Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3634D22/1D5F7C26047311E580C18A06F8AEA228/60B5E0E0A32F11EFBE3358BB762E951A.roa
File: 60B5E0E0A32F11EFBE3358BB762E951A.roa (raw, json)
Hash identifier: KV4KZRn3mj8zp6sAZP8gPe1HTi1HLT0ooFTzAWyksqs=
Subject key identifier: FA:1C:DC:7F:10:DC:8E:92:10:70:B8:FD:64:BF:CC:0E:5A:E0:A0:73
Certificate issuer: /CN=F3634D22AF/serialNumber=8D01D808E89774543DE22D0DA844378ECEA8BB9B
Certificate serial: 0EFC
Authority key identifier: 8D:01:D8:08:E8:97:74:54:3D:E2:2D:0D:A8:44:37:8E:CE:A8:BB:9B
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/jQHYCOiXdFQ94i0NqEQ3js6ou5s.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3634D22/1D5F7C26047311E580C18A06F8AEA228/60B5E0E0A32F11EFBE3358BB762E951A.roa
Signing time: Fri 15 Nov 2024 08:55:35 +0000
ROA not before: Fri 15 Nov 2024 08:55:32 +0000
ROA not after: Fri 15 Nov 2030 08:55:32 +0000
asID: 37708
IP address blocks: 2001:43f8:90::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3634D22/1D5F7C26047311E580C18A06F8AEA228/jQHYCOiXdFQ94i0NqEQ3js6ou5s.crl
rsync://rpki.afrinic.net/repository/member_repository/F3634D22/1D5F7C26047311E580C18A06F8AEA228/jQHYCOiXdFQ94i0NqEQ3js6ou5s.mft
rsync://rpki.afrinic.net/repository/afrinic/jQHYCOiXdFQ94i0NqEQ3js6ou5s.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3836 (0xefc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3634D22AF/serialNumber=8D01D808E89774543DE22D0DA844378ECEA8BB9B
Validity
Not Before: Nov 15 08:55:32 2024 GMT
Not After : Nov 15 08:55:32 2030 GMT
Subject: CN=67370c87-a647
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:44:c0:ce:52:c1:19:50:4e:1d:c1:97:d5:de:
86:3f:ce:61:29:2f:5d:87:04:4a:ba:a7:6f:4b:68:
60:d2:b0:e5:c3:d0:de:63:ec:9c:fc:55:a0:1b:16:
28:44:24:fb:21:b7:e9:51:fb:15:46:fe:20:63:06:
70:30:40:06:cd:99:52:4b:44:87:ae:b8:b7:c4:10:
81:6a:f0:c7:56:6d:fe:02:82:99:35:f7:d1:41:e7:
83:a9:f5:6d:54:37:88:e5:10:cb:74:b5:22:12:08:
95:aa:5b:a0:1f:85:52:6b:4f:c5:2a:ba:6a:ea:57:
c6:81:e6:8b:c4:2d:48:ce:98:46:9c:60:08:a5:51:
9b:77:4d:8f:c7:aa:a1:c4:ad:9e:38:81:71:fa:30:
d8:13:e8:a6:17:bd:9d:42:5e:28:4b:d0:bc:fb:82:
6a:9a:63:ee:b1:b0:9b:19:fc:6b:7c:d5:c8:bb:1f:
e3:6b:36:a0:5a:5e:f2:9c:78:25:44:5a:9b:3c:1b:
5b:d9:d3:0e:42:af:67:46:43:59:d0:17:24:e2:7f:
58:cc:8b:b8:fe:10:58:4d:90:c5:c3:6c:49:74:1c:
43:b8:ce:0a:e2:f6:64:8c:8c:3e:d8:cf:6c:ed:20:
1f:97:c3:44:98:b7:67:a6:33:9a:e6:30:ca:1c:b6:
16:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:1C:DC:7F:10:DC:8E:92:10:70:B8:FD:64:BF:CC:0E:5A:E0:A0:73
X509v3 Authority Key Identifier:
keyid:8D:01:D8:08:E8:97:74:54:3D:E2:2D:0D:A8:44:37:8E:CE:A8:BB:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3634D22/1D5F7C26047311E580C18A06F8AEA228/jQHYCOiXdFQ94i0NqEQ3js6ou5s.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/jQHYCOiXdFQ94i0NqEQ3js6ou5s.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3634D22/1D5F7C26047311E580C18A06F8AEA228/60B5E0E0A32F11EFBE3358BB762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:43f8:90::/48
Signature Algorithm: sha256WithRSAEncryption
70:7c:06:b6:65:9f:16:09:0f:62:ab:57:07:3f:76:d5:35:94:
db:75:75:20:29:fe:a9:a2:1d:6e:93:1d:58:06:61:74:c2:86:
be:83:e9:81:10:02:5f:03:ba:08:7f:2b:18:91:35:bd:53:49:
16:f4:b3:75:9f:92:c4:88:ae:e1:64:3f:e0:33:8f:4c:55:02:
5a:13:5a:27:10:cf:02:fe:2a:a4:21:0f:e5:b1:bd:34:e0:31:
f1:3f:a1:ae:6d:62:87:ba:df:08:81:53:7c:95:57:51:d3:a6:
41:5f:d0:f2:d4:76:70:2e:fa:69:cf:5c:56:a7:54:a2:17:bd:
e1:ae:5b:54:4e:a1:f3:07:0c:4c:ba:e0:60:e5:2b:73:55:79:
e0:f3:a4:d6:26:de:cd:75:88:88:48:e8:29:37:5d:b7:12:96:
04:1b:fc:c4:ac:78:a2:43:f8:df:93:19:4c:20:69:fd:33:94:
4c:e4:b0:ff:17:f1:da:5e:d8:89:c8:e3:b2:fb:3c:40:0b:61:
44:e9:69:b6:35:cf:08:99:82:88:26:97:5f:6a:cc:9f:30:ea:
58:b1:49:8f:89:ce:be:0e:e8:1a:0f:66:4a:b4:99:78:ef:f4:
5d:54:4a:b4:9d:e4:8c:4e:43:5c:6f:0b:b8:70:c9:03:3e:07:
fc:48:f2:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 01:34:53 2024 by rpki-client on console-ams.rpki-client.org