Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F366A61A/7578EB6A386511EFA61FC86B762E951A/C99A4D3E386911EF9E90368C762E951A.roa
File: C99A4D3E386911EF9E90368C762E951A.roa (raw, json)
Hash identifier: MRITER58vyRjZxA4dzBSYv/21oUPkh19LEnmeikJNXM=
Subject key identifier: F8:C3:F3:C6:E1:F8:8B:D7:77:73:85:E8:95:FA:9B:DF:78:90:BE:00
Certificate issuer: /CN=F366A61AAF/serialNumber=31813322C9B9A2BAFD7C7AF5CE0F4FF874D9CDA1
Certificate serial: 09
Authority key identifier: 31:81:33:22:C9:B9:A2:BA:FD:7C:7A:F5:CE:0F:4F:F8:74:D9:CD:A1
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/MYEzIsm5orr9fHr1zg9P-HTZzaE.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F366A61A/7578EB6A386511EFA61FC86B762E951A/C99A4D3E386911EF9E90368C762E951A.roa
Signing time: Tue 02 Jul 2024 11:54:08 +0000
ROA not before: Tue 02 Jul 2024 11:54:04 +0000
ROA not after: Sun 02 Jul 2034 11:54:04 +0000
asID: 328943
IP address blocks: 2c0f:300::/32 maxlen: 128
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F366A61A/7578EB6A386511EFA61FC86B762E951A/MYEzIsm5orr9fHr1zg9P-HTZzaE.crl
rsync://rpki.afrinic.net/repository/member_repository/F366A61A/7578EB6A386511EFA61FC86B762E951A/MYEzIsm5orr9fHr1zg9P-HTZzaE.mft
rsync://rpki.afrinic.net/repository/afrinic/MYEzIsm5orr9fHr1zg9P-HTZzaE.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 9 (0x9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F366A61AAF/serialNumber=31813322C9B9A2BAFD7C7AF5CE0F4FF874D9CDA1
Validity
Not Before: Jul 2 11:54:04 2024 GMT
Not After : Jul 2 11:54:04 2034 GMT
Subject: CN=6683ea60-cb2b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:24:ef:4b:07:aa:e9:10:16:d4:fc:73:d1:80:
cb:c1:a9:4b:17:3d:67:65:b9:b9:79:5d:01:59:1d:
49:35:6f:eb:21:db:d3:3d:97:e3:f3:80:01:78:fe:
c2:2e:c5:86:85:e4:5c:9c:b9:7b:63:35:b7:3a:6c:
62:fa:92:60:dc:80:2d:5b:5d:0f:f5:49:29:b3:67:
71:07:cc:3c:cc:5a:20:74:2c:bc:1a:a4:91:c4:54:
be:28:0c:3f:36:83:9d:ab:91:2b:75:90:c6:de:42:
e9:46:dc:a4:7a:84:e2:dd:24:00:d4:d7:e7:9b:67:
36:1d:af:42:50:dd:75:1c:8f:8d:b6:9f:21:55:67:
8f:ac:d0:3c:5d:cb:c9:e1:41:88:16:d7:50:8e:47:
f4:a0:df:99:ce:76:a0:86:b5:78:ec:2b:2e:8e:c9:
48:43:cf:2b:bc:6e:f7:98:eb:1b:83:01:3f:e9:ec:
13:d1:bf:f4:68:c3:ef:7a:1e:70:03:cf:cc:dd:70:
f4:0c:ff:84:35:1d:be:3b:eb:dc:04:ea:e7:9c:a1:
be:28:e4:49:4b:e4:c5:01:89:ed:84:a7:79:15:05:
ea:0c:2a:f0:7e:8c:be:2e:a0:2b:4b:5d:58:12:49:
cd:2f:c5:df:f6:d6:30:bf:c7:32:e8:b4:45:b4:47:
87:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:C3:F3:C6:E1:F8:8B:D7:77:73:85:E8:95:FA:9B:DF:78:90:BE:00
X509v3 Authority Key Identifier:
keyid:31:81:33:22:C9:B9:A2:BA:FD:7C:7A:F5:CE:0F:4F:F8:74:D9:CD:A1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F366A61A/7578EB6A386511EFA61FC86B762E951A/MYEzIsm5orr9fHr1zg9P-HTZzaE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/MYEzIsm5orr9fHr1zg9P-HTZzaE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F366A61A/7578EB6A386511EFA61FC86B762E951A/C99A4D3E386911EF9E90368C762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2c0f:300::/32
Signature Algorithm: sha256WithRSAEncryption
4a:50:89:06:7d:96:53:c0:90:88:09:f6:e0:68:39:65:ba:e3:
b2:aa:4a:20:21:c6:53:82:67:29:c5:4f:36:ce:98:b8:02:74:
cf:97:2a:2d:69:25:a3:0a:62:ae:fb:97:ff:e2:20:3e:93:13:
59:a6:b9:6f:e3:bb:1e:03:fc:b4:d2:76:93:c6:69:72:85:05:
f3:14:af:c1:e4:6a:e2:db:00:7b:90:eb:37:92:09:38:08:56:
c0:29:ff:2a:31:81:9c:b0:29:ef:a4:7f:d4:ec:ca:4f:13:60:
ae:7a:9d:f1:71:ab:fc:96:7b:50:65:36:6a:d4:74:df:0a:8b:
da:f2:9e:b2:3e:29:7d:dd:71:1d:1c:ac:52:57:aa:24:3c:d6:
57:d5:46:6e:1c:88:7b:41:d2:5b:67:9d:07:1f:45:af:91:5b:
62:38:68:db:3e:f3:5c:22:c4:6b:d7:d0:b3:a8:74:a5:47:e5:
c7:d2:21:ce:f1:18:a2:3b:ff:1f:7d:cb:f4:4a:7d:d3:a8:f8:
e4:c5:87:33:d2:f9:14:f7:54:f5:16:05:ae:5e:cc:86:55:d2:
c8:ad:6a:82:93:65:d2:59:51:d3:93:6c:a2:b9:16:79:dc:66:
f7:cc:54:98:b0:1b:ef:73:7d:47:c3:fa:73:84:ed:eb:03:0e:
60:9c:20:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 03:52:55 2024 by rpki-client on console-fra.rpki-client.org