Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3668CFE/95EFD74C375711EEBB1432184AD9E6FC/7D84FCC85B7E11EE930F05794AD9E6FC.roa
File: 7D84FCC85B7E11EE930F05794AD9E6FC.roa (raw, json)
Hash identifier: LbVSQZqmCHBXF80jfRgZ632p1CiqtMRJRyKOIJ1fwIY=
Subject key identifier: F2:15:EB:29:D9:D2:88:1F:3F:77:D2:21:FB:74:3F:57:40:9C:D3:83
Certificate issuer: /CN=F3668CFEAF/serialNumber=A8EF960514E336444D3CDE37B24B66DC39D43D1B
Certificate serial: 3A
Authority key identifier: A8:EF:96:05:14:E3:36:44:4D:3C:DE:37:B2:4B:66:DC:39:D4:3D:1B
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/qO-WBRTjNkRNPN43sktm3DnUPRs.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3668CFE/95EFD74C375711EEBB1432184AD9E6FC/7D84FCC85B7E11EE930F05794AD9E6FC.roa
Signing time: Mon 25 Sep 2023 08:35:33 +0000
ROA not before: Mon 25 Sep 2023 08:35:29 +0000
ROA not after: Sat 31 Dec 2033 08:35:29 +0000
asID: 61266
IP address blocks: 2c0f:eb00:b00::/40 maxlen: 40
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3668CFE/95EFD74C375711EEBB1432184AD9E6FC/qO-WBRTjNkRNPN43sktm3DnUPRs.crl
rsync://rpki.afrinic.net/repository/member_repository/F3668CFE/95EFD74C375711EEBB1432184AD9E6FC/qO-WBRTjNkRNPN43sktm3DnUPRs.mft
rsync://rpki.afrinic.net/repository/afrinic/qO-WBRTjNkRNPN43sktm3DnUPRs.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 58 (0x3a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3668CFEAF/serialNumber=A8EF960514E336444D3CDE37B24B66DC39D43D1B
Validity
Not Before: Sep 25 08:35:29 2023 GMT
Not After : Dec 31 08:35:29 2033 GMT
Subject: CN=65114654-3181
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:6c:95:e5:de:4d:e7:59:de:1a:28:7e:11:a1:
3f:33:83:f9:18:14:41:25:4c:f4:f9:da:6a:be:82:
22:54:66:9a:b6:04:92:14:d7:64:0a:43:f0:64:48:
44:53:8c:a5:57:ab:cc:a2:6d:0b:c6:3a:11:2f:65:
82:84:93:39:2d:4b:56:04:5b:83:56:8e:14:3a:b4:
32:c1:f7:aa:fc:02:57:f0:a9:fd:e3:6f:7a:10:6c:
14:0e:e9:ed:9f:49:7c:28:37:d1:12:0e:48:94:f8:
bd:4d:b3:d7:db:92:31:52:f6:cd:7c:61:00:ec:42:
33:24:52:dc:c7:b7:db:1c:86:e7:be:21:23:ee:1b:
98:1b:63:b7:5d:11:36:73:88:9d:90:f2:38:2e:5f:
16:4f:b3:c7:01:b4:ac:07:ac:2a:b4:be:89:69:36:
2d:c1:b9:6a:3b:26:7c:fe:5f:ac:54:6c:30:d3:f3:
51:62:8e:24:1d:b5:b0:2a:7f:65:4e:c0:52:71:1d:
07:54:e7:80:f2:33:49:62:81:8d:73:3b:5e:e3:41:
a7:f5:fb:c2:41:7d:96:53:cc:1b:15:f1:af:a4:70:
c8:91:84:f9:01:f2:73:0e:cb:c6:87:2a:91:10:fd:
26:fd:df:ac:d1:f8:b0:05:e0:55:9d:7b:21:79:10:
7e:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:15:EB:29:D9:D2:88:1F:3F:77:D2:21:FB:74:3F:57:40:9C:D3:83
X509v3 Authority Key Identifier:
keyid:A8:EF:96:05:14:E3:36:44:4D:3C:DE:37:B2:4B:66:DC:39:D4:3D:1B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3668CFE/95EFD74C375711EEBB1432184AD9E6FC/qO-WBRTjNkRNPN43sktm3DnUPRs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/qO-WBRTjNkRNPN43sktm3DnUPRs.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3668CFE/95EFD74C375711EEBB1432184AD9E6FC/7D84FCC85B7E11EE930F05794AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2c0f:eb00:b00::/40
Signature Algorithm: sha256WithRSAEncryption
46:bc:5b:40:a3:46:4e:ce:b3:81:16:18:4a:7b:05:72:3e:86:
8a:c6:b0:ee:1d:36:4e:ae:95:f6:f2:34:c2:e2:10:a8:5c:4f:
1b:c0:87:41:39:8e:65:ad:0e:f1:3f:27:67:92:75:53:5e:88:
88:af:93:16:1d:ea:4d:95:10:6b:b3:ae:a0:e6:c2:27:36:2a:
21:ed:0b:a7:eb:26:55:e7:be:af:d3:9f:07:85:18:e9:31:73:
bf:a9:2c:01:0f:cf:48:62:aa:14:82:cf:0a:03:fd:17:46:df:
ae:71:ef:e8:ac:49:7f:67:c8:cd:22:4e:95:10:51:a4:00:4f:
de:ed:82:2c:53:26:44:0a:bb:6e:52:2a:ad:a2:18:48:7d:2e:
7e:c2:f5:1b:27:40:7c:3c:b0:40:c0:ac:7f:c4:7c:2e:2c:36:
64:54:78:26:bb:bc:a0:b5:d2:99:0f:64:ed:3d:3d:77:7f:31:
af:26:15:04:cc:55:e9:8b:d9:46:5a:36:cf:93:df:72:f6:07:
07:a9:46:1c:0c:b0:0f:f9:d9:3f:f4:ea:c6:63:21:48:88:69:
b9:1b:a8:78:18:20:8c:3e:ea:d7:16:91:40:e0:0e:85:d7:19:
7c:30:e3:11:48:48:d9:ea:ba:82:51:0a:5e:04:8a:03:8d:43:
f1:34:ab:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 03:52:55 2024 by rpki-client on console-fra.rpki-client.org