Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3630501/D8156D107A6F11EFAB637B44762E951A/8CB5168E7A7111EFA28C7C4D762E951A.roa
File: 8CB5168E7A7111EFA28C7C4D762E951A.roa (raw, json)
Hash identifier: wxbx8f56MZI34oPvLMhsBGgkuRggcFGrbjCG/8PfNq8=
Subject key identifier: 34:68:E6:FF:5C:CE:CA:1B:5C:4A:6D:BC:A6:88:22:90:62:D7:46:E0
Certificate issuer: /CN=F3630501AF/serialNumber=509AE4078087B95314BDA9EF69D7BB74881C2FDE
Certificate serial: 02
Authority key identifier: 50:9A:E4:07:80:87:B9:53:14:BD:A9:EF:69:D7:BB:74:88:1C:2F:DE
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/UJrkB4CHuVMUvanvade7dIgcL94.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3630501/D8156D107A6F11EFAB637B44762E951A/8CB5168E7A7111EFA28C7C4D762E951A.roa
Signing time: Tue 24 Sep 2024 12:35:58 +0000
ROA not before: Tue 24 Sep 2024 12:35:55 +0000
ROA not after: Sun 24 Sep 2028 12:35:55 +0000
asID: 29802
IP address blocks: 2c0f:8c0:1::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3630501/D8156D107A6F11EFAB637B44762E951A/UJrkB4CHuVMUvanvade7dIgcL94.crl
rsync://rpki.afrinic.net/repository/member_repository/F3630501/D8156D107A6F11EFAB637B44762E951A/UJrkB4CHuVMUvanvade7dIgcL94.mft
rsync://rpki.afrinic.net/repository/afrinic/UJrkB4CHuVMUvanvade7dIgcL94.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 26 Oct 2024 00:05:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2 (0x2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3630501AF/serialNumber=509AE4078087B95314BDA9EF69D7BB74881C2FDE
Validity
Not Before: Sep 24 12:35:55 2024 GMT
Not After : Sep 24 12:35:55 2028 GMT
Subject: CN=66f2b22e-a0a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:04:0c:5d:0d:e0:f3:7f:34:ae:48:54:e1:9d:
f9:20:ad:64:fb:ff:0f:6c:0c:48:9c:a5:f5:d6:1b:
43:70:5d:7c:11:4a:be:b2:0d:10:7f:df:67:d6:22:
3b:ac:5d:35:10:39:8c:32:a7:e5:05:62:26:5f:06:
ac:07:3b:3f:1b:5b:31:44:5c:90:40:c5:d8:65:8d:
30:f3:d8:f6:18:19:46:92:de:81:58:7c:a5:5a:18:
a7:2b:a1:d5:bd:d3:88:7a:26:79:c7:35:d5:8f:49:
26:b0:52:03:a8:f5:2b:0f:e7:5a:47:de:e5:a6:63:
3f:44:5d:08:12:87:eb:dc:59:94:0f:25:f2:92:c7:
fb:13:ae:ef:e5:72:61:85:65:a2:e4:8a:8d:79:76:
3e:97:ab:13:46:12:b6:2b:22:3d:48:c8:20:6d:b0:
d4:27:00:17:11:73:21:e8:42:24:97:f0:ef:a5:ba:
cc:f5:cb:bd:63:fb:4e:29:93:9d:21:c0:43:2e:1f:
05:a2:eb:84:fa:74:48:12:ac:4d:ee:16:71:bd:19:
03:01:02:3b:5a:8d:f9:12:06:29:c7:49:9a:97:06:
d5:53:f2:8e:03:7e:b1:cc:e9:44:fa:a4:ad:e1:fb:
01:5e:6a:86:6a:b0:f6:12:5a:79:e8:ea:e8:3b:35:
e8:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:68:E6:FF:5C:CE:CA:1B:5C:4A:6D:BC:A6:88:22:90:62:D7:46:E0
X509v3 Authority Key Identifier:
keyid:50:9A:E4:07:80:87:B9:53:14:BD:A9:EF:69:D7:BB:74:88:1C:2F:DE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3630501/D8156D107A6F11EFAB637B44762E951A/UJrkB4CHuVMUvanvade7dIgcL94.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/UJrkB4CHuVMUvanvade7dIgcL94.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3630501/D8156D107A6F11EFAB637B44762E951A/8CB5168E7A7111EFA28C7C4D762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2c0f:8c0:1::/48
Signature Algorithm: sha256WithRSAEncryption
44:ac:02:88:cf:9c:22:71:06:aa:8d:9d:46:b1:81:6d:1a:cc:
01:3b:40:1a:ad:8c:0a:13:d3:b0:fb:1e:bc:8e:10:5f:19:ac:
73:8c:d7:cd:e1:eb:d9:59:8f:92:85:62:41:45:0e:53:5e:34:
ef:6b:06:97:20:0b:37:76:09:f5:40:d7:ad:27:97:94:f0:32:
ed:04:ee:79:db:a9:4a:dc:1c:6a:19:64:8e:e4:07:88:50:82:
99:32:2d:4e:cb:a0:30:02:79:c3:7a:00:d1:56:09:27:39:ff:
80:7a:f8:7c:30:d6:f8:92:66:4d:89:73:57:31:2c:fa:8b:f8:
27:4b:57:6b:7c:68:85:26:4d:29:7c:a6:dd:52:75:be:ae:67:
ca:73:7b:97:93:5a:0b:80:12:11:3d:18:bd:99:2f:a4:ba:a5:
77:76:46:07:9e:da:55:2a:7d:e2:b1:a9:75:4e:c7:8f:a3:c9:
d9:f8:55:36:26:16:74:f3:58:4b:9c:9a:a0:02:6f:82:a8:f6:
be:2e:84:83:12:2b:3c:fc:1f:6f:fd:8c:09:92:ea:ec:fc:28:
92:b3:a7:36:0a:81:22:2a:2b:03:31:63:67:ac:50:67:0f:a2:
bd:99:36:e1:63:9e:cd:bb:a5:63:3f:31:cd:e0:9e:fe:fa:47:
16:56:00:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Oct 24 06:47:45 2024 by rpki-client on console-fra.rpki-client.org