Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F364321A/2F1373BEBCDA11EDACA5CAAFF1222468/7FB7EBF0DD3C11EE8D38ADB5775412E6.roa
File: 7FB7EBF0DD3C11EE8D38ADB5775412E6.roa (raw, json)
Hash identifier: yMYM5ilbWZrOMGdDFP4fl7JNSPCdYUXOdgDCY0ZGvMA=
Subject key identifier: 8F:70:EB:3E:FE:C4:BD:02:56:3F:68:16:6F:83:A0:97:A2:D1:57:E3
Certificate issuer: /CN=F364321AAF/serialNumber=3DA3DDAE4FD574BDFADB2FE7524D5D303741352C
Certificate serial: 018C
Authority key identifier: 3D:A3:DD:AE:4F:D5:74:BD:FA:DB:2F:E7:52:4D:5D:30:37:41:35:2C
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/PaPdrk_VdL362y_nUk1dMDdBNSw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F364321A/2F1373BEBCDA11EDACA5CAAFF1222468/7FB7EBF0DD3C11EE8D38ADB5775412E6.roa
Signing time: Fri 08 Mar 2024 11:10:41 +0000
ROA not before: Fri 08 Mar 2024 11:10:37 +0000
ROA not after: Tue 05 Mar 2030 11:10:37 +0000
asID: 327697
IP address blocks: 2c0f:3780::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F364321A/2F1373BEBCDA11EDACA5CAAFF1222468/PaPdrk_VdL362y_nUk1dMDdBNSw.crl
rsync://rpki.afrinic.net/repository/member_repository/F364321A/2F1373BEBCDA11EDACA5CAAFF1222468/PaPdrk_VdL362y_nUk1dMDdBNSw.mft
rsync://rpki.afrinic.net/repository/afrinic/PaPdrk_VdL362y_nUk1dMDdBNSw.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 28 Nov 2024 00:05:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 396 (0x18c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F364321AAF/serialNumber=3DA3DDAE4FD574BDFADB2FE7524D5D303741352C
Validity
Not Before: Mar 8 11:10:37 2024 GMT
Not After : Mar 5 11:10:37 2030 GMT
Subject: CN=65eaf230-917a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:45:8d:d1:35:53:a0:9a:9e:0e:e2:07:39:d9:
10:97:b9:94:02:be:eb:fa:b3:9c:9b:99:60:b1:15:
76:b7:b8:2d:d5:17:3a:5e:80:50:f7:97:30:e7:76:
6a:a9:6a:2f:74:f3:96:79:ba:c9:55:e8:c8:1a:cd:
bc:4e:00:f5:4e:0e:0b:26:6a:7d:4d:99:f0:38:10:
90:08:b0:35:66:1c:98:0c:15:64:cc:af:dd:7c:6d:
d3:9a:1b:58:72:2a:00:bb:25:92:9e:8f:7e:ed:9c:
dd:b9:0f:ef:30:e7:47:3c:bc:2a:87:15:5b:d9:a7:
7a:8c:2f:fb:ee:38:ea:ff:d5:77:16:9f:a2:e8:a2:
55:2d:5b:76:01:f7:52:32:e1:c2:58:cd:40:74:a1:
49:b0:97:58:ce:be:2b:5d:bf:b9:9a:c6:3a:a7:b8:
5b:67:f1:d4:9e:c3:86:e6:bd:45:ad:49:1b:a0:5e:
35:c3:0c:7c:42:dd:73:0c:17:ad:f3:7a:a0:df:74:
0b:e7:84:f1:44:f5:a4:a7:8c:d1:ec:93:00:5c:87:
5a:4b:6b:e4:40:ae:14:3d:7d:00:b8:38:3e:c1:e5:
0d:29:ae:13:e1:6e:c7:fb:6e:0e:e6:08:be:d8:ff:
bf:89:99:c5:62:e4:f4:b8:85:85:e6:1d:8a:08:65:
ed:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:70:EB:3E:FE:C4:BD:02:56:3F:68:16:6F:83:A0:97:A2:D1:57:E3
X509v3 Authority Key Identifier:
keyid:3D:A3:DD:AE:4F:D5:74:BD:FA:DB:2F:E7:52:4D:5D:30:37:41:35:2C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F364321A/2F1373BEBCDA11EDACA5CAAFF1222468/PaPdrk_VdL362y_nUk1dMDdBNSw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/PaPdrk_VdL362y_nUk1dMDdBNSw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F364321A/2F1373BEBCDA11EDACA5CAAFF1222468/7FB7EBF0DD3C11EE8D38ADB5775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2c0f:3780::/32
Signature Algorithm: sha256WithRSAEncryption
b0:28:9e:91:75:3c:53:bc:3d:0a:3a:0b:84:93:01:b9:18:61:
00:49:47:72:01:aa:8e:1f:a6:a6:8f:32:ae:7d:b6:45:e5:14:
6c:fd:65:fe:f2:05:d2:31:31:f4:b3:52:9a:bb:56:e6:57:f5:
ba:3f:ed:c7:93:8f:32:5f:0f:33:45:67:6c:e0:56:2d:1c:3a:
3d:98:5b:fc:21:ab:d7:83:41:d9:43:35:b1:7e:fd:4c:ab:f4:
0e:32:dd:1d:47:f3:0b:7b:cd:bf:78:be:cb:6d:7c:52:e8:01:
26:78:a7:42:d2:8d:cb:a3:f6:01:59:64:be:3f:85:37:d4:dd:
c3:5b:08:e4:cf:05:4a:90:ae:6a:82:90:f4:a6:a9:df:68:3a:
ab:f6:3f:26:da:0d:b8:ba:b2:b1:e5:05:5b:bb:9d:8f:58:99:
0e:fa:51:90:5c:4a:2e:71:1b:1b:e9:09:d0:0e:ec:10:67:b1:
95:1c:46:d9:e1:a3:97:6d:77:93:fc:c0:53:a6:e8:04:50:72:
a1:4f:dc:5f:6e:7c:b1:4e:1e:30:bc:00:67:17:41:9d:97:e1:
10:bd:78:b4:e8:80:cd:c0:22:ec:4b:5c:6b:21:15:fe:9e:ec:
d1:70:ae:df:47:67:a3:82:aa:49:0d:b8:a8:ef:c6:68:88:b3:
b9:31:23:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 26 04:37:24 2024 by rpki-client on console-fra.rpki-client.org