Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F364AE44/22270EFEAF4411EB8C257686F8AEA228/ABE0951E2FB911EE986EBB0E4AD9E6FC.roa
File: ABE0951E2FB911EE986EBB0E4AD9E6FC.roa (raw, json)
Hash identifier: Tm3lcE0e38SX724MLhdJPTkjT2348gpKBU8OVoyIgtY=
Subject key identifier: 61:F5:91:18:B1:0E:7F:0B:88:03:E3:CA:75:63:61:64:FC:27:BE:7B
Certificate issuer: /CN=F364AE44AF/serialNumber=8F503BD573CE113517CD6B4CFA374A62F15E12C1
Certificate serial: 0353
Authority key identifier: 8F:50:3B:D5:73:CE:11:35:17:CD:6B:4C:FA:37:4A:62:F1:5E:12:C1
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/j1A71XPOETUXzWtM-jdKYvFeEsE.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F364AE44/22270EFEAF4411EB8C257686F8AEA228/ABE0951E2FB911EE986EBB0E4AD9E6FC.roa
Signing time: Mon 31 Jul 2023 15:48:19 +0000
ROA not before: Mon 31 Jul 2023 15:48:14 +0000
ROA not after: Mon 30 Jun 2025 15:48:14 +0000
asID: 36925
IP address blocks: 2c0e:6000::/24 maxlen: 48
2c0f:fb20::/32 maxlen: 48
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F364AE44/22270EFEAF4411EB8C257686F8AEA228/j1A71XPOETUXzWtM-jdKYvFeEsE.crl
rsync://rpki.afrinic.net/repository/member_repository/F364AE44/22270EFEAF4411EB8C257686F8AEA228/j1A71XPOETUXzWtM-jdKYvFeEsE.mft
rsync://rpki.afrinic.net/repository/afrinic/j1A71XPOETUXzWtM-jdKYvFeEsE.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 851 (0x353)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F364AE44AF/serialNumber=8F503BD573CE113517CD6B4CFA374A62F15E12C1
Validity
Not Before: Jul 31 15:48:14 2023 GMT
Not After : Jun 30 15:48:14 2025 GMT
Subject: CN=64c7d7c3-0e4b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:7c:00:b5:50:16:56:cf:52:3d:00:0b:0f:7c:
12:1c:50:e1:bb:ca:af:5f:60:ef:82:fc:73:ff:25:
f8:da:eb:de:d1:58:97:fe:53:de:ca:d1:67:a0:76:
16:a5:9d:51:31:f6:ca:e2:cc:63:59:e0:0b:02:80:
8c:bd:42:93:4e:0f:ef:44:da:66:81:d4:12:37:e9:
23:d1:96:31:f7:55:c4:ad:5e:6e:b7:f9:51:43:f5:
a7:a2:77:d0:8d:a1:8f:c4:a4:3e:e7:3f:fd:db:7c:
e2:a9:6e:76:99:31:9d:24:00:12:56:a7:19:e7:ce:
be:6c:38:7c:f2:78:8e:94:ae:23:85:64:be:44:ad:
f3:49:54:13:7a:3d:55:21:c2:5f:f2:39:f6:42:3b:
68:cb:1c:13:e5:1b:f4:56:0d:42:45:ff:3b:8d:af:
1f:40:22:a2:a7:ee:50:62:c3:dd:ec:86:d3:7a:de:
4b:d4:7f:77:7e:90:29:d2:1c:67:8b:74:0a:00:3e:
63:e0:54:d5:86:85:e6:b2:cb:04:9e:0b:0b:59:f3:
5d:85:a1:a5:10:70:0d:28:1f:40:08:41:23:8b:90:
18:1e:a1:f2:3e:42:a2:88:2f:d7:c2:a0:f1:6d:66:
86:0a:ee:8f:96:27:e6:53:ff:f2:39:f4:28:7c:c5:
fb:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:F5:91:18:B1:0E:7F:0B:88:03:E3:CA:75:63:61:64:FC:27:BE:7B
X509v3 Authority Key Identifier:
keyid:8F:50:3B:D5:73:CE:11:35:17:CD:6B:4C:FA:37:4A:62:F1:5E:12:C1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F364AE44/22270EFEAF4411EB8C257686F8AEA228/j1A71XPOETUXzWtM-jdKYvFeEsE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/j1A71XPOETUXzWtM-jdKYvFeEsE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F364AE44/22270EFEAF4411EB8C257686F8AEA228/ABE0951E2FB911EE986EBB0E4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2c0e:6000::/24
2c0f:fb20::/32
Signature Algorithm: sha256WithRSAEncryption
6e:b1:81:d4:fa:6a:65:39:aa:66:b6:30:0e:c0:81:3d:ba:81:
9d:a5:7a:e8:3b:fe:12:62:a8:65:7b:00:13:35:df:58:02:a5:
8d:db:70:d4:fe:50:3a:6f:3d:9d:b6:3a:90:fc:3a:4a:52:47:
ed:5a:40:33:44:df:d9:ec:4e:33:29:d5:8a:dd:46:d7:42:03:
3b:56:fc:e4:9d:54:9d:c8:2b:81:bf:d3:b1:66:4a:e5:36:19:
93:bd:68:02:15:8b:ef:56:e9:9c:fd:fa:ca:0e:8a:68:75:a0:
2c:91:ff:83:f8:28:e2:ab:18:66:2f:c5:d9:50:8d:01:13:a2:
98:cb:42:9b:1d:b4:96:a8:5d:f9:70:70:e5:72:3f:2e:ba:d5:
a4:37:0b:49:3f:57:ba:fe:ca:e3:6f:41:5b:60:93:47:06:40:
33:7d:9c:d3:89:6f:44:a8:ff:c2:7c:28:98:0a:e4:41:3a:ab:
6f:b1:01:48:71:82:15:f8:8f:4a:4a:90:62:f8:fd:11:18:2c:
9e:af:40:c8:50:4d:00:86:a3:06:1c:98:f6:e2:f4:65:50:c1:
67:8e:8f:bf:e3:a8:3e:0e:c6:fe:e6:c5:48:67:07:1f:de:1e:
19:74:a9:07:b3:1b:40:db:4a:05:cb:0e:28:08:6a:48:bc:d3:
63:69:53:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:03:34 2024 by rpki-client on console-ams.rpki-client.org