Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3650567/33E3302674BA11EEAA94C1734AD9E6FC/6DA5A2565FD511EFA88ABB88762E951A.roa
File: 6DA5A2565FD511EFA88ABB88762E951A.roa (raw, json)
Hash identifier: ro2wQBC/RLqE0zVlMpswfR5i9xWzti7o20ft60EsccY=
Subject key identifier: 47:1B:1F:5A:9A:22:29:1E:DA:5B:8F:07:79:9A:D3:7C:D5:A0:1C:A5
Certificate issuer: /CN=F3650567AF/serialNumber=5FC37DECEB7008BBA741347845B76B47677AEA69
Certificate serial: 0145
Authority key identifier: 5F:C3:7D:EC:EB:70:08:BB:A7:41:34:78:45:B7:6B:47:67:7A:EA:69
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/X8N97OtwCLunQTR4RbdrR2d66mk.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3650567/33E3302674BA11EEAA94C1734AD9E6FC/6DA5A2565FD511EFA88ABB88762E951A.roa
Signing time: Wed 21 Aug 2024 15:52:55 +0000
ROA not before: Wed 21 Aug 2024 15:52:51 +0000
ROA not after: Fri 21 Aug 2026 15:52:51 +0000
asID: 37073
IP address blocks: 2c0f:5a40::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3650567/33E3302674BA11EEAA94C1734AD9E6FC/X8N97OtwCLunQTR4RbdrR2d66mk.crl
rsync://rpki.afrinic.net/repository/member_repository/F3650567/33E3302674BA11EEAA94C1734AD9E6FC/X8N97OtwCLunQTR4RbdrR2d66mk.mft
rsync://rpki.afrinic.net/repository/afrinic/X8N97OtwCLunQTR4RbdrR2d66mk.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 325 (0x145)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3650567AF/serialNumber=5FC37DECEB7008BBA741347845B76B47677AEA69
Validity
Not Before: Aug 21 15:52:51 2024 GMT
Not After : Aug 21 15:52:51 2026 GMT
Subject: CN=66c60d56-31ef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:81:00:05:4a:97:8d:d4:3f:23:d6:f9:87:e8:
ad:90:22:8d:68:7a:20:77:45:b0:de:da:4d:5c:9a:
68:58:ec:57:36:0c:b9:32:3e:1f:1d:b1:ec:b6:ae:
de:a2:e1:5b:0d:40:b9:1e:50:2b:3a:13:51:f2:09:
38:ca:6e:33:6d:11:07:21:a2:74:5e:da:de:90:80:
4f:11:70:0e:33:7b:6c:c1:a9:ef:0d:30:8f:6d:47:
9f:ca:1f:35:53:32:42:90:bf:d3:da:82:ca:c4:08:
83:08:e6:be:58:de:44:28:18:18:e1:c8:51:a0:c1:
c2:c7:c8:f1:23:e1:91:75:90:aa:ce:ae:7e:85:8f:
35:ed:1c:3c:25:2d:14:f1:2a:55:97:63:60:ae:a0:
3f:ea:17:64:6a:ca:f7:e5:93:1b:3c:b8:15:c8:36:
f1:87:76:55:c2:45:dd:5c:e9:40:2d:b9:af:b2:05:
58:11:bb:35:7a:01:aa:3c:0d:63:aa:59:29:b9:4b:
fe:50:dc:ea:c6:4a:a3:68:8a:8d:82:fa:cd:6e:cc:
4b:58:f7:df:48:82:48:f5:57:2c:18:99:d8:bd:a9:
03:b3:79:0b:6f:92:b3:59:17:9b:4f:58:b6:01:f3:
76:3f:bd:bc:37:98:b4:79:32:b0:b6:a9:cf:56:9a:
07:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:1B:1F:5A:9A:22:29:1E:DA:5B:8F:07:79:9A:D3:7C:D5:A0:1C:A5
X509v3 Authority Key Identifier:
keyid:5F:C3:7D:EC:EB:70:08:BB:A7:41:34:78:45:B7:6B:47:67:7A:EA:69
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3650567/33E3302674BA11EEAA94C1734AD9E6FC/X8N97OtwCLunQTR4RbdrR2d66mk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/X8N97OtwCLunQTR4RbdrR2d66mk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3650567/33E3302674BA11EEAA94C1734AD9E6FC/6DA5A2565FD511EFA88ABB88762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2c0f:5a40::/32
Signature Algorithm: sha256WithRSAEncryption
2b:b4:a9:93:48:25:53:34:87:e9:c6:10:32:d9:a5:06:55:3c:
91:14:04:00:1b:ea:98:0f:4b:28:0d:5e:c5:7b:6f:c0:f6:9f:
a4:9c:bd:41:bf:9d:26:7c:43:3b:ed:ff:4a:06:82:e0:3e:5d:
03:c3:90:fb:cf:51:11:dd:de:72:9c:9d:bf:56:34:1a:69:66:
b8:02:44:85:fa:c9:c1:bb:f6:10:ce:e5:1d:91:17:3a:5c:76:
18:93:00:0e:a2:2e:17:38:60:41:35:0f:a8:60:77:9e:55:e8:
79:ee:2a:0e:65:db:5f:f2:16:8c:de:e9:04:66:00:73:06:2a:
c3:4d:5f:75:0a:3c:22:26:c5:02:e3:a5:53:c5:b9:a6:71:02:
fd:5f:a1:35:9c:dd:de:08:0c:7d:be:08:a6:2d:c7:cd:7c:24:
65:d4:ae:ff:52:50:07:e4:17:ff:6a:06:12:bb:04:20:40:0c:
f0:25:1c:c4:19:9c:c3:22:8e:25:d5:8a:90:74:df:f1:c6:a4:
74:97:26:ad:cb:74:6d:e4:45:1a:d2:1b:32:11:43:2a:0d:31:
56:cc:18:7a:a7:d8:75:df:09:10:d6:a6:38:ca:c5:c0:9f:73:
12:d8:85:40:4a:10:08:2c:dd:c6:3a:55:39:31:f2:09:1c:75:
1b:25:df:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 03:52:54 2024 by rpki-client on console-fra.rpki-client.org