Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F365FB04/A0030BD0BF7611EE98EA44B3775412E6/84F4D7E4C01E11EE96125668775412E6.roa
File: 84F4D7E4C01E11EE96125668775412E6.roa (raw, json)
Hash identifier: foQPn6FWgsOZWx9YjKT409OmY84gXqjIzpo0LoTYpbM=
Subject key identifier: E4:BA:FF:FE:31:98:93:06:03:FF:39:A2:AB:ED:21:52:40:46:2C:9D
Certificate issuer: /CN=F365FB04AF/serialNumber=93CE1F2027182B8129AB0C713A8FF521C13D448F
Certificate serial: 0E
Authority key identifier: 93:CE:1F:20:27:18:2B:81:29:AB:0C:71:3A:8F:F5:21:C1:3D:44:8F
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/k84fICcYK4EpqwxxOo_1IcE9RI8.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F365FB04/A0030BD0BF7611EE98EA44B3775412E6/84F4D7E4C01E11EE96125668775412E6.roa
Signing time: Wed 31 Jan 2024 09:53:01 +0000
ROA not before: Wed 31 Jan 2024 09:52:57 +0000
ROA not after: Wed 31 Jan 2029 09:52:57 +0000
asID: 37482
IP address blocks: 2c0f:f1e8::/32 maxlen: 36
2c0f:f1e8:1000::/36 maxlen: 36
2c0f:f1e8:2000::/36 maxlen: 36
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F365FB04/A0030BD0BF7611EE98EA44B3775412E6/k84fICcYK4EpqwxxOo_1IcE9RI8.crl
rsync://rpki.afrinic.net/repository/member_repository/F365FB04/A0030BD0BF7611EE98EA44B3775412E6/k84fICcYK4EpqwxxOo_1IcE9RI8.mft
rsync://rpki.afrinic.net/repository/afrinic/k84fICcYK4EpqwxxOo_1IcE9RI8.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 04 Jun 2024 00:04:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 14 (0xe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F365FB04AF/serialNumber=93CE1F2027182B8129AB0C713A8FF521C13D448F
Validity
Not Before: Jan 31 09:52:57 2024 GMT
Not After : Jan 31 09:52:57 2029 GMT
Subject: CN=65ba187d-8c1b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:c6:6b:0d:b8:b3:7d:83:30:e0:0a:e7:e9:c3:
d3:94:b8:c0:a6:cb:21:a6:a5:cf:29:2d:41:8b:af:
32:b4:64:ec:34:12:26:4a:a8:17:f4:3c:7f:5a:4a:
74:3d:93:18:1e:fc:db:85:47:7e:fb:4f:50:c7:74:
e8:3d:0b:e3:84:32:63:0d:a9:69:34:4b:e9:e2:a7:
8e:3d:e8:8a:3d:55:47:3d:34:78:ac:4a:ac:a3:78:
e8:5e:18:6f:c2:16:4c:b3:66:5a:c2:42:fc:fc:b7:
9a:ed:54:45:9d:ea:09:7a:f6:c6:21:41:e7:af:61:
2b:a1:b4:f3:98:44:d1:6a:50:8f:eb:cd:9a:e3:85:
33:e3:85:4d:35:fc:cc:ee:80:bf:42:ed:0c:b8:08:
50:ea:8d:eb:69:7b:9e:fd:3e:ba:3e:88:a2:88:26:
99:6d:3c:be:77:98:11:0c:ba:61:c7:73:be:d8:af:
8a:5e:67:94:20:64:d0:f3:3e:0c:af:f5:a9:eb:74:
16:8a:9e:cf:98:15:80:16:0d:8d:0a:84:c6:f3:ae:
b4:61:89:03:14:b7:62:84:50:5e:4a:fd:22:99:2f:
b8:5c:d9:fa:3d:ec:6c:f6:aa:e1:02:45:b5:41:93:
77:07:bf:45:48:c4:68:f6:ae:64:85:eb:f7:bd:4a:
cf:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:BA:FF:FE:31:98:93:06:03:FF:39:A2:AB:ED:21:52:40:46:2C:9D
X509v3 Authority Key Identifier:
keyid:93:CE:1F:20:27:18:2B:81:29:AB:0C:71:3A:8F:F5:21:C1:3D:44:8F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F365FB04/A0030BD0BF7611EE98EA44B3775412E6/k84fICcYK4EpqwxxOo_1IcE9RI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/k84fICcYK4EpqwxxOo_1IcE9RI8.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F365FB04/A0030BD0BF7611EE98EA44B3775412E6/84F4D7E4C01E11EE96125668775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2c0f:f1e8::/32
Signature Algorithm: sha256WithRSAEncryption
13:98:55:55:b9:8b:95:60:c6:ee:74:dc:23:61:d5:59:98:12:
71:ff:3f:a1:79:60:16:65:b1:7b:98:35:eb:5e:18:f8:49:1d:
78:1c:8d:c6:3c:fe:1b:5d:1a:ec:59:8f:fd:25:bd:6f:a7:c7:
2c:5c:ab:2e:b0:b0:17:9a:86:67:db:29:d9:76:a2:29:e5:e2:
6c:97:f1:dc:f5:cf:d6:76:13:ce:0e:c3:04:00:a1:a5:a5:23:
b4:32:6d:4e:32:75:9a:0e:08:78:c6:8a:32:78:e6:4f:50:86:
2d:14:0f:83:89:e9:aa:da:a1:d5:35:fb:1d:78:cb:a2:64:97:
3b:e9:24:cb:d6:30:84:d5:0b:11:0c:1c:09:6e:8d:d3:c2:2c:
65:f0:2d:85:9d:09:ab:5b:56:40:a1:c5:05:be:d8:08:14:f7:
17:6a:20:b7:ad:37:66:5b:fe:d4:aa:36:83:5a:e1:14:71:45:
c0:33:5e:3b:48:fe:ea:ca:69:d6:7b:ce:5b:6d:0c:ef:8d:7e:
bc:4c:18:29:5e:a7:ba:37:56:42:48:c6:0d:30:29:cb:ad:c2:
1b:b3:88:5f:d6:45:0e:02:70:d9:06:cd:68:d7:d5:6b:33:d1:
0a:0f:d9:7a:ba:e9:06:4b:ef:91:ec:db:c6:e5:0a:9c:26:8b:
62:4a:31:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 2 03:35:33 2024 by rpki-client on console-fra.rpki-client.org