Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3668CFE/95EFD74C375711EEBB1432184AD9E6FC/BBA7D8A05B8711EEA5880E184AD9E6FC.roa
File: BBA7D8A05B8711EEA5880E184AD9E6FC.roa (raw, json)
Hash identifier: NwbjXk0kj8eY+sbmyk9mA7z7P4Od2Lqrhnl5SE+949A=
Subject key identifier: 1B:3C:BA:1E:78:7B:8C:3C:A1:E4:01:4D:2F:53:EC:8D:A3:03:9F:58
Certificate issuer: /CN=F3668CFEAF/serialNumber=A8EF960514E336444D3CDE37B24B66DC39D43D1B
Certificate serial: 57
Authority key identifier: A8:EF:96:05:14:E3:36:44:4D:3C:DE:37:B2:4B:66:DC:39:D4:3D:1B
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/qO-WBRTjNkRNPN43sktm3DnUPRs.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3668CFE/95EFD74C375711EEBB1432184AD9E6FC/BBA7D8A05B8711EEA5880E184AD9E6FC.roa
Signing time: Mon 25 Sep 2023 09:41:42 +0000
ROA not before: Mon 25 Sep 2023 09:41:39 +0000
ROA not after: Sat 31 Dec 2033 09:41:39 +0000
asID: 61266
IP address blocks: 2c0f:eb00:1600::/40 maxlen: 40
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3668CFE/95EFD74C375711EEBB1432184AD9E6FC/qO-WBRTjNkRNPN43sktm3DnUPRs.crl
rsync://rpki.afrinic.net/repository/member_repository/F3668CFE/95EFD74C375711EEBB1432184AD9E6FC/qO-WBRTjNkRNPN43sktm3DnUPRs.mft
rsync://rpki.afrinic.net/repository/afrinic/qO-WBRTjNkRNPN43sktm3DnUPRs.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 87 (0x57)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3668CFEAF/serialNumber=A8EF960514E336444D3CDE37B24B66DC39D43D1B
Validity
Not Before: Sep 25 09:41:39 2023 GMT
Not After : Dec 31 09:41:39 2033 GMT
Subject: CN=651155d6-3302
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:1a:4d:37:4a:ec:41:a9:57:80:46:db:8b:da:
6d:47:ab:16:05:31:2c:de:01:d5:10:5b:bb:6c:99:
a1:94:c1:a2:8a:7f:eb:a4:eb:5d:da:5a:68:07:9f:
d2:cb:29:25:d5:6c:7d:b0:c8:9b:23:41:b1:af:83:
21:90:9c:aa:ac:d2:e4:d4:12:12:c4:64:0b:66:bf:
d2:cb:3a:18:3d:86:36:c6:e0:db:1d:4f:4a:ee:ab:
17:3d:b8:33:6d:d5:1e:49:2a:9d:29:7d:40:05:e8:
80:94:00:63:b3:5e:6a:39:e4:cc:8d:24:0e:19:9d:
d2:cb:99:19:b7:40:3a:30:b4:7c:40:69:17:09:6b:
81:79:bf:9c:70:70:02:f1:da:60:ae:92:b1:95:c8:
55:54:ab:95:ac:36:ce:ee:a3:22:e2:9b:d4:a3:fb:
fa:d9:c3:a4:b3:85:b9:01:0c:31:9e:e8:3f:26:d9:
69:1b:01:20:22:f7:9d:43:e5:85:55:4d:8d:b8:75:
85:ea:5e:7b:1d:66:a8:c5:0f:c5:80:3b:2a:10:b8:
a3:8f:69:d5:64:a7:01:7c:b2:78:4e:d1:b6:c2:ed:
30:af:13:60:31:ee:69:f2:e7:4a:80:17:59:1d:38:
86:5c:d6:d3:db:d0:92:e2:54:07:9c:05:74:23:de:
7b:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:3C:BA:1E:78:7B:8C:3C:A1:E4:01:4D:2F:53:EC:8D:A3:03:9F:58
X509v3 Authority Key Identifier:
keyid:A8:EF:96:05:14:E3:36:44:4D:3C:DE:37:B2:4B:66:DC:39:D4:3D:1B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3668CFE/95EFD74C375711EEBB1432184AD9E6FC/qO-WBRTjNkRNPN43sktm3DnUPRs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/qO-WBRTjNkRNPN43sktm3DnUPRs.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3668CFE/95EFD74C375711EEBB1432184AD9E6FC/BBA7D8A05B8711EEA5880E184AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2c0f:eb00:1600::/40
Signature Algorithm: sha256WithRSAEncryption
2e:e0:3c:15:7f:50:b3:f0:5c:db:1b:de:44:38:79:e0:e6:32:
1e:39:6e:d6:2d:e5:5a:d4:6a:c9:28:82:07:19:17:94:9f:fd:
ac:e0:09:8e:ee:6e:ea:a9:3c:92:27:ce:75:5e:4c:15:bb:f8:
34:be:d6:00:70:a0:09:5a:b4:bb:6c:ed:c4:77:fd:df:1d:94:
bf:9d:8b:a6:45:be:97:2f:ea:08:b0:04:07:e9:8b:37:b0:35:
f3:9f:a7:2d:ef:2f:6b:20:52:2a:25:f7:e6:95:b8:8a:53:10:
6b:e6:73:df:95:bf:f1:d1:37:a4:61:f1:09:03:f1:d6:0d:fa:
c6:8d:9c:5b:94:66:9e:10:f6:cb:fc:26:02:cf:32:01:2c:22:
fe:65:7b:f1:11:af:27:2d:65:b5:a0:0e:a8:3a:73:25:37:31:
c3:2d:45:fc:fb:34:14:8c:f5:5d:52:05:33:9f:21:13:59:48:
9f:95:32:67:4a:09:23:2a:be:c3:be:52:25:55:98:d2:83:9f:
54:62:60:9b:3e:56:4a:27:71:92:46:8a:c2:fb:e5:b2:af:78:
75:2d:03:b1:bd:d5:5c:7f:03:8f:7c:a1:3c:c7:73:0e:60:18:
d9:4b:02:29:83:7e:8f:d8:73:4f:ee:47:ee:d8:e9:59:c2:c6:
ec:f8:f4:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 03:52:55 2024 by rpki-client on console-fra.rpki-client.org