Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36493E2/CD0DCC106FDC11EB9FF77B58F8AEA228/44E2BFD6BEB611EEB2F13E55775412E6.roa
File: 44E2BFD6BEB611EEB2F13E55775412E6.roa (raw, json)
Hash identifier: 6BGl+d3/Qn7Bi9MGN7eS+0tAvnZagMzcLCnJkf/75K0=
Subject key identifier: 83:5E:D2:1A:B6:EF:62:2C:CA:80:5B:E0:54:32:42:E9:32:BB:08:99
Certificate issuer: /CN=F36493E2AF/serialNumber=A8A1AF02F96C1BA92D93A522CABE9ED8E5295153
Certificate serial: 046C
Authority key identifier: A8:A1:AF:02:F9:6C:1B:A9:2D:93:A5:22:CA:BE:9E:D8:E5:29:51:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/qKGvAvlsG6ktk6Uiyr6e2OUpUVM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36493E2/CD0DCC106FDC11EB9FF77B58F8AEA228/44E2BFD6BEB611EEB2F13E55775412E6.roa
Signing time: Mon 29 Jan 2024 14:54:14 +0000
ROA not before: Mon 29 Jan 2024 14:54:11 +0000
ROA not after: Thu 31 Jan 2030 14:54:11 +0000
asID: 37738
IP address blocks: 2c0f:5400:6::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36493E2/CD0DCC106FDC11EB9FF77B58F8AEA228/qKGvAvlsG6ktk6Uiyr6e2OUpUVM.crl
rsync://rpki.afrinic.net/repository/member_repository/F36493E2/CD0DCC106FDC11EB9FF77B58F8AEA228/qKGvAvlsG6ktk6Uiyr6e2OUpUVM.mft
rsync://rpki.afrinic.net/repository/afrinic/qKGvAvlsG6ktk6Uiyr6e2OUpUVM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 21 May 2024 00:04:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1132 (0x46c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36493E2AF/serialNumber=A8A1AF02F96C1BA92D93A522CABE9ED8E5295153
Validity
Not Before: Jan 29 14:54:11 2024 GMT
Not After : Jan 31 14:54:11 2030 GMT
Subject: CN=65b7bc16-97d9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:5a:81:97:b2:f8:7a:4f:2d:67:66:35:b3:6d:
f0:61:ea:39:f5:8e:25:b3:e3:e7:53:b0:83:a9:5d:
31:be:47:53:b2:b6:c7:0b:0a:b5:a6:81:6c:fe:8f:
6a:4a:33:90:5b:b8:5a:47:d9:61:b2:b4:e2:6a:01:
66:ae:0b:2c:66:c3:7d:1b:d1:de:9d:c1:23:73:31:
68:48:f8:55:2a:17:81:9e:1a:4b:f6:fe:3c:73:09:
b6:04:de:2c:ff:52:74:44:27:16:7a:ac:6b:9c:01:
f4:b6:ea:45:f8:b1:26:54:fa:20:e6:63:df:e9:29:
8a:8f:4c:00:d4:f4:6a:5c:7c:8b:91:a5:d9:1d:00:
4b:d5:ab:94:ab:f8:33:70:14:aa:99:6d:40:65:43:
9f:c8:16:f9:f8:6a:e5:69:a8:85:a3:98:3c:98:6a:
64:e1:76:a4:20:49:60:a6:a0:7a:11:1a:33:40:e2:
c8:b1:94:35:8b:d2:7f:7e:8a:a7:f4:29:9b:85:cb:
c1:1d:c0:cb:e1:57:b3:51:f6:c8:eb:b5:60:b4:b8:
56:62:a3:f7:fb:eb:ca:43:7a:38:5f:db:34:d9:2e:
5b:34:72:8c:c2:62:f3:2d:b6:72:b8:3d:38:1d:14:
e6:b9:42:84:c0:8d:8f:51:20:41:25:57:77:e4:89:
e6:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:5E:D2:1A:B6:EF:62:2C:CA:80:5B:E0:54:32:42:E9:32:BB:08:99
X509v3 Authority Key Identifier:
keyid:A8:A1:AF:02:F9:6C:1B:A9:2D:93:A5:22:CA:BE:9E:D8:E5:29:51:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36493E2/CD0DCC106FDC11EB9FF77B58F8AEA228/qKGvAvlsG6ktk6Uiyr6e2OUpUVM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/qKGvAvlsG6ktk6Uiyr6e2OUpUVM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36493E2/CD0DCC106FDC11EB9FF77B58F8AEA228/44E2BFD6BEB611EEB2F13E55775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2c0f:5400:6::/48
Signature Algorithm: sha256WithRSAEncryption
18:b7:08:7e:6b:3c:b5:cc:f9:bf:28:59:cb:ce:23:e7:75:9f:
45:95:57:14:89:04:91:e0:05:da:6a:60:99:87:b3:04:26:88:
ab:37:69:1e:b8:77:94:f6:c5:7e:55:e6:f8:8b:a2:e3:20:e8:
22:89:f5:5e:04:77:4c:fe:bc:90:24:56:c4:0a:23:ca:2b:04:
34:74:57:20:92:c4:c2:c0:b1:4b:39:65:75:07:00:df:34:ae:
93:d1:d9:f3:4b:69:60:28:29:b2:e9:c4:00:00:e9:2f:19:58:
9a:f2:f3:22:73:a2:d6:25:6e:6b:37:a7:c5:21:38:dc:be:7b:
c4:c5:dc:09:86:76:4b:dd:02:03:fb:85:1e:58:1b:35:1a:9d:
80:eb:bd:f2:82:e4:58:1a:4b:9e:df:6b:72:c5:7b:ca:d3:09:
27:97:67:f2:c9:7a:d2:ae:46:7c:88:f1:9b:6d:f5:5a:d8:5a:
cc:29:88:1f:f9:81:a6:1a:a0:3d:77:31:50:5d:32:3e:d5:4b:
ce:c3:93:6e:e2:88:90:8d:37:c8:13:08:c8:b9:b7:6d:4a:b2:
7a:00:16:ec:99:3e:95:ab:d2:b2:6d:ae:cd:d7:b6:14:b9:1d:
ba:2c:f4:8c:7e:ab:47:90:be:7a:68:d5:1f:88:f5:46:c3:42:
ab:f9:ef:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 19 02:39:30 2024 by rpki-client on console-fra.rpki-client.org