Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3630501/D8156D107A6F11EFAB637B44762E951A/FCFCC1C67A7111EF9AF36551762E951A.roa
File: FCFCC1C67A7111EF9AF36551762E951A.roa (raw, json)
Hash identifier: qrAboZUTqac+Q2mxl59aHmWOevvURvqrYd1DnspbsRc=
Subject key identifier: 69:F7:BD:B1:8F:9E:04:47:1D:37:04:AE:2A:3A:7F:5D:FE:6F:A0:54
Certificate issuer: /CN=F3630501AF/serialNumber=509AE4078087B95314BDA9EF69D7BB74881C2FDE
Certificate serial: 04
Authority key identifier: 50:9A:E4:07:80:87:B9:53:14:BD:A9:EF:69:D7:BB:74:88:1C:2F:DE
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/UJrkB4CHuVMUvanvade7dIgcL94.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3630501/D8156D107A6F11EFAB637B44762E951A/FCFCC1C67A7111EF9AF36551762E951A.roa
Signing time: Tue 24 Sep 2024 12:39:07 +0000
ROA not before: Tue 24 Sep 2024 12:38:56 +0000
ROA not after: Sun 24 Sep 2028 12:38:56 +0000
asID: 328364
IP address blocks: 2c0f:8c0::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3630501/D8156D107A6F11EFAB637B44762E951A/UJrkB4CHuVMUvanvade7dIgcL94.crl
rsync://rpki.afrinic.net/repository/member_repository/F3630501/D8156D107A6F11EFAB637B44762E951A/UJrkB4CHuVMUvanvade7dIgcL94.mft
rsync://rpki.afrinic.net/repository/afrinic/UJrkB4CHuVMUvanvade7dIgcL94.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4 (0x4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3630501AF/serialNumber=509AE4078087B95314BDA9EF69D7BB74881C2FDE
Validity
Not Before: Sep 24 12:38:56 2024 GMT
Not After : Sep 24 12:38:56 2028 GMT
Subject: CN=66f2b2eb-497d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:d9:88:33:ce:74:08:84:e4:aa:11:a1:b1:98:
a7:3f:8f:6e:c4:1f:29:de:08:c2:06:3b:7d:49:e0:
4f:4a:8d:d3:d7:fb:fb:58:c0:eb:33:05:67:9c:2f:
8b:ec:1d:d2:7c:a4:02:54:08:cc:05:97:17:d4:d1:
cb:60:a8:66:4d:c8:c3:7f:79:3d:66:4a:45:6c:f9:
58:67:da:57:d3:ad:73:b4:60:f1:bd:24:0f:90:6a:
4d:cd:fa:ce:34:c1:b2:ca:4c:5b:af:86:26:1b:3f:
c1:79:a9:72:d4:a2:fb:c9:57:93:02:db:b8:20:51:
50:44:fc:07:a4:39:b6:b6:f4:f2:58:fd:e9:c3:2f:
9e:e5:c4:3a:42:17:19:df:ae:61:c6:83:ed:10:14:
a2:d5:ba:54:73:db:ee:a9:1d:b9:60:ef:fd:dd:0b:
a7:32:0d:c3:60:92:2d:25:47:32:c6:85:62:bc:55:
7a:c9:2b:fd:e8:00:36:52:95:bb:9c:01:a0:3e:2c:
54:81:8c:09:33:6b:db:70:71:05:f4:cf:7b:18:5f:
cf:8f:e6:f5:c8:7f:6d:eb:75:46:35:90:c6:80:f9:
c2:25:61:1d:87:2a:2c:28:88:17:a8:cd:41:03:d4:
92:95:25:97:7f:9b:ba:2f:56:05:6e:98:99:be:e0:
be:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:F7:BD:B1:8F:9E:04:47:1D:37:04:AE:2A:3A:7F:5D:FE:6F:A0:54
X509v3 Authority Key Identifier:
keyid:50:9A:E4:07:80:87:B9:53:14:BD:A9:EF:69:D7:BB:74:88:1C:2F:DE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3630501/D8156D107A6F11EFAB637B44762E951A/UJrkB4CHuVMUvanvade7dIgcL94.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/UJrkB4CHuVMUvanvade7dIgcL94.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3630501/D8156D107A6F11EFAB637B44762E951A/FCFCC1C67A7111EF9AF36551762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2c0f:8c0::/48
Signature Algorithm: sha256WithRSAEncryption
71:d6:39:4f:a7:5b:74:b8:1c:2d:bf:0a:10:65:9c:0b:74:4b:
ce:5c:65:6e:ac:e2:05:32:dd:8e:ef:3e:2b:a1:39:ec:46:f5:
32:6d:1c:58:f2:3f:8d:8c:e9:b2:b1:30:9f:50:f0:58:7b:6a:
7f:02:fe:ed:65:f8:a2:c1:a7:73:15:37:97:a8:aa:3a:05:fb:
c3:33:3b:d9:ee:6a:a3:4a:3a:db:a0:a3:12:6c:2a:5b:67:fb:
dc:96:68:06:09:31:11:40:0e:29:22:b5:2d:52:27:84:88:31:
df:5c:97:0c:24:4b:fb:a8:35:01:83:aa:0d:e2:40:cf:ac:5e:
15:e9:8b:9f:7a:5d:22:93:c1:01:b0:30:02:33:1f:09:a4:98:
f7:ed:11:0d:c8:4a:07:79:39:58:01:4a:7d:21:cf:72:22:bc:
c1:3e:4e:47:cb:41:14:11:bd:ed:89:98:93:42:84:6f:4a:8a:
8e:32:c0:c5:72:9d:df:e0:d9:c5:e5:c0:71:5c:5e:51:fd:da:
f9:84:96:01:5a:94:8d:b6:fc:bc:1f:b3:59:90:40:52:6c:2f:
99:fc:5c:b3:92:42:5a:19:a8:7f:8a:45:c3:78:48:bd:e1:8a:
b0:c7:61:ed:35:cd:6c:9b:53:b3:93:65:8f:7f:a1:42:9b:96:
c2:44:1b:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 03:52:53 2024 by rpki-client on console-fra.rpki-client.org