Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3624E32/08D6A70AEE7311ED942F54164AD9E6FC/60A3BEAAEE7311EDBF3DAE174AD9E6FC.roa
File: 60A3BEAAEE7311EDBF3DAE174AD9E6FC.roa (raw, json)
Hash identifier: QNrfzd3ARf2QVpOaSCByjJBaaDBdSWDu5u6B8Hs+BLk=
Subject key identifier: 4F:C5:4E:80:03:2D:32:47:0B:E1:1D:EE:EA:DD:6F:51:25:99:35:2B
Certificate issuer: /CN=F3624E32AF/serialNumber=97D635F7EDBF98540E6122C9C6C20BE37828B526
Certificate serial: 02
Authority key identifier: 97:D6:35:F7:ED:BF:98:54:0E:61:22:C9:C6:C2:0B:E3:78:28:B5:26
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/l9Y19-2_mFQOYSLJxsIL43gotSY.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3624E32/08D6A70AEE7311ED942F54164AD9E6FC/60A3BEAAEE7311EDBF3DAE174AD9E6FC.roa
Signing time: Tue 09 May 2023 14:11:23 +0000
ROA not before: Tue 09 May 2023 14:11:12 +0000
ROA not after: Fri 09 May 2025 14:11:12 +0000
asID: 328249
IP address blocks: 2c0f:ee08::/32 maxlen: 48
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3624E32/08D6A70AEE7311ED942F54164AD9E6FC/l9Y19-2_mFQOYSLJxsIL43gotSY.crl
rsync://rpki.afrinic.net/repository/member_repository/F3624E32/08D6A70AEE7311ED942F54164AD9E6FC/l9Y19-2_mFQOYSLJxsIL43gotSY.mft
rsync://rpki.afrinic.net/repository/afrinic/l9Y19-2_mFQOYSLJxsIL43gotSY.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 27 Nov 2024 00:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2 (0x2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3624E32AF/serialNumber=97D635F7EDBF98540E6122C9C6C20BE37828B526
Validity
Not Before: May 9 14:11:12 2023 GMT
Not After : May 9 14:11:12 2025 GMT
Subject: CN=645a548b-574c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:81:7e:37:44:35:b1:91:66:e3:a1:cb:bc:2e:
d4:7d:53:05:3b:ad:bf:07:24:ed:16:93:8a:97:d6:
34:dc:ae:23:cd:8a:4e:47:ea:4e:fb:67:34:19:69:
33:df:9a:c0:8c:b2:da:41:c6:58:98:3a:85:55:3b:
ef:25:7d:19:8b:38:0c:0f:bb:47:6e:a0:5f:d0:27:
14:4b:52:a5:47:99:cb:74:6e:af:aa:00:35:b9:18:
f1:a8:ac:6f:62:f7:f3:86:8e:55:bb:5a:29:42:74:
8d:3c:8e:fc:1c:f0:d7:01:6b:a9:34:d3:c5:95:2c:
e8:96:8f:4e:80:6b:e6:b9:ff:fa:07:82:3c:ae:51:
f5:aa:20:96:ea:dc:cc:17:cf:1a:5c:74:b1:94:b8:
e4:9e:b0:12:7b:f9:a9:da:19:ff:0d:ec:2d:2a:38:
c5:77:3c:57:2e:94:d7:5c:cc:50:cb:e6:6f:3b:90:
19:33:0b:c8:a5:3a:bf:6a:36:6c:c1:e5:27:39:a8:
22:33:de:66:9e:3b:ba:99:da:58:07:f3:cb:bb:af:
56:26:e2:d6:b5:b4:49:b0:71:f6:9d:a2:da:a0:83:
63:5e:91:cd:f5:86:3b:2b:eb:48:71:00:20:f0:57:
88:14:fb:28:29:f2:de:9c:2f:e8:60:9d:cb:aa:b3:
62:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:C5:4E:80:03:2D:32:47:0B:E1:1D:EE:EA:DD:6F:51:25:99:35:2B
X509v3 Authority Key Identifier:
keyid:97:D6:35:F7:ED:BF:98:54:0E:61:22:C9:C6:C2:0B:E3:78:28:B5:26
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3624E32/08D6A70AEE7311ED942F54164AD9E6FC/l9Y19-2_mFQOYSLJxsIL43gotSY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/l9Y19-2_mFQOYSLJxsIL43gotSY.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3624E32/08D6A70AEE7311ED942F54164AD9E6FC/60A3BEAAEE7311EDBF3DAE174AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2c0f:ee08::/32
