Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F363520F/0C22B38E848811EA853C8C80F8AEA228/6AEA99D47CC511EE8B44A7164AD9E6FC.roa
File: 6AEA99D47CC511EE8B44A7164AD9E6FC.roa (raw, json)
Hash identifier: QAkpATJppthLYWXx+cr4dWVCGXB9+D2mQkkDomA2C7I=
Subject key identifier: 69:68:DC:83:FE:D3:60:E5:B1:D0:DD:C0:49:5B:87:63:C5:6C:D2:86
Certificate issuer: /CN=F363520FAF/serialNumber=143DA5777CDBB49388A52FF583DB432CBC7E5774
Certificate serial: 0539
Authority key identifier: 14:3D:A5:77:7C:DB:B4:93:88:A5:2F:F5:83:DB:43:2C:BC:7E:57:74
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/FD2ld3zbtJOIpS_1g9tDLLx-V3Q.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F363520F/0C22B38E848811EA853C8C80F8AEA228/6AEA99D47CC511EE8B44A7164AD9E6FC.roa
Signing time: Mon 06 Nov 2023 16:56:24 +0000
ROA not before: Mon 06 Nov 2023 16:56:21 +0000
ROA not after: Sat 31 Dec 2033 16:56:21 +0000
asID: 37611
IP address blocks: 2c0e:7f00::/28 maxlen: 44
2c0f:f4c0::/32 maxlen: 48
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F363520F/0C22B38E848811EA853C8C80F8AEA228/FD2ld3zbtJOIpS_1g9tDLLx-V3Q.crl
rsync://rpki.afrinic.net/repository/member_repository/F363520F/0C22B38E848811EA853C8C80F8AEA228/FD2ld3zbtJOIpS_1g9tDLLx-V3Q.mft
rsync://rpki.afrinic.net/repository/afrinic/FD2ld3zbtJOIpS_1g9tDLLx-V3Q.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 17 May 2024 00:05:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1337 (0x539)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F363520FAF/serialNumber=143DA5777CDBB49388A52FF583DB432CBC7E5774
Validity
Not Before: Nov 6 16:56:21 2023 GMT
Not After : Dec 31 16:56:21 2033 GMT
Subject: CN=65491ab8-92a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:8a:24:19:88:1d:f6:bb:b1:9e:54:6f:99:80:
db:ff:84:72:ff:b2:8b:b4:21:e5:48:06:3b:7d:be:
3b:c3:97:64:f6:4a:66:4c:e9:3f:17:e4:99:88:87:
7e:a2:30:34:7a:7c:f7:b5:27:ff:28:e2:a7:f9:c8:
de:c9:46:61:92:fc:8e:87:35:27:8b:d2:a0:c4:20:
4a:f4:23:97:f2:1d:c4:23:de:39:aa:1d:c6:42:4c:
0a:f9:0a:21:54:bb:18:42:4b:79:9e:fe:0f:61:10:
0e:a8:20:85:74:70:6f:43:66:f4:66:df:6a:32:f1:
80:04:49:a9:8e:d3:55:fd:c1:15:ab:6c:5e:e8:11:
81:ce:03:e7:bc:39:0f:44:22:3e:15:4c:35:e4:04:
a1:55:7c:2e:87:83:6e:e3:ea:41:31:89:75:06:96:
d6:5e:ba:c7:05:d7:99:c0:d0:53:53:9b:bd:d9:3c:
9f:86:e7:b7:3f:cf:09:70:b0:3d:63:e6:ca:64:f5:
c3:bd:e0:b9:e9:75:99:99:8a:ec:ca:ed:90:4a:fa:
cc:e0:1d:bc:d3:04:1a:0a:f5:05:bf:af:ab:18:d9:
42:11:64:4a:80:5b:28:5b:76:73:81:a6:56:93:ae:
ef:2d:f7:e3:e3:1b:ce:91:37:81:5b:11:dc:ed:2b:
d2:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:68:DC:83:FE:D3:60:E5:B1:D0:DD:C0:49:5B:87:63:C5:6C:D2:86
X509v3 Authority Key Identifier:
keyid:14:3D:A5:77:7C:DB:B4:93:88:A5:2F:F5:83:DB:43:2C:BC:7E:57:74
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F363520F/0C22B38E848811EA853C8C80F8AEA228/FD2ld3zbtJOIpS_1g9tDLLx-V3Q.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/FD2ld3zbtJOIpS_1g9tDLLx-V3Q.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F363520F/0C22B38E848811EA853C8C80F8AEA228/6AEA99D47CC511EE8B44A7164AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2c0e:7f00::/28
2c0f:f4c0::/32
Signature Algorithm: sha256WithRSAEncryption
70:d7:83:8a:1d:84:ae:cb:4d:41:fd:8a:b6:aa:6b:91:1c:3d:
1f:38:a0:a4:a2:90:fb:73:dc:dd:b7:53:a5:82:f7:ea:90:71:
0f:2a:42:ba:da:fa:d7:c5:e5:95:3d:53:15:b0:95:d5:06:78:
a7:4c:94:47:16:2c:d9:a9:22:33:e6:b3:ca:63:c5:db:8b:fe:
7a:c2:e4:cd:73:f2:62:9f:53:9a:0b:14:93:a0:51:b6:0a:57:
e1:0d:5e:2c:e8:50:49:84:9f:c3:74:45:a7:19:27:97:e3:17:
1e:3a:a8:f6:ee:ad:96:ef:96:dd:f3:56:f6:ba:fe:c4:24:c1:
2e:76:fa:52:e7:dd:e3:38:6d:a4:97:17:34:a6:ba:28:11:d8:
fc:44:79:09:52:19:2f:1f:04:31:f4:7a:70:b7:df:39:06:8b:
30:22:7e:f8:e7:51:7f:2c:4e:1d:72:39:2e:ab:c9:7b:31:94:
ec:1c:9b:4a:0b:28:25:8d:bd:e0:44:0d:43:6d:62:2b:32:a2:
65:6b:14:0e:59:0c:03:9f:13:cf:6b:f4:75:e2:ae:d1:b9:40:
49:02:82:2e:1e:e2:f1:22:b8:b0:36:ad:31:c5:45:72:0e:d3:
80:9b:5a:30:46:05:f2:5c:01:24:1c:b6:b1:b4:bb:29:60:27:
4e:9f:97:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 15 03:49:50 2024 by rpki-client on console-fra.rpki-client.org