Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3669D6B/BEFB44EE879A11E99F393351F8AEA228/5D507AB805E811EE9065930E4AD9E6FC.roa
File: 5D507AB805E811EE9065930E4AD9E6FC.roa (raw, json)
Hash identifier: Jpn5dWnFu41nLNxxVgc3tjt0wFBA7qafNjZ3lBfBM00=
Subject key identifier: FB:EB:85:07:DA:FA:E0:68:BC:30:8A:B5:00:3E:08:40:07:3E:DE:28
Certificate issuer: /CN=F3669D6BAF/serialNumber=959733DF59E86EA7C23B2FB37A6E846DBB18827B
Certificate serial: 0706
Authority key identifier: 95:97:33:DF:59:E8:6E:A7:C2:3B:2F:B3:7A:6E:84:6D:BB:18:82:7B
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/lZcz31nobqfCOy-zem6EbbsYgns.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/BEFB44EE879A11E99F393351F8AEA228/5D507AB805E811EE9065930E4AD9E6FC.roa
Signing time: Thu 08 Jun 2023 10:36:45 +0000
ROA not before: Thu 08 Jun 2023 10:36:42 +0000
ROA not after: Wed 08 Jun 2033 10:36:42 +0000
asID: 36916
IP address blocks: 2c0f:fcb0:c000::/36 maxlen: 36
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/BEFB44EE879A11E99F393351F8AEA228/lZcz31nobqfCOy-zem6EbbsYgns.crl
rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/BEFB44EE879A11E99F393351F8AEA228/lZcz31nobqfCOy-zem6EbbsYgns.mft
rsync://rpki.afrinic.net/repository/afrinic/lZcz31nobqfCOy-zem6EbbsYgns.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1798 (0x706)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3669D6BAF/serialNumber=959733DF59E86EA7C23B2FB37A6E846DBB18827B
Validity
Not Before: Jun 8 10:36:42 2023 GMT
Not After : Jun 8 10:36:42 2033 GMT
Subject: CN=6481af3d-d62d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:7d:c2:69:5f:79:1a:94:54:be:c3:af:5a:cf:
ae:27:1b:75:c6:c3:8d:8c:6b:fd:81:6b:6c:f4:ba:
61:ef:f0:d3:d3:45:fe:05:09:55:28:9b:81:da:5b:
0f:2f:52:7c:8d:0f:ea:df:2f:35:cd:b2:85:53:96:
fc:50:e5:e1:34:1a:ab:ed:a4:7c:ef:b4:06:c2:8b:
c6:0e:c1:aa:0e:e1:61:ee:ae:64:77:a6:de:83:c0:
81:47:aa:bc:78:90:a9:94:28:fb:f2:7a:3f:07:cf:
e0:e8:1e:32:13:e9:d6:10:1f:96:30:93:6b:5f:53:
4f:97:e9:02:72:c8:5b:59:06:66:6c:a8:2f:84:07:
ec:e9:8d:a7:60:78:3e:8c:78:f5:bd:db:ce:12:f4:
be:10:cc:1e:6f:ac:ce:cc:c2:ca:0d:a1:59:0c:19:
3a:af:4d:df:be:32:0d:d8:63:52:76:41:51:02:1f:
6b:17:94:c0:36:c2:d9:ed:5e:6e:02:f1:14:e2:0a:
9b:c6:f5:78:23:4d:2d:9f:7d:85:e1:fe:80:ec:98:
d5:64:3a:c8:8b:39:83:08:a3:f5:43:0e:fa:10:a1:
43:26:0d:bb:0a:14:52:99:d4:a3:f3:75:f9:7c:59:
69:51:e8:3d:16:01:4a:6b:f0:16:e0:9f:dc:1c:e8:
82:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:EB:85:07:DA:FA:E0:68:BC:30:8A:B5:00:3E:08:40:07:3E:DE:28
X509v3 Authority Key Identifier:
keyid:95:97:33:DF:59:E8:6E:A7:C2:3B:2F:B3:7A:6E:84:6D:BB:18:82:7B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/BEFB44EE879A11E99F393351F8AEA228/lZcz31nobqfCOy-zem6EbbsYgns.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/lZcz31nobqfCOy-zem6EbbsYgns.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/BEFB44EE879A11E99F393351F8AEA228/5D507AB805E811EE9065930E4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2c0f:fcb0:c000::/36
Signature Algorithm: sha256WithRSAEncryption
51:64:fb:e6:61:78:3d:93:1c:69:07:94:28:bc:e4:7d:c9:54:
0a:6c:36:19:b2:46:b2:66:5c:b2:ee:45:2a:63:33:32:06:de:
29:fd:2a:3a:5f:e8:cf:91:6b:10:15:65:16:9d:92:87:f9:73:
7d:e6:a1:83:ed:7f:21:d1:ad:8c:b8:af:d4:b5:13:f7:58:66:
20:69:1b:bb:e1:0b:65:d2:fa:98:31:b4:b6:5f:48:d1:06:8a:
55:fe:c0:f4:0b:fa:6c:ab:5c:22:ee:32:9d:2e:bb:e8:6d:43:
0c:65:b3:38:24:3a:48:c8:d7:41:fc:f4:df:65:e5:e5:07:49:
02:b0:ed:57:2d:ca:fc:25:6c:6b:b9:95:16:07:8b:ec:3b:d3:
15:a8:9b:ba:1b:97:a3:6a:fa:09:56:87:52:91:8f:53:8b:3b:
d8:09:a9:dd:ea:e7:f8:d3:31:e0:04:b9:0b:07:8d:ee:69:48:
54:ee:67:30:8a:fc:b5:6f:5f:7a:18:d6:56:e3:6a:8f:03:65:
66:ae:d6:56:4c:4f:5b:79:e0:a0:45:46:48:19:40:43:da:5d:
4b:00:a3:72:10:c0:87:70:38:dd:35:03:8e:e3:16:66:ee:d1:
c6:80:de:b5:b1:8d:36:e9:cd:47:8e:18:c1:df:2a:83:ae:d0:
f3:12:fa:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:03:41 2024 by rpki-client on console-ams.rpki-client.org