Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3668CFE/95EFD74C375711EEBB1432184AD9E6FC/E29E1C625B7D11EEAFF513774AD9E6FC.roa
File: E29E1C625B7D11EEAFF513774AD9E6FC.roa (raw, json)
Hash identifier: cL6yXVTdN5LFRK/8lI56JvUwQ8huIMxP3ArtUJsfAsg=
Subject key identifier: 7C:FD:62:FB:98:F0:47:72:E4:C1:CA:59:EE:F8:D3:28:00:75:3D:42
Certificate issuer: /CN=F3668CFEAF/serialNumber=A8EF960514E336444D3CDE37B24B66DC39D43D1B
Certificate serial: 32
Authority key identifier: A8:EF:96:05:14:E3:36:44:4D:3C:DE:37:B2:4B:66:DC:39:D4:3D:1B
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/qO-WBRTjNkRNPN43sktm3DnUPRs.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3668CFE/95EFD74C375711EEBB1432184AD9E6FC/E29E1C625B7D11EEAFF513774AD9E6FC.roa
Signing time: Mon 25 Sep 2023 08:31:13 +0000
ROA not before: Mon 25 Sep 2023 08:31:09 +0000
ROA not after: Sat 31 Dec 2033 08:31:09 +0000
asID: 61266
IP address blocks: 2c0f:eb00:1500::/40 maxlen: 40
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3668CFE/95EFD74C375711EEBB1432184AD9E6FC/qO-WBRTjNkRNPN43sktm3DnUPRs.crl
rsync://rpki.afrinic.net/repository/member_repository/F3668CFE/95EFD74C375711EEBB1432184AD9E6FC/qO-WBRTjNkRNPN43sktm3DnUPRs.mft
rsync://rpki.afrinic.net/repository/afrinic/qO-WBRTjNkRNPN43sktm3DnUPRs.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 04 Jun 2024 00:04:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 50 (0x32)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3668CFEAF/serialNumber=A8EF960514E336444D3CDE37B24B66DC39D43D1B
Validity
Not Before: Sep 25 08:31:09 2023 GMT
Not After : Dec 31 08:31:09 2033 GMT
Subject: CN=65114551-0768
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:ec:fc:3b:7d:7a:88:91:62:15:d1:39:42:da:
ec:71:7a:ac:47:39:03:0d:d3:7a:d0:4e:68:2a:42:
f3:97:d8:5d:2b:09:fe:ac:ed:19:00:51:fa:7c:e7:
d4:fa:1a:3f:28:a7:74:ea:71:f2:ca:39:bb:64:61:
e8:05:f1:c4:1c:9a:6e:8d:e3:45:c8:90:f5:73:a1:
30:ec:7f:ca:ae:9d:45:96:f9:20:ef:36:13:07:4f:
25:2b:30:c3:8a:88:21:e4:e8:5b:0d:4a:48:a2:9e:
2c:2a:5b:b1:9f:f4:77:34:64:af:e6:d1:bb:b7:d3:
69:e6:16:0d:37:f5:59:ca:f4:ae:b9:1a:2c:5d:af:
a4:93:c9:dc:8e:67:70:67:36:de:18:8c:1e:41:b3:
d9:c9:43:4f:84:f0:c8:59:7c:15:77:8d:04:c5:a3:
99:b8:43:94:7b:3f:69:b6:17:fd:c9:55:02:ac:ab:
43:c6:a8:6d:98:06:95:07:56:f5:03:71:d8:83:a5:
4d:a9:ba:ad:d1:f7:7c:9b:5c:49:92:44:05:eb:d2:
79:75:e6:50:f5:dd:4c:3a:8d:8d:46:33:8d:95:fc:
02:79:a8:e8:9e:aa:89:e8:d3:a7:30:8a:2d:c3:59:
c6:9c:5e:d2:ee:38:f7:88:ad:c4:16:e0:2e:b3:6f:
da:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:FD:62:FB:98:F0:47:72:E4:C1:CA:59:EE:F8:D3:28:00:75:3D:42
X509v3 Authority Key Identifier:
keyid:A8:EF:96:05:14:E3:36:44:4D:3C:DE:37:B2:4B:66:DC:39:D4:3D:1B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3668CFE/95EFD74C375711EEBB1432184AD9E6FC/qO-WBRTjNkRNPN43sktm3DnUPRs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/qO-WBRTjNkRNPN43sktm3DnUPRs.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3668CFE/95EFD74C375711EEBB1432184AD9E6FC/E29E1C625B7D11EEAFF513774AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2c0f:eb00:1500::/40
