Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3668CFE/95EFD74C375711EEBB1432184AD9E6FC/9FF8CF2E5B8711EE9F40A5174AD9E6FC.roa
File: 9FF8CF2E5B8711EE9F40A5174AD9E6FC.roa (raw, json)
Hash identifier: lG9MW9PGMEKdmiEYPlQxLtvMK2I/+bgWEhfhck5fvqA=
Subject key identifier: 5F:72:59:25:AB:14:B6:6D:C5:AC:B8:66:30:F9:5E:F7:38:C5:2E:0E
Certificate issuer: /CN=F3668CFEAF/serialNumber=A8EF960514E336444D3CDE37B24B66DC39D43D1B
Certificate serial: 55
Authority key identifier: A8:EF:96:05:14:E3:36:44:4D:3C:DE:37:B2:4B:66:DC:39:D4:3D:1B
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/qO-WBRTjNkRNPN43sktm3DnUPRs.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3668CFE/95EFD74C375711EEBB1432184AD9E6FC/9FF8CF2E5B8711EE9F40A5174AD9E6FC.roa
Signing time: Mon 25 Sep 2023 09:40:56 +0000
ROA not before: Mon 25 Sep 2023 09:40:53 +0000
ROA not after: Sat 31 Dec 2033 09:40:53 +0000
asID: 328962
IP address blocks: 2c0f:eb00:1300::/40 maxlen: 40
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3668CFE/95EFD74C375711EEBB1432184AD9E6FC/qO-WBRTjNkRNPN43sktm3DnUPRs.crl
rsync://rpki.afrinic.net/repository/member_repository/F3668CFE/95EFD74C375711EEBB1432184AD9E6FC/qO-WBRTjNkRNPN43sktm3DnUPRs.mft
rsync://rpki.afrinic.net/repository/afrinic/qO-WBRTjNkRNPN43sktm3DnUPRs.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 85 (0x55)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3668CFEAF/serialNumber=A8EF960514E336444D3CDE37B24B66DC39D43D1B
Validity
Not Before: Sep 25 09:40:53 2023 GMT
Not After : Dec 31 09:40:53 2033 GMT
Subject: CN=651155a8-889a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:74:fd:cc:31:40:fa:ed:10:6d:e6:a0:a1:f4:
e3:32:20:04:2c:8a:a4:38:0d:9d:61:fe:5d:b4:13:
12:ad:3b:4d:94:db:90:ac:1b:af:36:b0:93:64:8e:
12:47:a6:29:e7:bf:17:2d:79:f7:9f:41:91:07:aa:
dc:7d:7f:a0:22:33:51:0c:7c:89:6f:e3:8e:71:ac:
e2:30:62:c3:35:27:c9:7b:06:88:20:f5:80:45:df:
1b:fe:95:e4:98:b4:41:ff:5c:ec:30:d2:5a:1e:50:
d2:72:93:33:e3:d0:93:dc:b4:f6:c8:9c:a4:14:e7:
b9:89:bc:f5:18:14:5b:1c:c8:e7:10:18:d7:70:17:
ab:b5:a0:53:fe:01:40:aa:3a:8b:1b:d3:77:21:2f:
92:97:cf:00:2a:31:17:2c:fc:88:ce:59:ad:d7:4f:
34:82:6a:93:ca:6b:7e:a8:6d:83:5c:7d:fa:0f:d8:
c7:48:88:4c:29:9c:36:bd:af:18:f2:47:61:4d:2b:
cc:ae:6b:db:3b:9c:1a:21:b7:ab:38:51:ed:f2:d1:
0b:a8:da:35:4b:e4:78:9e:14:e6:c8:6c:03:e2:f4:
a5:1b:4f:65:79:06:c9:33:13:cb:4d:be:31:a7:cb:
3d:90:86:d7:77:42:55:0d:23:5f:01:6e:e6:17:66:
f8:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:72:59:25:AB:14:B6:6D:C5:AC:B8:66:30:F9:5E:F7:38:C5:2E:0E
X509v3 Authority Key Identifier:
keyid:A8:EF:96:05:14:E3:36:44:4D:3C:DE:37:B2:4B:66:DC:39:D4:3D:1B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3668CFE/95EFD74C375711EEBB1432184AD9E6FC/qO-WBRTjNkRNPN43sktm3DnUPRs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/qO-WBRTjNkRNPN43sktm3DnUPRs.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3668CFE/95EFD74C375711EEBB1432184AD9E6FC/9FF8CF2E5B8711EE9F40A5174AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2c0f:eb00:1300::/40
Signature Algorithm: sha256WithRSAEncryption
7f:bd:11:ff:09:17:77:96:43:aa:ed:50:53:71:cc:53:0e:0b:
f3:14:71:9e:18:50:83:46:98:4b:12:ee:16:fa:be:60:fd:ce:
66:1a:32:46:54:45:97:0c:b6:18:99:c4:e3:37:14:66:0d:99:
cc:6e:dc:a8:cb:69:cb:93:e0:ac:54:7f:6d:55:23:f4:d9:9e:
e0:57:97:34:17:3b:3c:39:38:70:7c:74:70:4d:50:c4:97:4c:
22:44:94:c0:1e:35:01:83:d0:9c:2d:c8:9f:88:75:d0:a1:79:
3b:97:54:8b:2e:ca:06:cb:f1:05:ee:18:b9:f5:11:6a:4c:2e:
7e:11:4a:f3:80:ed:db:b1:17:69:c4:9c:8a:7d:2c:c8:f2:af:
7b:03:81:0f:a3:dd:0d:45:cc:e5:2e:54:b9:98:ae:cc:d7:1c:
a9:f9:38:3f:ea:56:62:87:ea:01:1b:38:d1:98:02:47:70:31:
46:ac:65:62:89:46:c0:3d:a9:34:6d:71:b2:2d:28:9d:32:47:
2c:b3:bb:14:6a:67:ef:6f:4c:72:97:96:33:84:41:3a:2d:5b:
26:87:ec:ef:a0:d6:cf:57:48:10:d1:5d:d8:3c:6b:9e:85:95:
a2:f5:fd:9b:36:f4:f5:ea:1f:fc:76:57:1b:23:15:d9:8d:32:
f0:54:37:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:03:41 2024 by rpki-client on console-ams.rpki-client.org