Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3636185/6EFD78B6270911ECAF80DC7BD8A014CE/53A66100C09411EEA90F91B5775412E6.roa
File: 53A66100C09411EEA90F91B5775412E6.roa (raw, json)
Hash identifier: +3UIXUyKPa3bDPDxQDj5kfU3yXkutIrwCuUhyp487Lg=
Subject key identifier: 38:CE:E6:FF:4B:C4:53:69:D6:DF:E1:0E:C8:01:83:82:EA:46:1A:8E
Certificate issuer: /CN=F3636185AF/serialNumber=EF8798989E4B8FB35946574F7BC7F08E2CF7FE4B
Certificate serial: 0385
Authority key identifier: EF:87:98:98:9E:4B:8F:B3:59:46:57:4F:7B:C7:F0:8E:2C:F7:FE:4B
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/74eYmJ5Lj7NZRldPe8fwjiz3_ks.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3636185/6EFD78B6270911ECAF80DC7BD8A014CE/53A66100C09411EEA90F91B5775412E6.roa
Signing time: Wed 31 Jan 2024 23:56:19 +0000
ROA not before: Wed 31 Jan 2024 23:56:15 +0000
ROA not after: Sun 31 Jan 2027 23:56:15 +0000
asID: 22822
IP address blocks: 2c0f:fed8::/32 maxlen: 48
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3636185/6EFD78B6270911ECAF80DC7BD8A014CE/74eYmJ5Lj7NZRldPe8fwjiz3_ks.crl
rsync://rpki.afrinic.net/repository/member_repository/F3636185/6EFD78B6270911ECAF80DC7BD8A014CE/74eYmJ5Lj7NZRldPe8fwjiz3_ks.mft
rsync://rpki.afrinic.net/repository/afrinic/74eYmJ5Lj7NZRldPe8fwjiz3_ks.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 18 Feb 2025 00:06:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 901 (0x385)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3636185AF
Validity
Not Before: Jan 31 23:56:15 2024 GMT
Not After : Jan 31 23:56:15 2027 GMT
Subject: CN=65bade23-719c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:81:57:c6:2b:a3:1f:cf:93:12:28:f4:d2:81:
23:75:ce:2d:77:d6:76:b9:24:df:1f:ce:2e:15:2d:
d0:25:ad:dd:11:a5:17:f4:46:fd:2f:57:e9:c6:2f:
5d:99:fd:63:59:30:f7:a4:0c:33:b6:06:fe:f8:61:
18:62:fd:09:e6:df:43:7f:53:a9:9e:56:70:97:6f:
28:10:4e:67:03:f4:08:00:66:26:ca:a1:67:48:88:
cb:58:45:e9:8f:99:18:b5:43:22:eb:7a:c3:0d:04:
6a:b8:c1:95:2d:50:83:90:09:9f:f7:fe:9d:9c:09:
1f:35:a9:75:2a:86:2a:51:44:7b:57:6a:76:e9:cb:
82:b9:98:6e:d5:44:17:fc:c3:f7:6a:63:65:df:09:
72:f3:c3:5c:8f:23:d5:26:8e:cc:77:79:97:31:42:
e5:a2:a9:81:cc:bb:29:a3:92:f1:90:a8:a3:5a:97:
fc:6f:e1:2e:d5:02:b7:81:6c:ad:47:86:3b:29:0a:
9c:a7:e3:b0:16:e9:ce:1f:2f:5a:63:32:a8:ee:a7:
b0:33:71:84:97:09:78:00:8b:4b:b7:e3:b4:aa:19:
13:f7:74:01:32:dd:72:f8:01:bf:95:0c:78:74:b0:
71:69:a4:00:2f:be:66:d1:fa:bd:e7:5f:48:e3:84:
08:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:CE:E6:FF:4B:C4:53:69:D6:DF:E1:0E:C8:01:83:82:EA:46:1A:8E
X509v3 Authority Key Identifier:
keyid:EF:87:98:98:9E:4B:8F:B3:59:46:57:4F:7B:C7:F0:8E:2C:F7:FE:4B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3636185/6EFD78B6270911ECAF80DC7BD8A014CE/74eYmJ5Lj7NZRldPe8fwjiz3_ks.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/74eYmJ5Lj7NZRldPe8fwjiz3_ks.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3636185/6EFD78B6270911ECAF80DC7BD8A014CE/53A66100C09411EEA90F91B5775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2c0f:fed8::/32
Signature Algorithm: sha256WithRSAEncryption
89:40:81:ef:16:7a:c4:9d:a1:27:e8:e1:b6:cb:03:c8:64:c3:
d2:ee:ac:fc:ba:d8:5d:a6:5b:b1:79:08:ef:61:95:05:da:67:
74:4a:0b:e3:cd:32:e6:10:63:01:26:57:c1:3c:3a:25:a4:ba:
a2:1f:6f:8f:f7:c7:bc:34:54:e5:2e:06:7b:79:70:88:13:95:
73:d2:e3:14:6b:17:4e:cb:6a:a9:00:ed:65:0f:e2:68:93:44:
67:5e:0b:c0:7b:7f:b9:52:80:0b:91:1c:73:6e:03:0f:a0:61:
59:2a:1f:a7:0b:a6:a7:ae:e7:cf:38:7d:58:06:f2:f9:0d:b8:
4a:9b:b2:e7:ba:d5:64:a5:4c:91:99:8f:42:3a:a5:b2:88:3e:
16:26:53:70:1b:e5:a8:8f:60:ab:a9:0c:68:e9:ed:68:15:d4:
bb:fe:36:41:72:de:c3:fb:9f:f3:03:70:f1:7a:86:96:67:de:
37:5a:6d:cd:4d:d0:0e:f4:fb:d9:cc:9c:3c:87:4b:ce:e6:18:
e2:50:94:6b:46:1e:11:01:65:ee:45:2f:a7:b5:37:14:08:59:
60:03:ed:af:33:43:48:42:a1:61:42:45:dc:28:53:9d:ff:82:
ec:91:4d:84:d8:ad:3d:3f:58:89:27:da:29:f0:24:f7:84:75:
9a:9d:5b:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 15:33:38 2025 by rpki-client