Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36493E2/CD0DCC106FDC11EB9FF77B58F8AEA228/2DA2A10A7E9811EEB624E1614AD9E6FC.roa
File: 2DA2A10A7E9811EEB624E1614AD9E6FC.roa (raw, json)
Hash identifier: z/8MHOUuN5njwZAEAwp8qmMotdx3/iv3rmL5RO3TKDM=
Subject key identifier: D0:86:38:44:97:56:0E:3C:5B:65:52:BC:2D:9C:66:D1:D9:2F:F9:80
Certificate issuer: /CN=F36493E2AF/serialNumber=A8A1AF02F96C1BA92D93A522CABE9ED8E5295153
Certificate serial: 0414
Authority key identifier: A8:A1:AF:02:F9:6C:1B:A9:2D:93:A5:22:CA:BE:9E:D8:E5:29:51:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/qKGvAvlsG6ktk6Uiyr6e2OUpUVM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36493E2/CD0DCC106FDC11EB9FF77B58F8AEA228/2DA2A10A7E9811EEB624E1614AD9E6FC.roa
Signing time: Thu 09 Nov 2023 00:37:36 +0000
ROA not before: Thu 09 Nov 2023 00:00:33 +0000
ROA not after: Tue 31 Dec 2030 00:00:33 +0000
asID: 37738
IP address blocks: 2c0f:5400::/32 maxlen: 32
2c0f:5400::/48 maxlen: 48
2c0f:5400:1::/48 maxlen: 48
2c0f:5400:2::/48 maxlen: 48
2c0f:5400:3::/48 maxlen: 48
2c0f:5400:4::/48 maxlen: 48
2c0f:5400:5::/48 maxlen: 48
2c0f:5400:6::/48 maxlen: 48
2c0f:5400:7::/48 maxlen: 48
2c0f:5400:8::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36493E2/CD0DCC106FDC11EB9FF77B58F8AEA228/qKGvAvlsG6ktk6Uiyr6e2OUpUVM.crl
rsync://rpki.afrinic.net/repository/member_repository/F36493E2/CD0DCC106FDC11EB9FF77B58F8AEA228/qKGvAvlsG6ktk6Uiyr6e2OUpUVM.mft
rsync://rpki.afrinic.net/repository/afrinic/qKGvAvlsG6ktk6Uiyr6e2OUpUVM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1044 (0x414)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36493E2AF/serialNumber=A8A1AF02F96C1BA92D93A522CABE9ED8E5295153
Validity
Not Before: Nov 9 00:00:33 2023 GMT
Not After : Dec 31 00:00:33 2030 GMT
Subject: CN=654c29d0-895a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:1b:f0:83:6b:89:b6:47:d5:31:80:f5:b3:c0:
11:07:7d:49:1e:b0:9b:9e:e9:fb:02:fb:e5:a2:78:
43:d8:b3:e1:b2:73:e9:ca:aa:0d:8f:fc:b6:7b:74:
d7:9f:aa:2f:6b:c1:4d:58:ed:4b:63:e6:48:04:3c:
1b:e2:b8:65:74:a2:9f:42:93:d9:56:42:6e:d0:0d:
f4:ae:2a:e4:4b:99:c7:e3:53:55:e1:67:07:b6:57:
6a:7b:af:6b:d8:f1:e2:d0:25:ce:48:3a:c4:c8:5b:
f6:5b:0f:d7:60:d3:ad:c6:05:de:8d:87:e5:7d:7c:
2e:d5:3f:05:0b:fe:c9:a5:7f:0e:d9:4f:37:f9:44:
d6:09:18:bf:95:e0:c3:6b:72:b6:f3:e3:73:44:4a:
94:2a:66:01:bc:8d:24:85:31:46:19:8a:14:64:41:
55:c3:a5:b8:5b:1e:a9:b6:4e:0e:04:9f:d3:fa:19:
49:03:df:0e:2d:35:39:cf:25:38:c5:d9:89:a3:b7:
6a:9a:c7:01:fe:8a:9e:89:4e:67:dd:fe:0a:42:4e:
8d:9e:41:94:e7:d2:84:e0:3c:55:a1:2e:c1:10:ff:
d4:75:b1:19:6f:2b:07:a7:53:b5:2e:ce:f8:05:34:
5c:82:f2:42:12:c3:1c:22:b1:14:e1:17:4e:71:b2:
6c:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:86:38:44:97:56:0E:3C:5B:65:52:BC:2D:9C:66:D1:D9:2F:F9:80
X509v3 Authority Key Identifier:
keyid:A8:A1:AF:02:F9:6C:1B:A9:2D:93:A5:22:CA:BE:9E:D8:E5:29:51:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36493E2/CD0DCC106FDC11EB9FF77B58F8AEA228/qKGvAvlsG6ktk6Uiyr6e2OUpUVM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/qKGvAvlsG6ktk6Uiyr6e2OUpUVM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36493E2/CD0DCC106FDC11EB9FF77B58F8AEA228/2DA2A10A7E9811EEB624E1614AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2c0f:5400::/32
Signature Algorithm: sha256WithRSAEncryption
ae:bd:77:a5:1d:b5:03:83:c3:f3:50:17:7a:5b:44:74:78:b8:
ef:38:45:c3:ab:45:47:24:70:86:36:c4:8c:3e:9e:2e:df:5a:
07:e9:ca:3e:af:7d:70:9f:7a:43:e4:56:c0:25:ff:b6:a2:36:
4c:f2:41:d3:c5:da:7a:e0:b3:ec:b8:dc:92:dc:d1:0b:eb:4b:
3d:c9:79:f9:3e:d8:9e:73:57:44:b6:fc:c1:b7:e2:69:b0:e3:
fc:ab:08:80:28:77:b0:05:2e:4f:22:e4:fb:76:b1:ff:49:83:
93:6c:d6:a3:9d:e9:22:56:8d:16:84:ef:06:21:31:9e:af:5d:
9b:e7:85:9f:1d:44:0d:b7:d6:08:b8:83:da:50:99:aa:cd:00:
8e:da:11:66:a3:d8:d0:41:b4:7d:3b:ef:b8:4b:99:1f:75:50:
02:7b:5a:cb:58:2c:be:24:d3:a3:4b:09:c4:07:81:ed:48:b6:
0a:0b:d7:f5:f3:f7:bb:23:13:35:a7:24:93:bb:fb:9e:5e:12:
12:59:ea:02:31:ee:d9:85:b8:46:e8:df:40:1b:a4:24:36:20:
e3:a5:3c:35:9c:66:a4:b5:29:3e:9b:d5:a5:2d:2b:8e:15:da:
de:6d:05:08:75:f9:49:c5:29:ce:8b:fc:95:29:2a:5c:96:1e:
41:65:e1:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:03:34 2024 by rpki-client on console-ams.rpki-client.org