Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3656BB8/D79EEB94891C11EEAF65C7604AD9E6FC/5A705AB83F6511EFB113C3BA762E951A.roa
File: 5A705AB83F6511EFB113C3BA762E951A.roa (raw, json)
Hash identifier: 46y6LOxfLG2hpzs8KqldDqb+T4CZAqoGN7kv9ge6l2Q=
Subject key identifier: 01:1A:B5:2F:AC:5E:BB:4C:06:0B:97:A5:85:DB:54:DB:2F:74:C2:B8
Certificate issuer: /CN=F3656BB8AF/serialNumber=F67066439ACD9EAFD4899FC68C6075C70CE39AD5
Certificate serial: 0105
Authority key identifier: F6:70:66:43:9A:CD:9E:AF:D4:89:9F:C6:8C:60:75:C7:0C:E3:9A:D5
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/9nBmQ5rNnq_UiZ_GjGB1xwzjmtU.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3656BB8/D79EEB94891C11EEAF65C7604AD9E6FC/5A705AB83F6511EFB113C3BA762E951A.roa
Signing time: Thu 11 Jul 2024 09:10:01 +0000
ROA not before: Thu 11 Jul 2024 09:09:58 +0000
ROA not after: Tue 11 Jul 2034 09:09:58 +0000
asID: 16509
IP address blocks: 2001:43ff:d000::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3656BB8/D79EEB94891C11EEAF65C7604AD9E6FC/9nBmQ5rNnq_UiZ_GjGB1xwzjmtU.crl
rsync://rpki.afrinic.net/repository/member_repository/F3656BB8/D79EEB94891C11EEAF65C7604AD9E6FC/9nBmQ5rNnq_UiZ_GjGB1xwzjmtU.mft
rsync://rpki.afrinic.net/repository/afrinic/9nBmQ5rNnq_UiZ_GjGB1xwzjmtU.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 09 Sep 2024 00:05:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 261 (0x105)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3656BB8AF/serialNumber=F67066439ACD9EAFD4899FC68C6075C70CE39AD5
Validity
Not Before: Jul 11 09:09:58 2024 GMT
Not After : Jul 11 09:09:58 2034 GMT
Subject: CN=668fa169-0d58
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:2e:2a:dd:d1:eb:7b:75:f4:1b:d0:c4:ac:48:
48:5e:24:4f:ef:2c:23:b3:2d:ea:04:03:2c:05:3d:
4f:10:5e:89:3d:fb:ac:81:d9:45:a1:5d:43:16:ae:
07:a2:84:2c:a1:ed:33:9f:80:cf:26:6b:2a:ac:00:
d4:e7:8e:a2:d7:0a:3f:78:d1:67:68:ea:a8:98:e8:
4a:38:be:ee:c8:d7:79:36:36:7f:77:64:fb:d1:fd:
b3:bd:93:d9:62:65:14:22:7f:57:da:9f:a4:7e:60:
b8:3f:65:b0:41:fd:6d:69:45:ae:47:f0:81:40:52:
58:d5:46:ee:ce:4d:9c:f6:d4:4e:8d:aa:72:a9:61:
9c:b1:03:c7:ed:c3:9d:44:1f:42:b3:b8:3f:8e:ea:
84:f7:46:5a:81:83:60:ea:f4:2d:a9:ae:5a:0c:34:
b9:b7:ca:ef:bb:da:67:81:f9:8e:5b:01:23:10:eb:
0e:67:52:0f:d5:88:f9:38:a2:99:9a:ba:b8:5b:3a:
c0:50:88:8c:0d:f2:4d:73:be:f6:07:d1:d2:bd:5a:
39:c1:2e:5c:02:42:9d:4b:4c:ad:11:82:57:f2:77:
22:5c:4e:10:7c:cf:f7:b4:42:a3:82:bc:c6:f7:70:
e0:34:05:f2:59:58:e5:28:9e:71:0a:42:92:60:d1:
1b:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:1A:B5:2F:AC:5E:BB:4C:06:0B:97:A5:85:DB:54:DB:2F:74:C2:B8
X509v3 Authority Key Identifier:
keyid:F6:70:66:43:9A:CD:9E:AF:D4:89:9F:C6:8C:60:75:C7:0C:E3:9A:D5
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3656BB8/D79EEB94891C11EEAF65C7604AD9E6FC/9nBmQ5rNnq_UiZ_GjGB1xwzjmtU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/9nBmQ5rNnq_UiZ_GjGB1xwzjmtU.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3656BB8/D79EEB94891C11EEAF65C7604AD9E6FC/5A705AB83F6511EFB113C3BA762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:43ff:d000::/48
Signature Algorithm: sha256WithRSAEncryption
09:c3:71:8f:87:03:2c:1b:d0:24:67:b4:d5:6a:e6:d0:13:a7:
87:69:9c:a8:1a:b6:b0:6b:b3:42:cd:bc:9e:64:4f:b2:12:c9:
b5:5a:f4:3a:3d:e3:98:85:b1:7a:36:0e:34:02:77:f2:12:09:
d4:62:44:1b:65:8b:31:b8:a8:ce:88:53:0f:a4:b1:71:0b:e5:
56:7f:50:18:c9:91:f4:8b:a4:e6:90:27:19:1b:74:f9:36:4f:
f0:97:bc:45:94:39:95:c9:58:d9:77:0e:a5:11:db:22:3f:c7:
6f:58:db:ba:91:05:12:ac:98:f9:71:a9:7f:1d:66:b8:6f:26:
8e:47:9e:32:d6:77:ba:81:aa:3a:68:46:06:c3:a7:3b:12:18:
83:17:74:1a:02:3b:b0:93:8d:f8:e7:03:16:02:73:1b:b5:5f:
3a:7f:95:3f:9c:d3:e7:72:d1:f2:bd:80:80:d4:1d:c4:42:e2:
df:5e:91:3a:9d:f2:27:5d:40:30:b7:3f:fb:c5:30:7c:73:1e:
2e:40:4f:9a:73:0b:c8:2c:cd:25:ae:e1:39:ed:b0:a0:3c:59:
0e:08:88:1b:28:ae:0b:2b:77:9c:bb:cf:84:fe:05:97:cb:43:
de:7a:77:4a:86:dc:53:8a:fd:ea:6b:49:88:61:08:8a:50:0b:
28:5f:a7:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Sep 7 03:59:42 2024 by rpki-client on console-fra.rpki-client.org