Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36549B1/DF788C98561311E5B1A0E360F8AEA228/67208BD45DDE11EEA367B1174AD9E6FC.roa
File: 67208BD45DDE11EEA367B1174AD9E6FC.roa (raw, json)
Hash identifier: dUOADrTH86yUTFdknQpwKyYi7Ckfi6ZQrgp/0K1+5iw=
Subject key identifier: 37:1C:0F:AD:EA:B3:CC:85:70:7C:69:41:FE:C7:D2:94:61:07:BC:1B
Certificate issuer: /CN=F36549B1AF/serialNumber=9F17383EB667E547BA00CFB7F914F4284C5849CC
Certificate serial: 0BCE
Authority key identifier: 9F:17:38:3E:B6:67:E5:47:BA:00:CF:B7:F9:14:F4:28:4C:58:49:CC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/nxc4PrZn5Ue6AM-3-RT0KExYScw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36549B1/DF788C98561311E5B1A0E360F8AEA228/67208BD45DDE11EEA367B1174AD9E6FC.roa
Signing time: Thu 28 Sep 2023 09:07:09 +0000
ROA not before: Thu 28 Sep 2023 09:07:06 +0000
ROA not after: Wed 01 Dec 2049 09:07:06 +0000
asID: 0
IP address blocks: 2001:43f8:1f1::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36549B1/DF788C98561311E5B1A0E360F8AEA228/nxc4PrZn5Ue6AM-3-RT0KExYScw.crl
rsync://rpki.afrinic.net/repository/member_repository/F36549B1/DF788C98561311E5B1A0E360F8AEA228/nxc4PrZn5Ue6AM-3-RT0KExYScw.mft
rsync://rpki.afrinic.net/repository/afrinic/nxc4PrZn5Ue6AM-3-RT0KExYScw.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 27 Apr 2024 00:04:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3022 (0xbce)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36549B1AF/serialNumber=9F17383EB667E547BA00CFB7F914F4284C5849CC
Validity
Not Before: Sep 28 09:07:06 2023 GMT
Not After : Dec 1 09:07:06 2049 GMT
Subject: CN=6515423d-7b61
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:93:7b:11:c5:b0:62:f4:59:0b:b3:82:3b:e7:
b8:3b:82:13:bc:65:ee:b4:a2:10:d4:40:c1:99:e3:
c1:00:fe:25:56:64:c2:33:b9:f9:2a:5a:ad:c8:8d:
a4:75:fe:56:16:7d:43:20:72:2f:f6:e3:42:d0:2c:
db:a1:4a:40:83:7b:e7:c9:47:04:8f:cc:b7:b8:0d:
cd:2f:7e:67:a6:49:ac:05:b4:15:88:22:42:15:e3:
f4:8a:dd:48:e4:07:95:69:ef:d1:45:62:12:7f:a7:
20:dd:80:e6:7c:42:db:bf:1e:e9:d4:0d:c9:53:43:
3a:21:6d:a3:ba:46:97:ac:0f:d6:c0:68:aa:68:56:
1d:6d:fd:f7:ae:49:d4:dc:e3:62:9d:d5:79:1e:8f:
9c:24:e8:72:db:14:1f:a2:51:ff:28:74:c9:29:93:
ea:b0:b0:fc:0a:f7:d3:8d:52:9b:6e:8e:d9:55:6e:
01:bd:7f:6c:b8:e4:fc:55:e6:d1:2d:85:24:f3:0d:
76:da:93:36:77:bc:ee:76:2a:ba:00:06:23:b8:0f:
66:ed:d9:95:da:e9:c6:39:41:fe:87:fb:b4:74:e8:
4f:f3:62:5c:f5:0a:7c:46:2d:3c:10:ae:f6:0c:ab:
26:80:e6:29:22:9a:90:d7:b3:93:8f:47:c5:c2:63:
29:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:1C:0F:AD:EA:B3:CC:85:70:7C:69:41:FE:C7:D2:94:61:07:BC:1B
X509v3 Authority Key Identifier:
keyid:9F:17:38:3E:B6:67:E5:47:BA:00:CF:B7:F9:14:F4:28:4C:58:49:CC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36549B1/DF788C98561311E5B1A0E360F8AEA228/nxc4PrZn5Ue6AM-3-RT0KExYScw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/nxc4PrZn5Ue6AM-3-RT0KExYScw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36549B1/DF788C98561311E5B1A0E360F8AEA228/67208BD45DDE11EEA367B1174AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:43f8:1f1::/48
Signature Algorithm: sha256WithRSAEncryption
54:92:9e:2d:62:11:ff:b5:06:58:11:53:d3:3b:73:a5:61:e7:
99:00:46:dc:e2:b1:00:cb:d0:93:84:7a:56:f4:8f:ec:52:42:
73:50:33:36:74:cd:36:79:67:94:e4:b9:cd:f7:3b:15:1b:2c:
e7:f5:18:72:87:e3:13:f5:c8:a5:2c:95:f6:39:b0:3c:41:28:
77:fb:37:73:5f:a4:07:8e:18:6f:33:b3:8e:2c:14:fe:3e:db:
0e:57:63:c4:df:2e:9d:49:a1:38:24:83:a4:e4:28:f7:45:8f:
8f:6f:0a:2c:f0:14:0b:92:42:d5:c8:8c:f2:e1:c9:28:0b:07:
33:1d:ae:6d:65:d9:06:76:25:8c:6e:e9:c8:0d:93:f0:f9:51:
28:3a:c6:95:30:df:01:b5:7a:51:d6:e4:34:a6:2c:66:b4:47:
56:05:71:6b:c6:ed:8f:58:35:92:38:ea:1c:fd:10:02:4e:34:
66:3a:fa:9c:8b:37:67:70:99:88:72:5a:26:7a:82:f1:09:45:
0f:77:55:ef:dd:0e:82:bc:8d:a7:00:86:ab:05:52:70:8e:f1:
3e:e3:6f:81:64:a9:55:69:5b:51:3c:ad:14:31:73:32:47:d7:
0b:ba:af:5f:8f:37:27:7c:c8:bb:17:3a:26:94:af:57:93:4e:
d5:cc:a8:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 25 01:20:06 2024 by rpki-client on console-fra.rpki-client.org