3:f2:71:88:e3:18:4e:c0:20:97:24:
2e:39:42:df:dc:ee:8d:e9:88:a8:d7:a5:66:e6:b4:2b:fd:22:
cf:c7:3d:68:73:64:01:17:21:9a:bf:e8:17:56:9f:4d:ae:d3:
25:48:7b:44:fa:e2:9a:bb:3e:e5:ad:e6:57:02:9c:15:b4:ee:
69:77:48:ed:ea:4b:47:2c:58:84:28:9f:5d:99:dd:2e:62:67:
84:dc:6a:8f:74:8e:9f:7c:a8:d1:8f:9c:de:1b:53:de:51:35:
41:92:a3:b5:fa:7b:65:67:85:e2:cd:05:59:ac:7a:0d:b7:21:
b4:e1:0c:2c:5d:d5:ee:43:ba:65:7d:56:39:14:bf:ca:d5:fa:
eb:1c:46:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 2 03:35:32 2024 by rpki-client on console-fra.rpki-client.org