Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3662DAB/048F88108F3211EDB0EEF1B7F1222468/DC9F0AEE94B111EDB5B35AEFF1222468.roa
File: DC9F0AEE94B111EDB5B35AEFF1222468.roa (raw, json)
Hash identifier: cBfEg9usM7R7JAg38/WBIq6OqmrPjq8Iy9i0geJ6WGM=
Subject key identifier: 52:25:87:BE:E7:3B:BD:10:15:DB:B8:B8:3E:AD:25:03:07:DD:7C:AC
Certificate issuer: /CN=F3662DABAF/serialNumber=5CA389FB8051D2412BA5DF801D89B2CACE57259C
Certificate serial: 0B
Authority key identifier: 5C:A3:89:FB:80:51:D2:41:2B:A5:DF:80:1D:89:B2:CA:CE:57:25:9C
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/XKOJ-4BR0kErpd-AHYmyys5XJZw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3662DAB/048F88108F3211EDB0EEF1B7F1222468/DC9F0AEE94B111EDB5B35AEFF1222468.roa
Signing time: Sun 15 Jan 2023 08:51:55 +0000
ROA not before: Sun 15 Jan 2023 08:51:51 +0000
ROA not after: Wed 15 Jan 2025 08:51:51 +0000
asID: 328073
IP address blocks: 2c0f:6d80::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3662DAB/048F88108F3211EDB0EEF1B7F1222468/XKOJ-4BR0kErpd-AHYmyys5XJZw.crl
rsync://rpki.afrinic.net/repository/member_repository/F3662DAB/048F88108F3211EDB0EEF1B7F1222468/XKOJ-4BR0kErpd-AHYmyys5XJZw.mft
rsync://rpki.afrinic.net/repository/afrinic/XKOJ-4BR0kErpd-AHYmyys5XJZw.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 11 (0xb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3662DABAF/serialNumber=5CA389FB8051D2412BA5DF801D89B2CACE57259C
Validity
Not Before: Jan 15 08:51:51 2023 GMT
Not After : Jan 15 08:51:51 2025 GMT
Subject: CN=63c3beab-87ef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:62:14:e8:41:db:e3:83:4c:1f:46:0e:82:dc:
2f:21:c6:3e:55:6b:19:1f:d7:2a:73:54:49:60:46:
0b:74:31:63:17:65:40:fa:c5:9d:ca:2f:fe:14:e7:
37:3e:d9:43:63:31:db:43:be:b1:c4:d1:56:3f:56:
11:41:9b:9f:1e:ba:2b:73:99:d6:6f:86:e4:38:8a:
85:f7:eb:e2:c5:33:5e:fc:24:97:9f:16:6c:3b:4f:
28:62:63:8f:00:9c:4c:1c:a8:d2:e2:53:26:35:44:
2f:5d:4e:06:04:5e:31:ae:ac:99:1c:4d:b5:09:44:
b9:6b:94:26:49:aa:56:7d:ad:83:46:c3:de:cb:cb:
e7:e9:2c:a2:76:7b:48:c8:13:28:11:3d:26:b7:3e:
ce:f8:12:5f:1b:13:7d:ba:e7:04:5c:b1:b1:a9:d3:
e1:23:4b:42:15:29:40:e1:83:9a:33:74:a5:a2:2b:
a9:a9:8c:52:17:0d:5e:5f:f2:dd:17:23:e8:3d:94:
8a:40:ff:a7:75:6e:bb:62:e2:0e:fb:33:26:2d:7e:
7d:94:e6:ee:00:6f:14:38:38:23:02:2e:75:e8:7f:
8f:cb:f4:c4:b4:7c:e3:6c:3c:51:34:74:c1:19:c1:
e6:96:05:2f:ee:e6:d6:f1:15:f7:03:3d:a8:c1:31:
91:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:25:87:BE:E7:3B:BD:10:15:DB:B8:B8:3E:AD:25:03:07:DD:7C:AC
X509v3 Authority Key Identifier:
keyid:5C:A3:89:FB:80:51:D2:41:2B:A5:DF:80:1D:89:B2:CA:CE:57:25:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3662DAB/048F88108F3211EDB0EEF1B7F1222468/XKOJ-4BR0kErpd-AHYmyys5XJZw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/XKOJ-4BR0kErpd-AHYmyys5XJZw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3662DAB/048F88108F3211EDB0EEF1B7F1222468/DC9F0AEE94B111EDB5B35AEFF1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2c0f:6d80::/32
Signature Algorithm: sha256WithRSAEncryption
2a:7c:7c:48:93:23:c3:77:c7:34:29:b2:ce:ab:55:c7:41:a7:
7e:e5:14:2a:c7:46:a8:0d:c1:b4:c6:ba:e7:3f:13:ff:b7:82:
38:62:86:54:66:31:f4:33:4c:15:0e:2c:d7:b7:5e:fc:bf:46:
47:de:09:c2:0c:78:9a:78:d1:f7:97:97:38:06:a5:78:44:ae:
73:14:3e:9e:81:b8:03:ca:54:8a:58:f9:22:86:01:40:7d:70:
57:eb:1d:71:21:fc:d8:8a:4b:bb:33:6e:ac:ec:00:70:b3:f9:
ae:2f:0a:be:39:90:c1:a2:94:f8:1c:63:2a:c7:40:e1:b0:1f:
6e:84:ee:3e:eb:4d:7d:33:f6:e4:2d:d7:56:fd:95:ca:d8:a6:
5a:dd:bb:76:ee:bc:fa:dc:09:ac:c1:b5:65:f4:ee:7b:16:4c:
75:e1:cc:d1:44:22:ce:82:de:03:b3:42:47:09:1c:31:a2:20:
75:76:89:d6:29:1a:7e:c6:8a:e4:18:e8:b2:c6:e8:ab:b1:c0:
46:9f:de:63:62:b3:c2:1f:72:98:e6:e1:4c:a7:0a:cb:54:ea:
56:85:da:6c:75:28:f5:bb:e6:ac:e5:f8:07:e7:db:d5:f8:be:
93:3c:43:e2:8d:56:e7:47:ef:78:17:60:11:c8:03:7c:c3:aa:
a7:4d:16:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 03:52:55 2024 by rpki-client on console-fra.rpki-client.org