Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F362EFF3/AC085646F5B511EDA75CAF494AD9E6FC/6C2FB170FFA811EDB10BF6814AD9E6FC.roa
File: 6C2FB170FFA811EDB10BF6814AD9E6FC.roa (raw, json)
Hash identifier: lBXXLwdkJTr+JXNn+pD+2aYKlgsMQpQ0R3v3F5qO+ns=
Subject key identifier: 63:6E:81:64:AF:03:1B:C2:02:49:A6:53:F5:65:FC:B4:DC:32:75:69
Certificate issuer: /CN=F362EFF3AF/serialNumber=CE353E0607226C951E60FD6880CECCFB98D2BC48
Certificate serial: 15
Authority key identifier: CE:35:3E:06:07:22:6C:95:1E:60:FD:68:80:CE:CC:FB:98:D2:BC:48
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/zjU-BgcibJUeYP1ogM7M-5jSvEg.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F362EFF3/AC085646F5B511EDA75CAF494AD9E6FC/6C2FB170FFA811EDB10BF6814AD9E6FC.roa
Signing time: Wed 31 May 2023 11:43:55 +0000
ROA not before: Wed 31 May 2023 11:43:52 +0000
ROA not after: Sat 31 Dec 2033 11:43:52 +0000
asID: 329095
IP address blocks: 102.215.99.0/24 maxlen: 24
2c0f:940::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F362EFF3/AC085646F5B511EDA75CAF494AD9E6FC/zjU-BgcibJUeYP1ogM7M-5jSvEg.crl
rsync://rpki.afrinic.net/repository/member_repository/F362EFF3/AC085646F5B511EDA75CAF494AD9E6FC/zjU-BgcibJUeYP1ogM7M-5jSvEg.mft
rsync://rpki.afrinic.net/repository/afrinic/zjU-BgcibJUeYP1ogM7M-5jSvEg.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 27 Nov 2024 00:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 21 (0x15)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F362EFF3AF/serialNumber=CE353E0607226C951E60FD6880CECCFB98D2BC48
Validity
Not Before: May 31 11:43:52 2023 GMT
Not After : Dec 31 11:43:52 2033 GMT
Subject: CN=647732fb-7853
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:37:f8:25:3e:ab:7a:16:7a:38:b2:af:79:1f:
23:06:85:d3:84:31:36:3e:ff:9f:fb:84:a7:1d:c1:
ca:88:ff:73:3c:ec:a4:79:00:ce:d7:1b:f3:51:4b:
c9:f7:71:3d:d8:a1:3d:4c:f2:65:45:31:c3:3f:16:
a5:5b:1b:0c:ed:8d:c1:f1:fa:6a:3f:ec:c3:75:32:
71:a4:0a:30:97:dd:82:a5:f1:3f:bb:82:82:a5:48:
2f:2d:47:80:5e:20:01:df:e4:b6:f8:7b:6b:23:4a:
97:c9:bc:48:5b:10:ea:f5:2d:af:c1:73:8e:16:ef:
71:92:a0:71:0b:f4:9e:3f:35:cc:47:66:87:be:e0:
60:0c:30:bd:93:85:a5:09:e7:b9:ba:e0:0d:71:8e:
61:37:fe:f4:cc:1e:85:8c:62:ef:7c:a0:71:f6:3a:
24:ce:40:66:a4:d5:7a:b6:35:34:b9:ff:e5:14:3c:
bb:e0:af:8a:85:e8:ea:ea:68:d8:90:41:ba:6c:22:
c0:f2:b0:51:43:b9:9a:c3:36:21:55:4b:5c:2a:44:
60:07:00:f3:48:78:94:e9:45:5f:20:17:db:53:03:
65:af:f1:78:ba:d8:f6:c8:bf:16:2c:f0:b1:e5:bf:
b1:5c:06:ca:78:e0:67:e0:fe:db:6f:fe:0a:cd:66:
0f:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:6E:81:64:AF:03:1B:C2:02:49:A6:53:F5:65:FC:B4:DC:32:75:69
X509v3 Authority Key Identifier:
keyid:CE:35:3E:06:07:22:6C:95:1E:60:FD:68:80:CE:CC:FB:98:D2:BC:48
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F362EFF3/AC085646F5B511EDA75CAF494AD9E6FC/zjU-BgcibJUeYP1ogM7M-5jSvEg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/zjU-BgcibJUeYP1ogM7M-5jSvEg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F362EFF3/AC085646F5B511EDA75CAF494AD9E6FC/6C2FB170FFA811EDB10BF6814AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.215.99.0/24
IPv6:
2c0f:940::/32
Signature Algorithm: sha256WithRSAEncryption
44:58:6f:54:61:e8:0e:19:4e:0f:2e:e9:21:9e:6b:8a:50:21:
2f:a4:94:0a:52:d7:10:cc:c9:de:85:5a:3a:3e:d3:0d:cf:30:
08:3e:1a:45:bc:41:55:b2:d3:b8:06:62:3c:ad:d4:ac:83:1d:
98:c5:9a:61:5f:72:a6:0b:de:ef:6a:1b:91:6a:4f:55:b0:a3:
14:8a:4b:16:a2:01:bf:f0:a5:54:f3:b8:c1:8c:37:81:cd:23:
01:aa:a5:66:dc:c0:13:75:5e:4b:31:b6:33:8f:75:61:66:42:
ba:11:de:35:63:a1:44:3d:7d:46:a2:c8:bc:eb:54:0b:a9:48:
2c:3a:60:36:61:24:93:21:a9:5b:6a:f9:82:91:91:51:52:4f:
79:71:87:01:13:9b:a1:8d:d0:ef:68:b4:1d:c3:6a:28:4b:9e:
d3:df:8e:ce:85:46:b0:fe:cb:c1:c8:d0:58:ac:81:18:0d:3a:
39:8e:30:4e:15:b3:b0:e9:14:ef:2b:88:13:f3:1d:73:7c:a4:
c6:3d:57:ce:6e:d4:93:ca:55:07:a2:70:64:93:1b:41:0b:b1:
4e:6d:5d:ce:4b:e6:a1:55:11:84:cb:77:a7:f4:a7:75:6f:2f:
0c:f3:b2:f4:7c:f8:e1:bc:14:d8:51:2b:e7:ee:07:31:3d:31:
21:8b:63:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 04:54:22 2024 by rpki-client on console-fra.rpki-client.org