Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3629595/612C69843D0C11EE96559D774AD9E6FC/054094BC3FF811EE81E5E73E4AD9E6FC.roa
File: 054094BC3FF811EE81E5E73E4AD9E6FC.roa (raw, json)
Hash identifier: CjcOFUpPISl7bBWR1ojvxALzjkJgMeu4M9y6B2QpvRg=
Subject key identifier: BB:6E:D4:90:D7:7E:34:99:9E:DA:C4:2E:20:B1:B1:DD:B6:60:1F:51
Certificate issuer: /CN=F3629595AF/serialNumber=DC4248C07B298CCD6B39E76BE130CBD27B6C8A05
Certificate serial: 08
Authority key identifier: DC:42:48:C0:7B:29:8C:CD:6B:39:E7:6B:E1:30:CB:D2:7B:6C:8A:05
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/3EJIwHspjM1rOedr4TDL0ntsigU.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3629595/612C69843D0C11EE96559D774AD9E6FC/054094BC3FF811EE81E5E73E4AD9E6FC.roa
Signing time: Mon 21 Aug 2023 07:54:57 +0000
ROA not before: Mon 21 Aug 2023 07:54:53 +0000
ROA not after: Sun 21 Aug 2033 07:54:53 +0000
asID: 329144
IP address blocks: 2c0f:7e80::/32 maxlen: 56
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3629595/612C69843D0C11EE96559D774AD9E6FC/3EJIwHspjM1rOedr4TDL0ntsigU.crl
rsync://rpki.afrinic.net/repository/member_repository/F3629595/612C69843D0C11EE96559D774AD9E6FC/3EJIwHspjM1rOedr4TDL0ntsigU.mft
rsync://rpki.afrinic.net/repository/afrinic/3EJIwHspjM1rOedr4TDL0ntsigU.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8 (0x8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3629595AF/serialNumber=DC4248C07B298CCD6B39E76BE130CBD27B6C8A05
Validity
Not Before: Aug 21 07:54:53 2023 GMT
Not After : Aug 21 07:54:53 2033 GMT
Subject: CN=64e31851-3306
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:49:f9:8f:de:02:ae:2a:fb:d3:62:58:84:72:
9e:63:52:2d:ea:36:e4:9c:40:c4:5b:5f:5b:99:17:
64:28:dc:50:dc:98:78:81:30:85:47:72:ca:f1:12:
fc:54:95:3d:8d:0c:5e:09:3c:a9:91:43:63:f1:22:
07:67:61:8e:91:e6:27:3e:74:a6:e4:a2:a7:32:7a:
05:ac:e3:8a:0f:a4:44:99:91:27:00:8b:c1:0d:1e:
14:93:62:00:74:e0:74:ac:9e:a1:84:6c:01:9f:5e:
34:08:e8:59:f3:d6:55:bd:9e:3b:3e:38:81:0c:da:
b0:9c:7c:0c:da:4a:da:17:ad:7f:50:c4:2c:81:de:
1f:ae:35:23:30:a3:4a:ca:e9:cf:0f:80:a0:1e:9a:
0e:6b:fa:1a:67:63:b1:ea:35:9d:ea:83:89:fb:18:
7a:2b:0c:d0:05:f2:3d:88:c7:75:1a:0f:36:ef:1e:
60:e2:31:a8:4c:83:50:aa:d0:f3:bf:8c:6f:02:84:
bf:92:74:cf:32:78:78:d6:3a:bd:41:73:a5:9d:af:
0d:b4:f8:df:90:9a:05:68:cb:59:f3:21:3d:f5:93:
02:8e:16:ae:ea:07:27:d1:6a:1e:73:94:2d:5b:ab:
68:96:38:33:6a:d0:dd:74:c1:6e:13:8a:49:a7:7e:
6f:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:6E:D4:90:D7:7E:34:99:9E:DA:C4:2E:20:B1:B1:DD:B6:60:1F:51
X509v3 Authority Key Identifier:
keyid:DC:42:48:C0:7B:29:8C:CD:6B:39:E7:6B:E1:30:CB:D2:7B:6C:8A:05
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3629595/612C69843D0C11EE96559D774AD9E6FC/3EJIwHspjM1rOedr4TDL0ntsigU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/3EJIwHspjM1rOedr4TDL0ntsigU.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3629595/612C69843D0C11EE96559D774AD9E6FC/054094BC3FF811EE81E5E73E4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2c0f:7e80::/32
Signature Algorithm: sha256WithRSAEncryption
39:09:20:3a:df:47:2a:86:09:e8:76:d9:94:33:12:06:2a:3a:
78:77:6e:4a:91:b0:ca:1d:3c:7e:cd:62:31:81:c8:a0:8a:8a:
54:99:24:10:e5:c8:16:f4:ff:70:1d:41:68:6b:a2:38:cb:70:
b2:fb:b0:3f:b9:2d:94:23:04:26:c2:36:b4:ee:e0:0d:ef:68:
c5:ee:27:77:05:47:f1:bb:a3:ef:85:9b:40:b7:2a:0f:b5:76:
bb:21:6d:0d:92:4f:c6:5f:47:a2:f8:74:26:76:55:18:68:b3:
17:9b:74:e3:b1:ca:62:3d:42:76:8d:6a:23:2f:94:38:5b:67:
4b:88:dc:a5:62:bf:59:75:d2:76:ef:db:3b:4a:d8:3d:aa:47:
a2:52:5c:53:f4:b6:62:8b:d2:e5:ab:8f:c9:e9:85:5e:09:f4:
92:d2:46:5a:ce:3d:2f:22:e5:e6:63:40:fb:7a:7d:c2:7c:5d:
e3:20:a4:80:32:ff:e0:7e:70:7e:35:3e:c2:f0:1b:af:e8:b7:
0f:e3:28:b0:8f:f9:21:f0:d4:bc:58:3a:b4:15:50:bf:86:89:
06:39:19:69:0b:46:46:f1:bc:24:5f:81:ac:54:21:c6:62:aa:
9c:a0:c8:a5:df:c8:0c:c6:67:76:9c:8e:ce:f0:4f:d9:46:52:
b2:db:46:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:03:31 2024 by rpki-client on console-ams.rpki-client.org