Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3634D22/1D5F7C26047311E580C18A06F8AEA228/82FBB372A33F11EF9D8E7B9F762E951A.roa
File: 82FBB372A33F11EF9D8E7B9F762E951A.roa (raw, json)
Hash identifier: Z8VTeq5VqCny1+2qc2eer7aayU4OabcWlvbrSBQ3Ro0=
Subject key identifier: 01:27:BF:C6:CD:91:12:1C:75:AD:1C:E8:52:87:C4:FA:DD:54:A7:3E
Certificate issuer: /CN=F3634D22AF/serialNumber=8D01D808E89774543DE22D0DA844378ECEA8BB9B
Certificate serial: 0F1F
Authority key identifier: 8D:01:D8:08:E8:97:74:54:3D:E2:2D:0D:A8:44:37:8E:CE:A8:BB:9B
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/jQHYCOiXdFQ94i0NqEQ3js6ou5s.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3634D22/1D5F7C26047311E580C18A06F8AEA228/82FBB372A33F11EF9D8E7B9F762E951A.roa
Signing time: Fri 15 Nov 2024 10:51:05 +0000
ROA not before: Fri 15 Nov 2024 10:51:01 +0000
ROA not after: Fri 15 Nov 2030 10:51:01 +0000
asID: 37177
IP address blocks: 2001:43f8:120::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3634D22/1D5F7C26047311E580C18A06F8AEA228/jQHYCOiXdFQ94i0NqEQ3js6ou5s.crl
rsync://rpki.afrinic.net/repository/member_repository/F3634D22/1D5F7C26047311E580C18A06F8AEA228/jQHYCOiXdFQ94i0NqEQ3js6ou5s.mft
rsync://rpki.afrinic.net/repository/afrinic/jQHYCOiXdFQ94i0NqEQ3js6ou5s.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3871 (0xf1f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3634D22AF/serialNumber=8D01D808E89774543DE22D0DA844378ECEA8BB9B
Validity
Not Before: Nov 15 10:51:01 2024 GMT
Not After : Nov 15 10:51:01 2030 GMT
Subject: CN=67372799-34fa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:fd:09:39:c3:58:f2:8c:df:8e:38:46:e8:ef:
ed:eb:4d:8e:48:2d:b4:e6:24:fb:26:83:12:a0:9d:
b8:e2:d4:f6:58:e4:79:94:4e:4c:3a:ea:ce:a1:59:
23:46:e2:3d:d0:06:03:67:d9:d7:06:7a:64:49:6b:
77:f5:f6:ab:03:5d:e1:4b:50:31:b5:45:30:9c:0f:
1d:cd:eb:bd:69:0e:bc:d4:03:a8:ca:db:d8:da:22:
d2:6b:a7:aa:b3:ad:1d:63:17:18:7e:f8:f2:b7:dc:
8a:58:7d:be:55:e9:a2:88:89:79:ea:ff:ce:69:9f:
06:6f:67:53:4d:e6:65:06:be:ee:37:92:83:1d:7a:
f9:74:b5:c0:80:80:52:d1:ce:18:10:93:9e:fd:86:
8f:69:e6:d8:ee:ca:7e:1d:79:37:ba:2a:1c:24:ef:
d0:89:ef:ad:2e:db:0a:37:f4:16:30:2c:e1:55:a4:
97:31:46:ed:3b:1c:9d:17:a4:e6:be:39:ad:5b:fc:
9f:04:7a:1f:96:78:8b:89:49:8c:d0:73:43:2c:f4:
9e:82:fb:4e:53:d1:2d:da:35:2f:38:11:5b:b2:55:
c7:2b:80:a4:42:64:0c:02:93:3d:4b:88:00:35:67:
9d:61:aa:67:5f:f2:57:59:1e:d9:dc:ed:6c:c4:42:
97:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:27:BF:C6:CD:91:12:1C:75:AD:1C:E8:52:87:C4:FA:DD:54:A7:3E
X509v3 Authority Key Identifier:
keyid:8D:01:D8:08:E8:97:74:54:3D:E2:2D:0D:A8:44:37:8E:CE:A8:BB:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3634D22/1D5F7C26047311E580C18A06F8AEA228/jQHYCOiXdFQ94i0NqEQ3js6ou5s.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/jQHYCOiXdFQ94i0NqEQ3js6ou5s.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3634D22/1D5F7C26047311E580C18A06F8AEA228/82FBB372A33F11EF9D8E7B9F762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:43f8:120::/48
Signature Algorithm: sha256WithRSAEncryption
71:11:65:c5:7e:ee:eb:29:93:c7:0a:cf:45:8c:5a:36:49:8b:
2f:33:c9:7e:cc:30:18:c4:80:fd:c7:8d:7b:b8:e5:6c:5d:fd:
10:af:ae:d7:ff:c7:43:11:07:36:c6:7f:49:34:98:53:60:99:
6e:da:7e:a0:ab:55:a8:e8:9e:14:10:7c:0a:67:5a:f9:47:87:
0e:0d:5b:ad:b4:34:e6:98:d4:7f:34:2a:19:31:a5:f5:ba:33:
b5:19:2e:0d:21:c1:ce:4c:d9:56:9b:ee:a3:77:2a:10:21:ea:
c2:6c:e2:8b:e7:bc:a2:54:2a:e6:59:b2:01:0a:60:d2:73:c9:
91:38:4e:92:48:ad:ef:06:e1:d0:70:0d:9f:af:95:6e:8c:45:
8a:c8:85:90:07:d7:67:6b:95:48:11:4b:ee:f8:9b:dd:7d:ea:
f4:3a:ed:7c:23:0a:67:e0:04:78:a6:57:d4:9e:73:25:4b:65:
57:ad:eb:d5:c8:6d:cc:c0:a1:b3:d2:ad:17:0b:2c:f5:0b:be:
23:8f:92:7b:e8:c4:3a:26:a5:86:3e:84:6e:4c:bd:eb:9b:52:
24:95:12:10:54:28:38:5e:f2:c3:a1:ba:a6:88:b0:63:46:eb:
aa:7e:74:ba:be:81:bf:54:48:97:17:69:dd:58:db:4a:30:01:
5e:b5:da:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 01:34:53 2024 by rpki-client on console-ams.rpki-client.org