Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3668CFE/95EFD74C375711EEBB1432184AD9E6FC/673167545B7E11EE98EEBD784AD9E6FC.roa
File: 673167545B7E11EE98EEBD784AD9E6FC.roa (raw, json)
Hash identifier: adqbPWSj3qJmhRpUh3DUEWmWfDKPs4YfwC9ZlFS5ias=
Subject key identifier: D5:E2:B2:FF:1A:7D:44:7C:1D:AA:B8:98:C3:E0:96:2E:19:96:0A:D3
Certificate issuer: /CN=F3668CFEAF/serialNumber=A8EF960514E336444D3CDE37B24B66DC39D43D1B
Certificate serial: 38
Authority key identifier: A8:EF:96:05:14:E3:36:44:4D:3C:DE:37:B2:4B:66:DC:39:D4:3D:1B
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/qO-WBRTjNkRNPN43sktm3DnUPRs.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3668CFE/95EFD74C375711EEBB1432184AD9E6FC/673167545B7E11EE98EEBD784AD9E6FC.roa
Signing time: Mon 25 Sep 2023 08:34:55 +0000
ROA not before: Mon 25 Sep 2023 08:34:52 +0000
ROA not after: Sat 31 Dec 2033 08:34:52 +0000
asID: 61266
IP address blocks: 2c0f:eb00:c00::/40 maxlen: 40
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3668CFE/95EFD74C375711EEBB1432184AD9E6FC/qO-WBRTjNkRNPN43sktm3DnUPRs.crl
rsync://rpki.afrinic.net/repository/member_repository/F3668CFE/95EFD74C375711EEBB1432184AD9E6FC/qO-WBRTjNkRNPN43sktm3DnUPRs.mft
rsync://rpki.afrinic.net/repository/afrinic/qO-WBRTjNkRNPN43sktm3DnUPRs.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 56 (0x38)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3668CFEAF/serialNumber=A8EF960514E336444D3CDE37B24B66DC39D43D1B
Validity
Not Before: Sep 25 08:34:52 2023 GMT
Not After : Dec 31 08:34:52 2033 GMT
Subject: CN=6511462f-59d0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:2c:46:7b:ea:c8:a1:42:27:d8:dd:99:ab:36:
73:a2:cf:0e:e9:a4:4e:88:cb:63:8e:2b:f5:86:76:
83:d6:2f:89:d3:7c:13:3b:69:5a:46:26:41:0e:52:
71:59:c3:03:f5:17:d5:79:3a:3e:65:fe:d0:db:eb:
46:46:dc:3d:55:d1:76:9f:0a:35:38:b3:56:99:3d:
88:f8:05:fd:30:f2:5e:e6:cc:49:65:b5:54:17:59:
78:73:b4:37:b4:d9:a6:e1:bb:8b:b2:04:9d:d0:97:
3d:7e:4e:3e:4d:93:46:0a:e2:2f:f4:5b:5f:46:0a:
c7:82:63:0d:bd:55:45:00:65:bd:05:fd:f1:b5:50:
33:1a:eb:47:9e:16:38:59:7b:30:97:d8:b6:4b:4f:
d9:b6:4a:ca:59:a1:f7:2e:98:a4:f9:ef:82:93:67:
9d:7d:99:3f:fc:e6:1f:d0:ce:c1:b5:a5:42:39:46:
10:67:c3:31:f7:6b:1d:0a:0e:63:32:33:c9:31:fb:
34:81:83:57:be:1f:4c:40:cd:0f:4f:8f:62:47:c0:
46:37:88:23:b2:bb:aa:a7:c1:32:72:2c:23:92:9b:
29:3e:df:08:c3:e4:09:46:11:02:e5:14:54:c9:66:
45:02:73:09:68:6a:77:cb:9d:d4:9a:b7:38:a5:15:
66:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:E2:B2:FF:1A:7D:44:7C:1D:AA:B8:98:C3:E0:96:2E:19:96:0A:D3
X509v3 Authority Key Identifier:
keyid:A8:EF:96:05:14:E3:36:44:4D:3C:DE:37:B2:4B:66:DC:39:D4:3D:1B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3668CFE/95EFD74C375711EEBB1432184AD9E6FC/qO-WBRTjNkRNPN43sktm3DnUPRs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/qO-WBRTjNkRNPN43sktm3DnUPRs.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3668CFE/95EFD74C375711EEBB1432184AD9E6FC/673167545B7E11EE98EEBD784AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2c0f:eb00:c00::/40
Signature Algorithm: sha256WithRSAEncryption
92:24:cf:14:94:3e:11:76:79:88:44:7b:1a:3a:6c:df:63:41:
d6:b5:d2:8b:97:e9:82:55:f4:eb:3a:8f:2d:3b:3d:ab:b3:0a:
6f:0d:54:d6:68:7d:5f:b4:38:35:2e:be:42:d5:15:4e:4b:f5:
d5:7c:27:b2:73:8d:9f:fa:6a:24:95:5c:19:c5:9f:ff:45:23:
1a:b4:68:79:6e:aa:2d:f8:36:37:da:e4:11:9f:c5:20:3d:07:
f7:17:fb:71:40:75:e4:67:26:aa:14:84:bb:22:88:37:5e:e6:
2b:b8:e1:fd:b7:ad:c3:ef:6a:d5:66:e2:7d:f4:de:4b:8d:8d:
fb:13:1c:a3:0b:c0:ac:dc:b3:53:ea:5a:ec:55:88:4f:a9:6e:
fb:12:a8:c7:5b:dc:7c:e8:cf:19:c3:6c:b0:c5:1b:66:1f:30:
54:8d:55:47:5f:b8:0a:ae:bd:b2:2d:53:f8:93:2f:07:81:28:
a2:e6:57:86:e3:24:00:68:c9:64:eb:d6:9b:67:05:b8:b6:cd:
1d:e7:13:67:3e:e4:5e:12:16:7f:8e:c2:6e:2b:2b:df:e3:3a:
e5:0b:87:40:75:62:95:7e:44:c6:fc:b4:3f:ab:25:90:ef:68:
21:0b:9d:88:c8:89:8a:24:45:0f:68:22:55:b5:f5:b8:16:2d:
4d:e6:eb:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:03:41 2024 by rpki-client on console-ams.rpki-client.org