Signature Algorithm: sha256WithRSAEncryption
d8:48:2d:32:c5:41:ca:e2:93:9b:0e:d8:d4:ee:a7:34:ea:2e:
85:e7:8b:30:4d:40:d2:ba:35:7d:e1:69:39:e8:cb:fc:f4:31:
a9:d7:db:58:e4:5f:db:80:dd:cb:78:45:99:ca:8c:b7:06:d0:
6b:1e:78:a3:28:e9:ad:31:ff:6a:b4:60:98:1c:4c:f3:b3:b2:
d5:fc:bc:c5:4e:98:10:6d:f7:1b:83:9c:c4:7c:6d:bd:a5:f4:
c5:54:23:b9:f0:74:e7:4e:9e:62:5c:91:e1:14:de:97:c2:1c:
e9:cc:d0:5c:95:db:bf:33:10:71:38:45:f2:e3:c9:fb:ed:9d:
82:65:bd:11:47:6c:1f:dc:63:1e:df:21:b4:45:81:5b:21:5c:
c1:0e:13:f7:c5:49:16:47:2e:c6:83:a0:d7:13:02:ff:59:6e:
02:a3:48:02:7b:46:ca:30:55:12:28:eb:70:33:76:76:5c:3a:
d4:9e:b7:39:99:f6:2f:70:1e:af:7f:a0:3a:f9:75:ce:49:ab:
b9:bd:31:37:db:b0:45:0d:90:df:b7:10:37:5c:37:a9:16:79:
ef:e5:2f:ba:5e:44:f8:d3:73:68:75:d1:07:69:a5:94:f5:b0:
9a:fb:8f:67:cd:bb:fc:c9:8c:e4:94:a8:0a:1b:0c:2b:d9:67:
20:70:9e:89
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgIBAjANBgkqhkiG9w0BAQsFADBIMRMwEQYDVQQDEwpGMzYy
NEUzMkFGMTEwLwYDVQQFEyg5N0Q2MzVGN0VEQkY5ODU0MEU2MTIyQzlDNkMyMEJF
Mzc4MjhCNTI2MB4XDTIzMDUwOTE0MTExMloXDTI1MDUwOTE0MTExMlowGDEWMBQG
A1UEAxMNNjQ1YTU0OGItNTc0YzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBAM2BfjdENbGRZuOhy7wu1H1TBTutvwck7RaTipfWNNyuI82KTkfqTvtnNBlp
M9+awIyy2kHGWJg6hVU77yV9GYs4DA+7R26gX9AnFEtSpUeZy3Rur6oANbkY8ais
b2L384aOVbtaKUJ0jTyO/Bzw1wFrqTTTxZUs6JaPToBr5rn/+geCPK5R9aoglurc
zBfPGlx0sZS45J6wEnv5qdoZ/w3sLSo4xXc8Vy6U11zMUMvmbzuQGTMLyKU6v2o2
bMHlJzmoIjPeZp47upnaWAfzy7uvVibi1rW0SbBx9p2i2qCDY16RzfWGOyvrSHEA
IPBXiBT7KCny3pwv6GCdy6qzYvECAwEAAaOCAqYwggKiMB0GA1UdDgQWBBRPxU6A
Ay0yRwvhHe7q3W9RJZk1KzAfBgNVHSMEGDAWgBSX1jX37b+YVA5hIsnGwgvjeCi1
JjAOBgNVHQ8BAf8EBAMCB4AwgZUGA1UdHwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6
Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVyX3JlcG9zaXRvcnkv
RjM2MjRFMzIvMDhENkE3MEFFRTczMTFFRDk0MkY1NDE2NEFEOUU2RkMvbDlZMTkt
Ml9tRlFPWVNMSnhzSUw0M2dvdFNZLmNybDBnBggrBgEFBQcBAQRbMFkwVwYIKwYB
BQUHMAKGS3JzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L2Fmcmlu
aWMvbDlZMTktMl9tRlFPWVNMSnhzSUw0M2dvdFNZLmNlcjBPBgNVHSABAf8ERTBD
MEEGCCsGAQUFBw4CMDUwMwYIKwYBBQUHAgEWJ2h0dHBzOi8vcnBraS5hZnJpbmlj
Lm5ldC9wb2xpY3kvQ1BTLnBkZjCB2wYIKwYBBQUHAQsEgc4wgcswgZEGCCsGAQUF
BzALhoGEcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVy
X3JlcG9zaXRvcnkvRjM2MjRFMzIvMDhENkE3MEFFRTczMTFFRDk0MkY1NDE2NEFE
OUU2RkMvNjBBM0JFQUFFRTczMTFFREJGM0RBRTE3NEFEOUU2RkMucm9hMDUGCCsG
AQUFBzANhilodHRwczovL3JyZHAuYWZyaW5pYy5uZXQvbm90aWZpY2F0aW9uLnht
bDAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACwP7ggwDQYJKoZIhvcNAQEL
BQADggEBANhILTLFQcrik5sO2NTupzTqLoXnizBNQNK6NX3haTnoy/z0ManX21jk
X9uA3ct4RZnKjLcG0GseeKMo6a0x/2q0YJgcTPOzstX8vMVOmBBt9xuDnMR8bb2l
9MVUI7nwdOdOnmJckeEU3pfCHOnM0FyV278zEHE4RfLjyfvtnYJlvRFHbB/cYx7f
IbRFgVshXMEOE/fFSRZHLsaDoNcTAv9ZbgKjSAJ7RsowVRIo63AzdnZcOtSetzmZ
9i9wHq9/oDr5dc5Jq7m9MTfbsEUNkN+3EDdcN6kWee/lL7peRPjTc2h10QdppZT1
sJr7j2fNu/zJjOSUqAobDCvZZyBwnok=
-----END CERTIFICATE-----
Generated at Mon Nov 25 04:43:43 2024 by rpki-client on console-ams.rpki-client.org