Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3636185/6EFD78B6270911ECAF80DC7BD8A014CE/945E7DD6C09411EEB7EE3CB6775412E6.roa
File: 945E7DD6C09411EEB7EE3CB6775412E6.roa (raw, json)
Hash identifier: tYOnT9BqjQytDTUPG0XkVhwFzA0iw870t7nSn78qeKY=
Subject key identifier: A0:B4:13:E6:7D:12:2E:F9:98:E6:63:67:81:E4:AF:34:97:14:27:79
Certificate issuer: /CN=F3636185AF/serialNumber=EF8798989E4B8FB35946574F7BC7F08E2CF7FE4B
Certificate serial: 0387
Authority key identifier: EF:87:98:98:9E:4B:8F:B3:59:46:57:4F:7B:C7:F0:8E:2C:F7:FE:4B
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/74eYmJ5Lj7NZRldPe8fwjiz3_ks.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3636185/6EFD78B6270911ECAF80DC7BD8A014CE/945E7DD6C09411EEB7EE3CB6775412E6.roa
Signing time: Wed 31 Jan 2024 23:58:07 +0000
ROA not before: Wed 31 Jan 2024 23:58:04 +0000
ROA not after: Sun 31 Jan 2027 23:58:04 +0000
asID: 26506
IP address blocks: 2c0f:fed8:2::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3636185/6EFD78B6270911ECAF80DC7BD8A014CE/74eYmJ5Lj7NZRldPe8fwjiz3_ks.crl
rsync://rpki.afrinic.net/repository/member_repository/F3636185/6EFD78B6270911ECAF80DC7BD8A014CE/74eYmJ5Lj7NZRldPe8fwjiz3_ks.mft
rsync://rpki.afrinic.net/repository/afrinic/74eYmJ5Lj7NZRldPe8fwjiz3_ks.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:06:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 903 (0x387)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3636185AF/serialNumber=EF8798989E4B8FB35946574F7BC7F08E2CF7FE4B
Validity
Not Before: Jan 31 23:58:04 2024 GMT
Not After : Jan 31 23:58:04 2027 GMT
Subject: CN=65bade8f-f60b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:7c:7e:08:3f:44:f4:da:4e:1c:2c:a7:45:30:
51:61:6d:be:a5:38:12:ed:a9:4c:a5:a4:8b:1c:be:
f8:34:ab:64:9b:fe:f2:ec:46:0a:54:12:a1:51:4b:
92:07:9d:02:d2:ca:cc:e8:15:38:5b:2f:78:11:03:
ba:b0:71:d0:bf:15:d8:32:22:fc:a2:db:5d:15:dc:
ce:f7:83:c2:10:c3:06:7c:ed:36:a6:ee:5c:bf:14:
96:e8:04:e1:ea:97:4a:47:78:7d:e7:f6:b4:6a:06:
df:eb:39:f4:51:35:24:bb:94:31:c0:28:67:61:4e:
58:a0:fa:d4:35:32:02:a3:fe:81:43:eb:40:54:c9:
9c:3b:9a:e5:1f:f7:cd:03:fb:52:c1:8b:4a:60:79:
5f:33:b5:eb:d4:5b:6f:fb:fb:dd:b2:c9:35:69:e5:
b1:12:b1:ac:82:d7:1d:06:58:5e:9e:0a:e2:ca:22:
23:58:22:21:f3:27:c1:36:88:7d:88:96:03:cf:76:
80:8c:a9:a4:d7:d2:69:7e:ac:62:64:d8:a2:c3:f6:
51:20:a5:a7:8e:e4:94:5e:37:7e:0c:0b:e6:9c:ad:
a5:f7:56:85:44:1c:81:41:f9:89:79:e6:0f:57:cd:
9f:40:97:ae:04:bb:4d:61:a3:da:5a:43:48:25:97:
d7:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:B4:13:E6:7D:12:2E:F9:98:E6:63:67:81:E4:AF:34:97:14:27:79
X509v3 Authority Key Identifier:
keyid:EF:87:98:98:9E:4B:8F:B3:59:46:57:4F:7B:C7:F0:8E:2C:F7:FE:4B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3636185/6EFD78B6270911ECAF80DC7BD8A014CE/74eYmJ5Lj7NZRldPe8fwjiz3_ks.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/74eYmJ5Lj7NZRldPe8fwjiz3_ks.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3636185/6EFD78B6270911ECAF80DC7BD8A014CE/945E7DD6C09411EEB7EE3CB6775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2c0f:fed8:2::/48
Signature Algorithm: sha256WithRSAEncryption
4e:24:c0:30:fc:57:8e:23:e4:2b:3d:80:98:29:54:78:43:0b:
18:bf:22:fa:50:82:fc:c9:72:5f:ff:7b:5a:b0:4c:94:82:76:
73:6d:26:49:22:34:87:55:d7:bc:18:ed:86:ed:e8:e9:b5:d2:
59:cd:c1:9d:fc:74:01:d6:1b:0f:19:db:da:95:25:00:0b:a3:
de:98:6e:ca:d8:ce:fd:16:98:d3:b7:80:22:17:ae:1e:e7:ed:
97:fe:b8:f7:3e:cd:22:25:0f:54:71:c1:67:bd:8e:29:53:9b:
65:7a:c7:5f:43:3f:21:0c:2d:3c:5f:68:7c:fa:3e:cf:3d:fb:
b2:5f:4b:d1:85:b9:cc:15:8e:d8:ea:5c:be:22:84:de:f2:bc:
c8:d0:11:1d:bd:a2:21:e5:23:74:c0:e7:2e:36:29:71:3b:ff:
7f:f4:56:cf:39:78:6c:47:b9:3c:06:7c:68:e4:ec:f1:7b:57:
22:c0:d1:42:f5:4c:c4:34:0f:7a:c0:b3:36:78:23:9e:5f:06:
a7:79:f0:38:ef:da:12:17:77:c3:df:f9:0e:4e:ef:5b:8d:da:
ec:2c:21:e4:ea:f9:70:de:44:a2:b8:ce:80:41:92:be:59:95:
c0:00:d6:3f:8a:f2:66:39:c2:84:d7:03:04:68:88:cd:39:c0:
f4:10:d0:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 03:10:15 2024 by rpki-client on console-fra.rpki-client.org