Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F364FE7F/8CEFCC7490B811EDBCC9A5ECF1222468/B91EA92C90B911EDB026E5EFF1222468.roa
File: B91EA92C90B911EDB026E5EFF1222468.roa (raw, json)
Hash identifier: jgtpQ0SyHYLv8H3cKD9+kInHgQRfHREtHREywdYFSXk=
Subject key identifier: 68:27:2A:9C:E3:87:6F:60:BA:55:9E:1C:50:00:55:A3:1E:D6:BF:E8
Certificate issuer: /CN=F364FE7FAF/serialNumber=4102690498AC378BFFEFEE27BC695F91A123BF43
Certificate serial: 02
Authority key identifier: 41:02:69:04:98:AC:37:8B:FF:EF:EE:27:BC:69:5F:91:A1:23:BF:43
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/QQJpBJisN4v_7-4nvGlfkaEjv0M.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F364FE7F/8CEFCC7490B811EDBCC9A5ECF1222468/B91EA92C90B911EDB026E5EFF1222468.roa
Signing time: Tue 10 Jan 2023 07:38:07 +0000
ROA not before: Tue 10 Jan 2023 07:38:02 +0000
ROA not after: Sat 11 Jan 2025 07:38:02 +0000
asID: 328200
IP address blocks: 2c0f:ed18::/32 maxlen: 64
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F364FE7F/8CEFCC7490B811EDBCC9A5ECF1222468/QQJpBJisN4v_7-4nvGlfkaEjv0M.crl
rsync://rpki.afrinic.net/repository/member_repository/F364FE7F/8CEFCC7490B811EDBCC9A5ECF1222468/QQJpBJisN4v_7-4nvGlfkaEjv0M.mft
rsync://rpki.afrinic.net/repository/afrinic/QQJpBJisN4v_7-4nvGlfkaEjv0M.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2 (0x2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F364FE7FAF/serialNumber=4102690498AC378BFFEFEE27BC695F91A123BF43
Validity
Not Before: Jan 10 07:38:02 2023 GMT
Not After : Jan 11 07:38:02 2025 GMT
Subject: CN=63bd15df-09d7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:6e:c6:f1:2d:aa:15:d0:d7:2f:68:63:33:b2:
cb:b3:e0:57:67:34:4e:e7:ae:2e:05:c6:67:df:74:
c8:fb:33:b5:8a:4e:1a:6a:b7:44:04:b8:a6:21:c4:
0e:fc:54:a9:a3:12:52:fc:e2:3e:c1:aa:42:1a:d2:
cd:20:c1:9d:32:ea:b6:82:0a:29:5c:ed:45:de:d4:
04:84:da:5b:b1:59:ba:cf:4b:7d:23:ed:6b:1c:f2:
87:c3:d1:c6:9f:f9:56:bf:c6:5b:25:e8:ca:14:cb:
72:a6:eb:02:1b:32:26:38:6c:c3:5b:fd:e8:20:dd:
fa:ea:41:86:9d:fb:d2:b2:4e:40:d8:b6:21:64:48:
86:6b:5e:6d:60:fc:70:05:b1:b8:e1:85:3a:2e:8a:
56:cc:3d:7a:77:9b:8d:bd:0c:32:df:b0:70:50:1b:
d0:89:c8:bd:46:25:d3:c6:cc:d4:89:ed:7b:22:2b:
00:9d:ee:94:72:9c:90:02:60:43:01:e3:2a:69:91:
21:37:77:1c:71:e5:c6:96:ea:82:5e:f8:42:b7:e8:
2c:ad:33:39:3d:69:06:c0:14:ed:0b:20:01:1f:61:
64:69:65:f8:83:36:dd:c5:4f:6c:24:be:d5:55:88:
d9:f2:81:9d:95:45:1e:c1:9a:b1:5b:0e:29:c5:e2:
cf:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:27:2A:9C:E3:87:6F:60:BA:55:9E:1C:50:00:55:A3:1E:D6:BF:E8
X509v3 Authority Key Identifier:
keyid:41:02:69:04:98:AC:37:8B:FF:EF:EE:27:BC:69:5F:91:A1:23:BF:43
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F364FE7F/8CEFCC7490B811EDBCC9A5ECF1222468/QQJpBJisN4v_7-4nvGlfkaEjv0M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/QQJpBJisN4v_7-4nvGlfkaEjv0M.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F364FE7F/8CEFCC7490B811EDBCC9A5ECF1222468/B91EA92C90B911EDB026E5EFF1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2c0f:ed18::/32
Signature Algorithm: sha256WithRSAEncryption
7a:58:69:a3:7b:29:0a:a8:22:d1:c0:73:99:c6:00:c6:20:2a:
c0:29:6a:ce:46:a0:e8:73:1d:da:e2:75:be:62:99:64:92:95:
27:a5:9e:13:f3:fa:dc:25:98:ff:2e:71:63:82:c9:e8:3c:82:
44:c8:ec:5d:f0:e4:dc:d8:ed:1c:8b:5a:76:ab:6d:74:17:cb:
0c:9d:23:49:0b:36:84:7c:57:5f:0c:25:93:a0:77:4a:41:b6:
56:98:a7:09:a8:27:ce:bc:91:d3:7c:88:c9:de:c3:17:ed:6b:
46:c4:02:f7:58:be:f5:3c:8b:ff:ab:1b:b8:48:7a:08:b6:dd:
c6:89:05:c1:77:61:ff:c6:90:fe:4e:70:78:b9:12:82:0c:4e:
50:38:6b:e8:67:37:02:11:a1:51:3a:42:bc:ee:fc:e3:c3:43:
ea:bc:d7:98:09:49:64:7b:71:00:4b:c9:7e:f8:7f:31:2f:dc:
a4:89:27:8b:c5:00:d4:da:07:26:bd:ef:23:21:0b:59:da:1d:
d5:19:0e:6e:38:79:9c:60:79:8a:a7:37:01:94:e2:ef:ec:0d:
d3:57:d4:3d:b4:6a:b4:48:3e:bb:17:b3:4b:5d:34:53:93:a6:
af:15:e2:47:5b:db:1a:82:66:ab:9f:ad:30:9f:f1:d4:93:97:
a4:2e:2b:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:03:34 2024 by rpki-client on console-ams.rpki-client.org