Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3668CFE/95EFD74C375711EEBB1432184AD9E6FC/A97AA9E05B7E11EEAD5E8F794AD9E6FC.roa
File: A97AA9E05B7E11EEAD5E8F794AD9E6FC.roa (raw, json)
Hash identifier: 3NkJ+hNEcmyOZzaQCsy/+Ozh2yGmiiWLNtnnqsmfG2I=
Subject key identifier: C5:BD:BC:2A:BC:F5:E6:67:B3:7C:FB:65:4D:19:53:95:0F:8C:47:8A
Certificate issuer: /CN=F3668CFEAF/serialNumber=A8EF960514E336444D3CDE37B24B66DC39D43D1B
Certificate serial: 3E
Authority key identifier: A8:EF:96:05:14:E3:36:44:4D:3C:DE:37:B2:4B:66:DC:39:D4:3D:1B
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/qO-WBRTjNkRNPN43sktm3DnUPRs.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3668CFE/95EFD74C375711EEBB1432184AD9E6FC/A97AA9E05B7E11EEAD5E8F794AD9E6FC.roa
Signing time: Mon 25 Sep 2023 08:36:46 +0000
ROA not before: Mon 25 Sep 2023 08:36:43 +0000
ROA not after: Sat 31 Dec 2033 08:36:43 +0000
asID: 61266
IP address blocks: 2c0f:eb00:800::/40 maxlen: 40
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3668CFE/95EFD74C375711EEBB1432184AD9E6FC/qO-WBRTjNkRNPN43sktm3DnUPRs.crl
rsync://rpki.afrinic.net/repository/member_repository/F3668CFE/95EFD74C375711EEBB1432184AD9E6FC/qO-WBRTjNkRNPN43sktm3DnUPRs.mft
rsync://rpki.afrinic.net/repository/afrinic/qO-WBRTjNkRNPN43sktm3DnUPRs.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 62 (0x3e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3668CFEAF/serialNumber=A8EF960514E336444D3CDE37B24B66DC39D43D1B
Validity
Not Before: Sep 25 08:36:43 2023 GMT
Not After : Dec 31 08:36:43 2033 GMT
Subject: CN=6511469e-a441
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:d3:0a:f4:01:9f:e9:2a:7b:dc:94:76:81:f4:
b2:5f:22:b4:a8:0c:53:74:f5:ab:bc:38:a2:71:7f:
1f:b8:2f:d9:76:14:f6:d5:3e:85:79:c5:25:7a:b3:
10:f9:28:01:93:d3:69:07:a8:ba:24:83:77:74:89:
10:af:10:68:a3:d0:d9:e7:43:9a:a4:c1:87:9d:2d:
21:4f:a1:06:8e:a1:16:62:43:c0:71:c5:66:2c:16:
ed:21:1c:dd:bb:48:82:e1:42:21:50:81:2c:6a:68:
d9:9b:4e:3a:b8:98:10:dc:45:bd:42:04:cf:90:38:
5a:11:87:de:e0:00:86:eb:18:9b:fb:d0:60:dc:2b:
93:82:02:16:a8:fe:ac:86:e0:2c:1b:69:d9:b3:cf:
6b:ae:e1:31:20:42:b1:fc:de:85:0d:2b:84:a2:07:
f8:4d:ac:74:1b:39:eb:82:a6:31:57:49:38:99:01:
69:ee:25:1f:b2:ef:30:41:77:90:be:44:b2:18:01:
ab:94:08:c4:c9:07:e1:51:5b:8c:2d:a2:f4:05:c0:
3c:47:c7:87:b4:cd:d6:38:8d:e3:e4:37:ab:e4:2b:
dd:7c:18:de:d7:17:3f:1f:ae:5b:a6:2a:a6:ea:b4:
fd:92:d7:34:fc:25:a6:68:78:14:94:03:ef:fa:88:
7b:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:BD:BC:2A:BC:F5:E6:67:B3:7C:FB:65:4D:19:53:95:0F:8C:47:8A
X509v3 Authority Key Identifier:
keyid:A8:EF:96:05:14:E3:36:44:4D:3C:DE:37:B2:4B:66:DC:39:D4:3D:1B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3668CFE/95EFD74C375711EEBB1432184AD9E6FC/qO-WBRTjNkRNPN43sktm3DnUPRs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/qO-WBRTjNkRNPN43sktm3DnUPRs.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3668CFE/95EFD74C375711EEBB1432184AD9E6FC/A97AA9E05B7E11EEAD5E8F794AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2c0f:eb00:800::/40
Signature Algorithm: sha256WithRSAEncryption
28:b5:68:d5:b2:7e:cd:b4:f7:83:0d:5a:ad:24:d3:6c:e4:30:
80:41:3f:98:a4:71:7b:0b:5e:b1:ac:d3:ce:bb:7d:ea:2b:4c:
9a:43:3c:aa:e1:25:63:18:8b:aa:a0:90:5f:6e:df:ea:f9:56:
06:9c:be:e3:d4:a9:a5:7c:4d:8f:bf:1c:d1:27:94:5a:e6:58:
fd:0f:62:81:35:2b:e5:31:d0:64:ed:e0:95:83:44:e9:24:4f:
a9:e9:68:fb:63:93:6a:62:3f:eb:28:8a:9b:11:95:49:3f:03:
50:4f:15:2c:aa:ff:7f:7c:4f:a7:0e:23:95:d1:b7:ed:52:b8:
be:cf:a6:8d:3b:73:ab:6e:f6:50:3d:cd:4e:f0:9d:eb:4b:9f:
43:a5:b7:55:ab:06:57:5c:89:7e:90:73:d0:34:c6:5f:4e:d0:
04:6b:a9:7c:4b:19:a5:9a:d2:5e:32:02:26:82:bb:ae:67:15:
c6:62:89:28:fd:57:1e:41:4e:df:72:01:87:6b:0d:b3:d8:63:
14:10:21:71:0c:c5:80:0b:b7:d6:2d:de:4d:7d:ba:dd:66:df:
e3:90:db:53:21:45:27:1e:67:f9:33:5f:48:ae:ce:23:33:a6:
d2:b9:7d:df:e6:04:ce:5a:96:3a:ee:94:f5:c0:68:04:5a:a2:
5e:11:72:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 03:52:55 2024 by rpki-client on console-fra.rpki-client.org