Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3634D22/1D5F7C26047311E580C18A06F8AEA228/81687628A33D11EF9216D192762E951A.roa
File: 81687628A33D11EF9216D192762E951A.roa (raw, json)
Hash identifier: MvfxEFROJ1f++TBAwntjCOy+iPFhUtpXYzOBk7MbpP4=
Subject key identifier: 7E:E8:C4:BD:68:BE:3B:76:B0:52:52:DC:C4:41:25:CC:99:47:7B:E1
Certificate issuer: /CN=F3634D22AF/serialNumber=8D01D808E89774543DE22D0DA844378ECEA8BB9B
Certificate serial: 0F19
Authority key identifier: 8D:01:D8:08:E8:97:74:54:3D:E2:2D:0D:A8:44:37:8E:CE:A8:BB:9B
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/jQHYCOiXdFQ94i0NqEQ3js6ou5s.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3634D22/1D5F7C26047311E580C18A06F8AEA228/81687628A33D11EF9216D192762E951A.roa
Signing time: Fri 15 Nov 2024 10:36:43 +0000
ROA not before: Fri 15 Nov 2024 10:36:39 +0000
ROA not after: Fri 15 Nov 2030 10:36:39 +0000
asID: 33764
IP address blocks: 2001:42d0:1::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3634D22/1D5F7C26047311E580C18A06F8AEA228/jQHYCOiXdFQ94i0NqEQ3js6ou5s.crl
rsync://rpki.afrinic.net/repository/member_repository/F3634D22/1D5F7C26047311E580C18A06F8AEA228/jQHYCOiXdFQ94i0NqEQ3js6ou5s.mft
rsync://rpki.afrinic.net/repository/afrinic/jQHYCOiXdFQ94i0NqEQ3js6ou5s.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3865 (0xf19)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3634D22AF/serialNumber=8D01D808E89774543DE22D0DA844378ECEA8BB9B
Validity
Not Before: Nov 15 10:36:39 2024 GMT
Not After : Nov 15 10:36:39 2030 GMT
Subject: CN=6737243b-d557
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:08:14:29:34:91:a1:47:f9:ee:6d:f7:a6:d5:
f6:c4:2e:7d:e5:2b:48:ab:a4:6c:f8:a4:e2:97:08:
b5:a0:3e:e7:3e:24:ac:08:36:ec:2c:e8:f5:fd:65:
9e:68:c8:aa:8b:e3:da:bf:ec:d5:fb:65:e0:eb:38:
56:87:fa:f8:25:24:39:2e:ec:00:bb:15:03:ad:3f:
89:a6:a4:db:20:6c:32:7b:31:07:40:5a:ba:83:58:
0d:8b:3c:35:c6:a6:9e:59:cf:cc:ca:8d:52:98:5d:
ff:47:16:0d:63:fb:bc:f1:32:b3:93:b4:8d:78:51:
33:27:aa:f6:1b:d2:df:c5:24:43:71:18:df:48:1f:
72:b6:91:2a:6d:a4:25:1f:d9:75:01:37:d1:39:9c:
c5:15:c0:a8:af:02:9e:b4:12:e8:f0:8c:21:4f:4d:
53:28:59:46:81:8f:53:3f:c6:a3:37:f1:27:32:1d:
22:78:be:a2:59:f8:96:3c:0a:77:be:a5:b2:4e:98:
79:c1:8f:8c:a1:bd:ca:ed:bd:73:2a:43:a9:59:f3:
8f:b6:56:cd:10:c1:48:57:84:9c:dc:78:a5:90:31:
1b:9e:23:46:fe:c4:f1:90:c0:98:e8:16:ca:d7:9e:
23:db:42:40:0f:9b:3f:1e:76:40:1b:b4:19:af:58:
78:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:E8:C4:BD:68:BE:3B:76:B0:52:52:DC:C4:41:25:CC:99:47:7B:E1
X509v3 Authority Key Identifier:
keyid:8D:01:D8:08:E8:97:74:54:3D:E2:2D:0D:A8:44:37:8E:CE:A8:BB:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3634D22/1D5F7C26047311E580C18A06F8AEA228/jQHYCOiXdFQ94i0NqEQ3js6ou5s.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/jQHYCOiXdFQ94i0NqEQ3js6ou5s.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3634D22/1D5F7C26047311E580C18A06F8AEA228/81687628A33D11EF9216D192762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:42d0:1::/48
Signature Algorithm: sha256WithRSAEncryption
4b:88:36:22:dd:f7:72:04:68:6b:9b:76:76:79:f1:6f:ab:a3:
ad:89:8b:93:2b:72:45:64:3e:3f:0d:ee:4a:7d:eb:96:f5:16:
f5:48:21:0a:d0:2f:0e:70:8e:3f:3e:ad:cc:42:ff:8d:22:72:
9f:af:19:ab:8e:e1:bc:a3:1e:7e:b3:06:3b:d0:01:7a:42:32:
30:ee:70:9f:db:17:5c:4e:e2:55:0b:db:18:c8:85:4c:90:34:
d1:d4:a4:52:43:fb:02:ab:80:d5:c9:37:06:c8:fd:fd:ca:ba:
24:eb:a3:26:9a:aa:da:71:55:4e:18:d6:df:04:5b:15:23:0b:
a2:8d:44:c5:57:83:69:60:d7:96:f7:36:1d:b9:77:85:3c:e0:
1b:ce:04:1d:d9:97:6f:13:21:6f:a8:2d:00:61:72:31:80:b0:
58:be:eb:7b:2e:d0:e3:71:a2:83:df:7c:fd:0a:48:d2:71:85:
b8:8d:ab:d6:d9:fa:ff:1a:78:3a:c0:df:f2:13:7b:2d:b7:2c:
4f:8b:26:50:ff:b1:d5:15:5e:03:69:ac:5e:de:c0:f5:17:a2:
df:88:7f:50:ba:27:fe:49:2d:01:28:01:ba:8a:a7:00:55:b7:
6c:75:42:0a:50:78:75:95:58:c7:7d:81:7b:a3:a3:80:08:c8:
f4:62:7b:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:08:53 2024 by rpki-client on console-fra.rpki-client.org