Signature Algorithm: sha256WithRSAEncryption
92:09:9b:93:9f:bb:0e:ef:d0:b0:34:18:22:e8:2c:01:85:03:
7e:34:9e:67:ba:fc:0d:a0:cf:0c:af:86:2c:a4:6f:ef:21:53:
03:d6:51:36:65:7e:9c:af:1a:b2:d9:29:b0:28:cd:a7:a7:49:
f0:7d:70:66:d6:00:74:30:af:af:ea:9d:cb:db:36:2d:37:e6:
cf:4f:5d:14:94:89:27:b1:50:94:dd:6d:86:2b:1d:6e:5a:ae:
4f:7a:97:d8:0c:9a:dc:27:60:5a:bc:bd:56:15:f3:52:f4:87:
91:bc:4d:2f:b6:42:25:8b:86:8c:83:d6:e5:4d:56:d2:68:f6:
eb:99:f8:63:c1:ca:d8:1f:25:65:09:7a:de:9d:93:25:5f:5a:
64:11:0b:3f:3c:52:ed:d2:65:48:a1:0e:e2:93:34:5f:bc:af:
6e:3e:c3:a3:da:2c:5c:fa:f6:41:50:f6:2b:e1:56:58:ae:60:
99:d8:b8:5e:a9:be:e2:ad:15:9b:63:7f:4f:1c:83:d2:ac:23:
e9:55:92:c5:91:c1:64:5f:60:ec:78:a1:92:57:96:5c:ec:80:
b4:ce:44:c9:07:ae:72:f2:64:9a:58:f3:46:38:f2:db:19:51:
3b:0c:a4:de:e3:4a:8b:c5:aa:fb:4e:65:fc:6f:ca:43:8a:70:
0a:aa:31:d2
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIBMjANBgkqhkiG9w0BAQsFADBIMRMwEQYDVQQDEwpGMzY2
OENGRUFGMTEwLwYDVQQFEyhBOEVGOTYwNTE0RTMzNjQ0NEQzQ0RFMzdCMjRCNjZE
QzM5RDQzRDFCMB4XDTIzMDkyNTA4MzEwOVoXDTMzMTIzMTA4MzEwOVowGDEWMBQG
A1UEAxMNNjUxMTQ1NTEtMDc2ODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBANDs/Dt9eoiRYhXROULa7HF6rEc5Aw3TetBOaCpC85fYXSsJ/qztGQBR+nzn
1PoaPyindOpx8so5u2Rh6AXxxByabo3jRciQ9XOhMOx/yq6dRZb5IO82EwdPJSsw
w4qIIeToWw1KSKKeLCpbsZ/0dzRkr+bRu7fTaeYWDTf1Wcr0rrkaLF2vpJPJ3I5n
cGc23hiMHkGz2clDT4TwyFl8FXeNBMWjmbhDlHs/abYX/clVAqyrQ8aobZgGlQdW
9QNx2IOlTam6rdH3fJtcSZJEBevSeXXmUPXdTDqNjUYzjZX8Anmo6J6qiejTpzCK
LcNZxpxe0u4494itxBbgLrNv2psCAwEAAaOCAqcwggKjMB0GA1UdDgQWBBR8/WL7
mPBHcuTBylnu+NMoAHU9QjAfBgNVHSMEGDAWgBSo75YFFOM2RE083jeyS2bcOdQ9
GzAOBgNVHQ8BAf8EBAMCB4AwgZUGA1UdHwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6
Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVyX3JlcG9zaXRvcnkv
RjM2NjhDRkUvOTVFRkQ3NEMzNzU3MTFFRUJCMTQzMjE4NEFEOUU2RkMvcU8tV0JS
VGpOa1JOUE40M3NrdG0zRG5VUFJzLmNybDBnBggrBgEFBQcBAQRbMFkwVwYIKwYB
BQUHMAKGS3JzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L2Fmcmlu
aWMvcU8tV0JSVGpOa1JOUE40M3NrdG0zRG5VUFJzLmNlcjBPBgNVHSABAf8ERTBD
MEEGCCsGAQUFBw4CMDUwMwYIKwYBBQUHAgEWJ2h0dHBzOi8vcnBraS5hZnJpbmlj
Lm5ldC9wb2xpY3kvQ1BTLnBkZjCB2wYIKwYBBQUHAQsEgc4wgcswgZEGCCsGAQUF
BzALhoGEcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVy
X3JlcG9zaXRvcnkvRjM2NjhDRkUvOTVFRkQ3NEMzNzU3MTFFRUJCMTQzMjE4NEFE
OUU2RkMvRTI5RTFDNjI1QjdEMTFFRUFGRjUxMzc3NEFEOUU2RkMucm9hMDUGCCsG
AQUFBzANhilodHRwczovL3JyZHAuYWZyaW5pYy5uZXQvbm90aWZpY2F0aW9uLnht
bDAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGACwP6wAVMA0GCSqGSIb3DQEB
CwUAA4IBAQCSCZuTn7sO79CwNBgi6CwBhQN+NJ5nuvwNoM8Mr4YspG/vIVMD1lE2
ZX6crxqy2SmwKM2np0nwfXBm1gB0MK+v6p3L2zYtN+bPT10UlIknsVCU3W2GKx1u
Wq5PepfYDJrcJ2BavL1WFfNS9IeRvE0vtkIli4aMg9blTVbSaPbrmfhjwcrYHyVl
CXrenZMlX1pkEQs/PFLt0mVIoQ7ikzRfvK9uPsOj2ixc+vZBUPYr4VZYrmCZ2Lhe
qb7irRWbY39PHIPSrCPpVZLFkcFkX2DseKGSV5Zc7IC0zkTJB65y8mSaWPNGOPLb
GVE7DKTe40qLxar7TmX8b8pDinAKqjHS
-----END CERTIFICATE-----
Generated at Sun Jun 2 03:35:34 2024 by rpki-client on console-fra.rpki-client.org