Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3670369/691565D27E7811ECB77461CB5A40D577/DBE0F6EE7E8C11EC9A551E885A40D577.roa
File: DBE0F6EE7E8C11EC9A551E885A40D577.roa (raw, json)
Hash identifier: e+LkqN78DWuhBsqL8FFr5mWtusQpgR9pzmjfGcJQ5/w=
Subject key identifier: C4:58:D3:2E:2F:23:8F:10:01:09:A3:08:10:BD:84:DF:E3:13:7D:22
Certificate issuer: /CN=F3670369AF/serialNumber=C8BB884D04BABC1605AB7DF7958796059C92C26A
Certificate serial: 03
Authority key identifier: C8:BB:88:4D:04:BA:BC:16:05:AB:7D:F7:95:87:96:05:9C:92:C2:6A
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/yLuITQS6vBYFq333lYeWBZySwmo.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3670369/691565D27E7811ECB77461CB5A40D577/DBE0F6EE7E8C11EC9A551E885A40D577.roa
Signing time: Wed 26 Jan 2022 09:46:39 +0000
ROA not before: Wed 26 Jan 2022 09:46:29 +0000
ROA not after: Tue 26 Jan 2049 09:46:29 +0000
asID: 37611
IP address blocks: 2c0f:ef20::/32 maxlen: 44
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3670369/691565D27E7811ECB77461CB5A40D577/yLuITQS6vBYFq333lYeWBZySwmo.crl
rsync://rpki.afrinic.net/repository/member_repository/F3670369/691565D27E7811ECB77461CB5A40D577/yLuITQS6vBYFq333lYeWBZySwmo.mft
rsync://rpki.afrinic.net/repository/afrinic/yLuITQS6vBYFq333lYeWBZySwmo.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3 (0x3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3670369AF/serialNumber=C8BB884D04BABC1605AB7DF7958796059C92C26A
Validity
Not Before: Jan 26 09:46:29 2022 GMT
Not After : Jan 26 09:46:29 2049 GMT
Subject: CN=61f1187f-cc7d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:53:cd:3c:46:ab:fe:d3:83:8b:07:4d:f5:51:
b6:5c:ec:d0:a8:39:b9:0e:04:e6:7a:02:4c:28:84:
ef:fc:a6:fb:12:e3:33:1f:96:44:52:d6:c6:10:90:
16:21:32:31:1b:5f:58:9f:be:b4:17:c5:b4:08:b5:
62:14:a9:24:4f:2e:5c:f5:c2:cc:30:94:5a:9d:41:
b9:60:5d:5a:fd:bd:4e:c1:13:79:7c:a9:49:40:ef:
30:8d:c1:7e:f1:6a:e9:92:6a:74:58:93:fb:97:ba:
1e:07:3c:49:36:ea:64:64:3e:a5:1a:f2:4b:03:d9:
97:fd:a4:45:6b:6b:11:bd:67:23:e6:0d:38:ae:77:
58:0d:e8:bc:41:e9:f7:79:f5:5a:c8:7e:ac:55:73:
65:f2:c2:8b:4a:a4:f2:df:cc:ce:74:00:df:2f:46:
4d:7a:81:f1:36:2f:0a:90:41:f8:e0:b2:6d:d2:8e:
46:4e:7e:e0:24:dc:b0:5a:fd:ed:b7:c4:ce:5a:69:
35:f7:1b:93:ae:0d:9b:86:27:35:7c:81:0e:12:43:
33:26:c9:4a:a0:48:19:95:f5:94:10:09:12:d6:17:
d1:ea:2d:62:3b:a0:3d:78:27:c8:f2:19:b2:c3:72:
4b:05:35:87:d4:ab:68:f9:c8:ad:85:83:1c:df:e3:
03:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:58:D3:2E:2F:23:8F:10:01:09:A3:08:10:BD:84:DF:E3:13:7D:22
X509v3 Authority Key Identifier:
keyid:C8:BB:88:4D:04:BA:BC:16:05:AB:7D:F7:95:87:96:05:9C:92:C2:6A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3670369/691565D27E7811ECB77461CB5A40D577/yLuITQS6vBYFq333lYeWBZySwmo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/yLuITQS6vBYFq333lYeWBZySwmo.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3670369/691565D27E7811ECB77461CB5A40D577/DBE0F6EE7E8C11EC9A551E885A40D577.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2c0f:ef20::/32
Signature Algorithm: sha256WithRSAEncryption
35:dc:80:a3:a1:41:f1:b1:b3:50:8a:2f:85:ef:17:5e:07:76:
f1:79:cc:67:b9:3e:68:09:38:ee:c2:c7:08:ce:ee:ee:21:cf:
9f:e3:ec:33:16:b1:93:11:2c:49:00:62:a8:d6:89:1b:e0:ee:
99:57:ae:55:80:9c:d7:d8:ca:52:e5:38:80:be:d8:3c:ba:40:
2f:d3:2d:cd:72:fc:96:43:86:dc:7d:23:22:8f:8d:48:f8:fc:
ac:db:ee:69:bb:96:0c:9c:ae:04:41:c9:2f:ee:85:9b:cc:42:
cf:eb:de:c3:81:e4:3c:74:51:5b:b1:85:65:35:7b:ab:dd:47:
d6:1f:72:ab:80:57:d9:37:1f:06:03:64:74:95:d0:25:79:74:
2c:61:48:4c:c7:7c:65:23:99:da:0b:bb:8b:f7:de:66:2c:18:
54:5b:50:11:f3:44:04:53:1b:83:3f:3b:b0:8f:50:95:ab:ee:
3f:af:04:d4:61:03:d9:55:ab:e6:5b:e9:a7:03:b0:f3:20:5f:
34:4e:36:85:3c:ed:b7:d8:df:6a:a6:d6:7f:9a:7a:e8:ed:aa:
62:91:69:f7:37:a8:99:bc:87:4e:c5:67:49:82:93:25:82:f0:
1a:37:2e:95:db:67:17:17:b4:29:91:d7:2f:cb:15:27:fb:23:
5e:53:e9:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:03:44 2024 by rpki-client on console-ams.rpki-client.org