Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3669D6B/BEFB44EE879A11E99F393351F8AEA228/CA92DC0205E711EEA8C75C8B4AD9E6FC.roa
File: CA92DC0205E711EEA8C75C8B4AD9E6FC.roa (raw, json)
Hash identifier: cF5e6RYkNREOassnE6T50RXQcqCPBU3BaJK8/GvdnmA=
Subject key identifier: 43:2A:A4:74:7D:2E:41:2C:9C:8F:70:CA:8F:19:68:4C:8E:C1:92:76
Certificate issuer: /CN=F3669D6BAF/serialNumber=959733DF59E86EA7C23B2FB37A6E846DBB18827B
Certificate serial: 06FE
Authority key identifier: 95:97:33:DF:59:E8:6E:A7:C2:3B:2F:B3:7A:6E:84:6D:BB:18:82:7B
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/lZcz31nobqfCOy-zem6EbbsYgns.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/BEFB44EE879A11E99F393351F8AEA228/CA92DC0205E711EEA8C75C8B4AD9E6FC.roa
Signing time: Thu 08 Jun 2023 10:32:39 +0000
ROA not before: Thu 08 Jun 2023 10:32:32 +0000
ROA not after: Wed 08 Jun 2033 10:32:32 +0000
asID: 36916
IP address blocks: 2c0f:fcb0:3000::/36 maxlen: 36
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/BEFB44EE879A11E99F393351F8AEA228/lZcz31nobqfCOy-zem6EbbsYgns.crl
rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/BEFB44EE879A11E99F393351F8AEA228/lZcz31nobqfCOy-zem6EbbsYgns.mft
rsync://rpki.afrinic.net/repository/afrinic/lZcz31nobqfCOy-zem6EbbsYgns.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 04 Jun 2024 00:04:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1790 (0x6fe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3669D6BAF/serialNumber=959733DF59E86EA7C23B2FB37A6E846DBB18827B
Validity
Not Before: Jun 8 10:32:32 2023 GMT
Not After : Jun 8 10:32:32 2033 GMT
Subject: CN=6481ae47-2b43
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:83:d4:d6:c3:ed:93:5e:f8:2c:66:b3:e9:b9:
14:b8:22:5d:d8:4d:a9:76:a2:44:4b:9b:56:3e:76:
31:bf:44:df:8c:29:bd:14:0c:0a:f4:04:cf:56:e7:
22:07:8e:fe:d0:fd:20:cb:33:a1:dc:f7:f3:28:2f:
b5:1b:bb:e6:00:07:ed:2a:3b:32:42:ab:53:88:96:
11:14:2b:b9:3d:0a:c1:68:d0:40:b7:41:99:f5:32:
8e:2d:09:38:7f:18:32:86:c9:9d:71:22:9a:bc:7f:
75:54:bc:c6:7b:dd:4f:b0:cf:c1:ae:a2:2e:8b:c4:
0b:71:8d:d5:6f:2d:d0:ae:dc:36:b7:a6:93:30:2a:
4f:83:75:2d:5b:b4:e1:87:bf:a8:f5:86:de:a1:7c:
4f:e6:9f:76:5f:24:70:c2:2e:6d:5f:48:92:b1:5a:
1b:ec:7d:91:13:6e:8b:f2:a4:5a:86:70:29:0e:ee:
89:5d:4f:a8:78:e5:5a:2a:9e:11:95:eb:b5:62:d4:
66:c5:3b:17:ee:d6:42:19:a6:2b:4a:40:2d:fb:d4:
b0:d7:61:06:10:5f:0c:c3:03:1b:ce:08:28:c7:fa:
45:fc:56:3f:b0:39:9f:a5:3b:ef:89:2a:55:80:b4:
b4:32:e7:fd:23:85:63:d8:57:7c:33:26:2a:61:06:
85:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:2A:A4:74:7D:2E:41:2C:9C:8F:70:CA:8F:19:68:4C:8E:C1:92:76
X509v3 Authority Key Identifier:
keyid:95:97:33:DF:59:E8:6E:A7:C2:3B:2F:B3:7A:6E:84:6D:BB:18:82:7B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/BEFB44EE879A11E99F393351F8AEA228/lZcz31nobqfCOy-zem6EbbsYgns.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/lZcz31nobqfCOy-zem6EbbsYgns.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/BEFB44EE879A11E99F393351F8AEA228/CA92DC0205E711EEA8C75C8B4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2c0f:fcb0:3000::/36
Signature Algorithm: sha256WithRSAEncryption
1e:d3:b0:ae:ac:87:08:f2:39:07:e9:fa:e6:54:67:8f:3a:f1:
2b:78:5b:0b:2c:19:95:48:b5:69:e5:37:30:df:ea:84:97:f4:
f1:38:07:1e:16:3b:9a:76:d9:07:49:fe:eb:56:ea:81:a6:5d:
d0:c3:f5:27:7e:b5:25:0e:7a:22:97:42:9a:06:a1:63:a0:8f:
a0:d4:e1:dc:58:d9:f4:ec:76:ac:14:52:c6:82:9d:57:89:0d:
2e:c4:f5:ee:99:d2:a2:f2:e5:55:32:83:bb:6e:2b:36:55:36:
47:74:55:f4:bf:a6:e0:e1:c1:c2:44:d8:4b:80:1c:1c:5d:44:
be:99:44:3c:e5:b7:85:e4:97:7f:c5:94:b6:d2:43:6e:90:c0:
2f:05:2a:a4:65:8a:c1:9d:b1:d2:3a:cb:22:71:ea:91:66:8a:
88:22:c2:6e:35:2f:8e:fd:a6:ea:f6:2e:44:cb:41:77:a5:94:
b3:05:15:4d:5e:22:df:32:c1:32:50:25:f2:f9:bc:42:94:e2:
d9:01:33:40:2c:2d:ab:4a:d8:34:ec:b5:c2:61:9f:ee:bf:51:
f0:41:84:f5:97:54:b8:b5:89:d9:d6:87:34:a7:0c:db:45:2a:
fd:7f:58:1c:49:f0:28:b5:f6:3f:98:2c:b1:c0:52:80:33:27:
57:2a:df:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 2 03:39:40 2024 by rpki-client on console-ams.rpki-client.org