Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36580B0/24B7AD5841CE11EEB62278114AD9E6FC/5CA7913C41CF11EEABA50B154AD9E6FC.roa
File: 5CA7913C41CF11EEABA50B154AD9E6FC.roa (raw, json)
Hash identifier: mPw4RDOXZXo/bpdC9fVPFx1LHe7Ee57R4RWVqSxmsVQ=
Subject key identifier: 4B:FC:25:37:DC:9F:AF:73:8F:4D:DE:09:E5:1A:5A:AE:73:C1:BA:A0
Certificate issuer: /CN=F36580B0AF/serialNumber=8361D5A6D0F3D49C6760C0EA686C67C4149DD6DF
Certificate serial: 02
Authority key identifier: 83:61:D5:A6:D0:F3:D4:9C:67:60:C0:EA:68:6C:67:C4:14:9D:D6:DF
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/g2HVptDz1JxnYMDqaGxnxBSd1t8.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36580B0/24B7AD5841CE11EEB62278114AD9E6FC/5CA7913C41CF11EEABA50B154AD9E6FC.roa
Signing time: Wed 23 Aug 2023 16:08:56 +0000
ROA not before: Wed 23 Aug 2023 16:08:52 +0000
ROA not after: Tue 23 Aug 2033 16:08:52 +0000
asID: 327992
IP address blocks: 2c0f:eea0::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36580B0/24B7AD5841CE11EEB62278114AD9E6FC/g2HVptDz1JxnYMDqaGxnxBSd1t8.crl
rsync://rpki.afrinic.net/repository/member_repository/F36580B0/24B7AD5841CE11EEB62278114AD9E6FC/g2HVptDz1JxnYMDqaGxnxBSd1t8.mft
rsync://rpki.afrinic.net/repository/afrinic/g2HVptDz1JxnYMDqaGxnxBSd1t8.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2 (0x2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36580B0AF/serialNumber=8361D5A6D0F3D49C6760C0EA686C67C4149DD6DF
Validity
Not Before: Aug 23 16:08:52 2023 GMT
Not After : Aug 23 16:08:52 2033 GMT
Subject: CN=64e62f18-0145
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:8b:4a:29:e8:f6:1c:fb:40:09:2a:da:c5:67:
e1:30:a9:d6:f4:6d:47:bb:91:2e:07:bf:8e:0c:45:
14:aa:e9:e5:66:6c:61:75:c5:41:7f:99:00:08:d6:
22:b4:06:ca:d8:f6:ed:b8:64:c3:0d:a5:bc:bd:33:
c9:85:63:06:d3:4b:31:a5:d0:11:ab:69:fa:35:b4:
f1:54:31:bf:92:be:e4:a4:24:44:bc:d2:08:86:14:
72:5e:eb:6c:c1:f9:42:52:57:c8:94:85:f4:72:33:
97:20:07:75:1f:7f:3c:2e:8a:19:2c:81:95:ea:2b:
61:9a:1e:9b:e4:4e:92:ed:b8:38:b0:e1:9a:d4:e5:
83:28:05:56:5b:2a:4b:52:10:38:04:53:28:b3:53:
d7:ba:fa:0b:92:53:3a:84:2c:b1:62:3e:da:13:7b:
52:a0:7c:c8:37:0c:74:7d:5e:db:96:70:a6:96:62:
44:41:18:4b:a4:ef:7a:dd:c8:54:59:dd:03:54:de:
16:ec:0f:6d:03:31:f5:f9:a2:5a:78:d1:20:35:59:
4a:95:7b:24:01:05:d2:79:ee:7a:84:7a:a3:cd:6b:
23:eb:eb:a6:90:a5:a0:aa:41:b0:b1:47:78:f1:c6:
ed:4a:2a:53:57:71:84:f8:69:f0:2b:c3:86:42:c1:
bb:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:FC:25:37:DC:9F:AF:73:8F:4D:DE:09:E5:1A:5A:AE:73:C1:BA:A0
X509v3 Authority Key Identifier:
keyid:83:61:D5:A6:D0:F3:D4:9C:67:60:C0:EA:68:6C:67:C4:14:9D:D6:DF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36580B0/24B7AD5841CE11EEB62278114AD9E6FC/g2HVptDz1JxnYMDqaGxnxBSd1t8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/g2HVptDz1JxnYMDqaGxnxBSd1t8.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36580B0/24B7AD5841CE11EEB62278114AD9E6FC/5CA7913C41CF11EEABA50B154AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2c0f:eea0::/32
Signature Algorithm: sha256WithRSAEncryption
9b:06:40:0c:3a:ab:2a:b7:e2:6d:ee:51:40:f0:83:fc:53:9e:
69:48:63:8d:87:ff:8f:5e:c8:22:2a:d4:bc:d8:15:77:72:ce:
61:4f:c9:af:5a:96:a9:e6:0a:3b:51:bc:d6:38:5f:6a:99:76:
d6:a9:f6:48:1a:4c:23:85:ba:9d:d4:68:f7:5f:30:bd:73:f4:
20:0c:10:77:51:3e:64:ca:fa:e2:b5:2d:07:de:7e:13:91:98:
2f:ab:da:c0:92:a0:37:a7:de:25:7f:21:8e:0c:f8:01:fa:f2:
52:6c:0c:0e:76:64:d7:33:a4:b8:a3:f7:c8:6a:0a:4a:b4:7d:
31:31:e4:8e:72:35:41:6d:1e:e7:d8:96:aa:0c:1d:8d:92:a1:
96:16:39:42:6a:39:a6:d0:2c:0f:11:e3:2a:70:88:a2:d2:5f:
45:c9:10:82:98:7f:ea:22:2e:59:6d:8d:4d:88:00:b6:d6:36:
41:03:21:ac:d4:bc:4c:92:f1:3a:a9:8b:10:82:1b:5f:d5:91:
18:c3:cf:0a:93:f6:89:69:e5:93:18:bb:0a:cf:20:93:d6:a2:
24:b0:21:dc:c8:41:16:29:5a:9f:35:0d:84:d6:3e:33:a8:00:
1a:e1:54:86:4e:02:b2:0c:fe:b9:56:67:db:92:b6:3a:25:02:
64:8f:43:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 03:52:54 2024 by rpki-client on console-fra.rpki-client.org