Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3668CFE/95EFD74C375711EEBB1432184AD9E6FC/82BE0D345B8711EE8AF170174AD9E6FC.roa
File: 82BE0D345B8711EE8AF170174AD9E6FC.roa (raw, json)
Hash identifier: du0kSdCk2tSzKNVUZIxuV5z/5Bcr0/T6HJ/NasAIv4s=
Subject key identifier: 7B:99:3C:27:77:8A:4F:F1:87:06:66:09:C2:03:E9:B8:18:A7:47:2D
Certificate issuer: /CN=F3668CFEAF/serialNumber=A8EF960514E336444D3CDE37B24B66DC39D43D1B
Certificate serial: 53
Authority key identifier: A8:EF:96:05:14:E3:36:44:4D:3C:DE:37:B2:4B:66:DC:39:D4:3D:1B
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/qO-WBRTjNkRNPN43sktm3DnUPRs.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3668CFE/95EFD74C375711EEBB1432184AD9E6FC/82BE0D345B8711EE8AF170174AD9E6FC.roa
Signing time: Mon 25 Sep 2023 09:40:07 +0000
ROA not before: Mon 25 Sep 2023 09:40:03 +0000
ROA not after: Sat 31 Dec 2033 09:40:03 +0000
asID: 328962
IP address blocks: 2c0f:eb00:1200::/40 maxlen: 40
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3668CFE/95EFD74C375711EEBB1432184AD9E6FC/qO-WBRTjNkRNPN43sktm3DnUPRs.crl
rsync://rpki.afrinic.net/repository/member_repository/F3668CFE/95EFD74C375711EEBB1432184AD9E6FC/qO-WBRTjNkRNPN43sktm3DnUPRs.mft
rsync://rpki.afrinic.net/repository/afrinic/qO-WBRTjNkRNPN43sktm3DnUPRs.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 83 (0x53)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3668CFEAF/serialNumber=A8EF960514E336444D3CDE37B24B66DC39D43D1B
Validity
Not Before: Sep 25 09:40:03 2023 GMT
Not After : Dec 31 09:40:03 2033 GMT
Subject: CN=65115577-7291
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:cf:cb:4b:5c:a8:23:a3:58:63:5e:64:57:89:
31:13:c5:da:d8:0b:14:dd:37:8d:dd:d8:54:3c:9b:
81:cc:de:a5:68:b9:a5:f2:6b:dc:09:98:65:7d:b4:
07:11:df:d3:e3:34:6f:3a:eb:91:fc:48:1a:04:28:
3b:28:5b:07:0f:3c:c9:99:14:cc:cd:33:1a:37:1e:
cc:69:23:71:6a:79:04:b1:25:d7:df:13:46:fe:49:
7a:59:68:d6:6d:69:40:a8:8c:0b:c3:a4:2c:1b:45:
16:67:26:28:2b:02:0e:88:09:f2:07:49:63:07:d2:
13:cb:fa:7e:40:f9:65:11:dc:27:19:dc:a6:17:3e:
49:50:20:9e:47:11:4d:59:d1:97:c3:ef:e9:f9:e3:
ea:35:5a:80:fc:0a:07:64:60:fe:20:b3:1a:9e:cc:
5c:b9:72:35:f1:48:4c:73:58:2a:50:69:f7:cc:ca:
7c:dc:10:82:4c:6c:23:93:06:3d:58:a4:b7:00:02:
da:f1:92:23:56:00:77:3c:25:5c:18:17:3a:e2:01:
64:a9:31:c4:20:25:4e:9b:89:0c:f5:6f:ff:ea:49:
3a:f3:a4:ab:d4:1d:19:eb:bf:80:fd:10:da:94:44:
a2:ff:3a:bd:c1:47:ed:b9:38:95:90:ce:0f:39:34:
89:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:99:3C:27:77:8A:4F:F1:87:06:66:09:C2:03:E9:B8:18:A7:47:2D
X509v3 Authority Key Identifier:
keyid:A8:EF:96:05:14:E3:36:44:4D:3C:DE:37:B2:4B:66:DC:39:D4:3D:1B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3668CFE/95EFD74C375711EEBB1432184AD9E6FC/qO-WBRTjNkRNPN43sktm3DnUPRs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/qO-WBRTjNkRNPN43sktm3DnUPRs.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3668CFE/95EFD74C375711EEBB1432184AD9E6FC/82BE0D345B8711EE8AF170174AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2c0f:eb00:1200::/40
Signature Algorithm: sha256WithRSAEncryption
10:aa:ee:51:37:91:c7:ef:73:84:a7:37:19:97:63:72:1a:06:
e9:ff:81:2f:24:24:e9:e4:0d:e3:c2:94:bb:d4:44:a2:34:1c:
bc:b7:96:05:30:90:f7:8a:66:42:49:78:8e:5f:1b:0e:29:4e:
70:5b:97:3d:57:3b:cc:47:3b:99:69:71:1f:46:41:d2:cd:e8:
c6:2b:f5:21:9a:e1:34:06:23:5e:97:8e:9c:89:e4:51:3b:1b:
95:36:6c:2b:12:14:fb:56:a3:9a:cf:24:00:26:82:f0:30:14:
82:41:de:59:d9:bd:7b:ca:b9:a5:68:1d:72:c3:d5:a4:30:c3:
ff:45:73:89:15:ba:3d:62:4d:0a:44:a0:dd:20:60:32:43:01:
53:0c:e0:8d:70:80:60:08:10:c6:1e:71:ba:77:32:c0:3d:50:
fb:7c:dc:d5:d2:89:75:10:8f:f4:54:b7:bf:df:5b:2e:9b:9d:
0a:e9:3b:de:0e:35:16:07:17:a6:4b:f1:30:89:a2:44:35:34:
c3:0c:6a:1c:05:0a:2a:a0:5b:8e:75:f9:ff:fe:a2:69:84:06:
ce:4b:29:ff:b8:87:04:4b:9f:81:ef:6b:0b:73:b8:9a:16:71:
b7:12:94:e1:ad:94:65:f4:44:9f:1e:45:e3:37:22:29:f5:7d:
aa:25:3d:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:03:41 2024 by rpki-client on console-ams.rpki-client.org