Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3655EE4/99A5891E181511EA866A317EF8AEA228/C6A2BFC405E511EEBD45AA854AD9E6FC.roa
File: C6A2BFC405E511EEBD45AA854AD9E6FC.roa (raw, json)
Hash identifier: Q1IVIvXiqdltQfSEHcyv3gRXZTV0bEmCpfge3Kg/Cb4=
Subject key identifier: EB:F5:5C:4B:07:D6:8F:76:6B:95:4B:D4:CB:6A:FC:15:B1:BC:5A:C8
Certificate issuer: /CN=F3655EE4AF/serialNumber=0A67B10E169AAFA30350E377931331D91F39AB96
Certificate serial: 0529
Authority key identifier: 0A:67:B1:0E:16:9A:AF:A3:03:50:E3:77:93:13:31:D9:1F:39:AB:96
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CmexDhaar6MDUON3kxMx2R85q5Y.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3655EE4/99A5891E181511EA866A317EF8AEA228/C6A2BFC405E511EEBD45AA854AD9E6FC.roa
Signing time: Thu 08 Jun 2023 10:18:13 +0000
ROA not before: Thu 08 Jun 2023 10:18:09 +0000
ROA not after: Wed 08 Jun 2033 10:18:09 +0000
asID: 37650
IP address blocks: 2c0f:f460::/32 maxlen: 64
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3655EE4/99A5891E181511EA866A317EF8AEA228/CmexDhaar6MDUON3kxMx2R85q5Y.crl
rsync://rpki.afrinic.net/repository/member_repository/F3655EE4/99A5891E181511EA866A317EF8AEA228/CmexDhaar6MDUON3kxMx2R85q5Y.mft
rsync://rpki.afrinic.net/repository/afrinic/CmexDhaar6MDUON3kxMx2R85q5Y.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1321 (0x529)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3655EE4AF/serialNumber=0A67B10E169AAFA30350E377931331D91F39AB96
Validity
Not Before: Jun 8 10:18:09 2023 GMT
Not After : Jun 8 10:18:09 2033 GMT
Subject: CN=6481aae5-712f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:0f:48:d1:ae:03:44:cd:8b:fe:58:dc:ec:d2:
b2:8a:8c:a6:28:70:92:5d:2a:36:8d:27:fd:34:ca:
04:86:1f:b4:ab:39:91:35:66:23:80:9a:62:5c:e1:
b4:94:e3:1b:93:db:27:0d:6d:da:ce:33:aa:8c:f9:
30:db:d4:96:a1:94:aa:c9:9b:f3:14:72:a8:de:6b:
af:15:b7:b3:6a:98:e0:07:37:0c:7c:af:ed:28:b3:
d8:35:f8:1e:44:ab:1f:c7:cd:bb:d1:ad:76:70:13:
30:e4:06:0d:07:00:6f:d6:11:74:67:69:ee:30:d1:
fd:db:95:7d:7a:c2:e0:98:0a:fd:7a:9e:16:4a:f5:
e6:32:ee:52:3b:35:26:e1:50:bd:5c:48:03:48:6a:
81:74:b6:10:c0:93:97:a6:b0:1e:83:02:e0:ce:49:
2d:b3:c5:cd:1c:a9:d6:e1:dd:80:16:93:ec:cc:19:
8d:36:5f:41:fa:7f:ad:fa:8d:0a:bf:a4:85:95:62:
1e:9b:5e:bd:3a:29:56:e4:73:8c:81:49:1e:c5:21:
a1:fb:c6:43:a0:eb:fa:3d:03:7b:59:ab:94:e4:2c:
aa:ae:67:bb:b3:52:70:e4:61:93:5f:f6:35:95:ea:
64:cb:56:eb:59:ab:64:07:4e:6f:9f:a1:3d:8b:58:
7d:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:F5:5C:4B:07:D6:8F:76:6B:95:4B:D4:CB:6A:FC:15:B1:BC:5A:C8
X509v3 Authority Key Identifier:
keyid:0A:67:B1:0E:16:9A:AF:A3:03:50:E3:77:93:13:31:D9:1F:39:AB:96
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3655EE4/99A5891E181511EA866A317EF8AEA228/CmexDhaar6MDUON3kxMx2R85q5Y.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CmexDhaar6MDUON3kxMx2R85q5Y.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3655EE4/99A5891E181511EA866A317EF8AEA228/C6A2BFC405E511EEBD45AA854AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2c0f:f460::/32
Signature Algorithm: sha256WithRSAEncryption
96:3e:8c:75:8f:63:16:42:4e:a0:bb:db:c5:83:af:9a:c4:f9:
1f:6e:00:82:19:8a:cf:54:ad:ed:01:c1:80:f0:a7:f6:b9:45:
9d:70:a1:05:5c:47:46:cb:e1:b9:b8:c5:dd:04:ef:59:c2:4b:
c0:88:af:43:09:2d:f9:79:32:5a:83:e3:ff:60:f3:83:a6:c1:
c6:b4:dd:ac:51:b4:f9:1b:ee:90:80:55:0a:4f:03:b2:f5:f1:
e7:2a:05:d4:ad:15:34:c2:19:7d:11:3e:af:93:a9:86:20:41:
60:75:64:f6:3b:4b:6d:4b:72:49:8d:2f:bf:f9:0f:9d:62:c2:
e6:40:f5:d6:76:9b:9f:45:b5:77:41:cb:34:b9:2c:dd:a4:58:
7f:0c:cf:d3:85:4c:5b:60:87:c2:de:0a:96:32:bb:1e:bb:52:
e3:8f:e0:e8:fc:79:11:be:48:82:a2:c0:a8:96:c1:ca:48:8d:
cc:c1:5f:20:de:f9:c4:33:ae:d7:d9:f5:da:ae:b6:cd:fb:7c:
28:fe:f0:3a:f6:36:c0:86:9b:7a:16:63:c7:de:85:99:2b:f7:
f7:1d:7e:85:fd:ce:c4:75:2e:9f:b3:09:19:a5:c2:7e:ca:d1:
79:a4:7f:5b:4a:24:15:26:0b:a4:4a:6f:76:56:fe:2b:0f:d6:
56:47:3b:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:08:53 2024 by rpki-client on console-fra.rpki-client.org