Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3669D6B/BEFB44EE879A11E99F393351F8AEA228/EB0107A205E711EE8C8D620D4AD9E6FC.roa
File: EB0107A205E711EE8C8D620D4AD9E6FC.roa (raw, json)
Hash identifier: iqGC1y2twMyOW1OK9GLaVghNlEYPzBtjTgnwsc5VE/I=
Subject key identifier: 56:DD:95:36:18:B9:88:A8:FE:0C:0F:24:68:49:85:EC:56:78:B4:1E
Certificate issuer: /CN=F3669D6BAF/serialNumber=959733DF59E86EA7C23B2FB37A6E846DBB18827B
Certificate serial: 0700
Authority key identifier: 95:97:33:DF:59:E8:6E:A7:C2:3B:2F:B3:7A:6E:84:6D:BB:18:82:7B
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/lZcz31nobqfCOy-zem6EbbsYgns.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/BEFB44EE879A11E99F393351F8AEA228/EB0107A205E711EE8C8D620D4AD9E6FC.roa
Signing time: Thu 08 Jun 2023 10:33:33 +0000
ROA not before: Thu 08 Jun 2023 10:33:30 +0000
ROA not after: Wed 08 Jun 2033 10:33:30 +0000
asID: 36916
IP address blocks: 2c0f:fcb0:5000::/36 maxlen: 36
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/BEFB44EE879A11E99F393351F8AEA228/lZcz31nobqfCOy-zem6EbbsYgns.crl
rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/BEFB44EE879A11E99F393351F8AEA228/lZcz31nobqfCOy-zem6EbbsYgns.mft
rsync://rpki.afrinic.net/repository/afrinic/lZcz31nobqfCOy-zem6EbbsYgns.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1792 (0x700)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3669D6BAF/serialNumber=959733DF59E86EA7C23B2FB37A6E846DBB18827B
Validity
Not Before: Jun 8 10:33:30 2023 GMT
Not After : Jun 8 10:33:30 2033 GMT
Subject: CN=6481ae7d-3a5f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:17:4b:ba:d1:2d:9e:76:59:ce:f6:6a:5a:94:
88:85:93:a0:b0:e8:dd:5c:d3:bb:cf:d8:4e:8c:02:
27:bb:0a:cb:04:df:ca:94:ef:58:f5:27:8a:0e:b1:
7d:ee:fd:bb:39:71:a4:84:2d:b6:1e:67:bf:88:49:
f5:12:ce:c7:87:f1:f3:26:a9:4d:9b:95:48:f1:53:
44:c3:a7:f8:4f:f5:35:3c:eb:07:01:e8:94:5c:e2:
e6:9e:8b:d0:f5:67:17:26:9d:3c:15:d7:6a:38:df:
52:f0:a0:c6:c3:05:6f:83:e0:ef:76:aa:c5:94:90:
f9:46:83:7c:55:26:5c:c9:66:21:5e:c4:ea:ff:eb:
9f:5b:ac:59:41:df:b7:b6:40:f4:35:60:a3:7d:08:
67:08:57:2d:95:13:83:ac:8a:db:e4:71:13:85:e0:
05:59:a7:65:c0:62:7e:2e:9d:b5:51:32:9d:df:d3:
cd:4e:e3:9e:40:e3:f3:2a:3a:83:e9:41:61:14:a7:
78:76:de:b3:4f:c0:f4:a3:0d:a9:85:2e:b7:48:c8:
fa:10:15:37:6e:00:b0:86:79:af:fc:6e:a8:6a:80:
e8:70:db:e4:2f:84:14:79:4a:9b:e4:b3:c7:92:f6:
11:cb:6e:9d:65:4c:c9:d1:b4:45:2b:34:af:d3:89:
51:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:DD:95:36:18:B9:88:A8:FE:0C:0F:24:68:49:85:EC:56:78:B4:1E
X509v3 Authority Key Identifier:
keyid:95:97:33:DF:59:E8:6E:A7:C2:3B:2F:B3:7A:6E:84:6D:BB:18:82:7B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/BEFB44EE879A11E99F393351F8AEA228/lZcz31nobqfCOy-zem6EbbsYgns.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/lZcz31nobqfCOy-zem6EbbsYgns.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/BEFB44EE879A11E99F393351F8AEA228/EB0107A205E711EE8C8D620D4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2c0f:fcb0:5000::/36
Signature Algorithm: sha256WithRSAEncryption
86:d1:d0:47:b1:47:a8:c4:a1:c0:59:b6:65:e9:d4:09:a5:e1:
38:05:b5:71:1a:d2:1f:58:60:c2:4e:16:96:bc:f6:47:22:82:
78:5e:32:81:36:ee:8e:e3:65:b2:20:e7:66:9f:99:96:21:7a:
2a:ed:7e:44:4e:00:db:d0:fd:4a:3b:73:49:5c:4b:55:ff:e3:
84:13:64:12:da:45:34:b3:c6:ef:6a:e8:c0:62:af:92:40:8d:
fa:23:91:08:eb:e0:cd:bf:c6:e9:ff:b5:60:3e:52:46:a9:79:
7f:92:98:4e:6c:a5:13:b0:06:46:ac:32:1e:48:4d:e0:38:70:
55:a1:d2:e3:71:a3:13:43:e8:cd:0c:1c:8b:f1:00:26:92:85:
d5:1a:41:3b:aa:44:ba:7f:45:05:5d:7f:e1:c1:0a:99:3b:c8:
85:11:67:11:0d:54:10:68:b3:81:88:b1:00:5d:88:8f:fe:68:
d1:40:15:d6:62:10:78:ab:f7:4f:fb:4d:dc:dc:51:37:87:a9:
e9:d1:ad:4f:fb:45:d7:8d:21:9c:cd:b9:89:e8:b6:ce:5c:f4:
95:78:d3:26:30:07:6d:08:2d:9e:6b:32:fb:a0:c5:a9:20:5d:
15:8b:6d:23:24:da:2d:e1:df:fd:7b:76:1d:80:85:71:ee:be:
e1:96:3d:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:03:41 2024 by rpki-client on console-ams.rpki-client.org