Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3675C2B/C61954AAB83811EDB1717BB1F1222468/9AA2C8F4A72111EFAFB5507D762E951A.roa
File: 9AA2C8F4A72111EFAFB5507D762E951A.roa (raw, json)
Hash identifier: BkVr0GywD5ne77AbuN3SlJGoFofC7j3OIJUx5FhoLhs=
Subject key identifier: E7:89:17:E1:D7:33:1D:51:D0:A8:FD:BF:36:D9:CE:33:F6:BD:C3:94
Certificate issuer: /CN=F3675C2BAF/serialNumber=2D91C9F255C0983474A4D4C60E8FE0EC31EEB7EA
Certificate serial: 028E
Authority key identifier: 2D:91:C9:F2:55:C0:98:34:74:A4:D4:C6:0E:8F:E0:EC:31:EE:B7:EA
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/LZHJ8lXAmDR0pNTGDo_g7DHut-o.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3675C2B/C61954AAB83811EDB1717BB1F1222468/9AA2C8F4A72111EFAFB5507D762E951A.roa
Signing time: Wed 20 Nov 2024 09:27:04 +0000
ROA not before: Wed 20 Nov 2024 09:27:00 +0000
ROA not after: Wed 20 Nov 2030 09:27:00 +0000
asID: 37228
IP address blocks: 2c0f:3880::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3675C2B/C61954AAB83811EDB1717BB1F1222468/LZHJ8lXAmDR0pNTGDo_g7DHut-o.crl
rsync://rpki.afrinic.net/repository/member_repository/F3675C2B/C61954AAB83811EDB1717BB1F1222468/LZHJ8lXAmDR0pNTGDo_g7DHut-o.mft
rsync://rpki.afrinic.net/repository/afrinic/LZHJ8lXAmDR0pNTGDo_g7DHut-o.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 654 (0x28e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3675C2BAF/serialNumber=2D91C9F255C0983474A4D4C60E8FE0EC31EEB7EA
Validity
Not Before: Nov 20 09:27:00 2024 GMT
Not After : Nov 20 09:27:00 2030 GMT
Subject: CN=673dab68-9f85
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:02:24:ba:5d:e5:b4:00:a0:4e:11:bb:b8:b6:
b5:8f:4c:3e:cc:e8:09:45:73:e8:b8:b7:de:2b:49:
80:97:e6:60:92:d3:2f:49:10:62:e1:80:02:28:bb:
b5:17:f6:50:3f:6b:1b:7c:f7:b9:a5:5f:2c:02:36:
f2:22:6c:b4:1a:3a:66:4d:3d:84:83:9f:93:3c:57:
09:6d:8a:54:18:e2:3d:aa:78:53:ae:58:fa:fa:2f:
03:a0:b5:7e:76:7a:41:1f:fa:4d:3c:be:ba:63:d1:
d8:93:27:db:b4:9a:b6:24:09:2b:e1:30:83:80:a6:
bf:65:38:4a:70:18:72:4f:c9:ae:0e:9f:00:70:f1:
e8:a0:55:62:a2:46:85:1c:5b:aa:8a:49:62:41:2f:
26:df:a4:7b:7a:e7:6a:d2:da:13:a7:db:05:33:8c:
13:74:33:c0:2b:46:19:ab:d7:53:57:15:67:11:47:
b5:33:a5:8c:88:90:75:e4:b2:72:30:38:69:1c:d6:
92:4d:68:ae:b7:67:3d:8f:a3:2f:38:51:a5:cd:89:
9b:47:30:70:9e:22:6b:ea:ce:58:d1:32:7d:e7:57:
e6:0e:93:8a:f4:15:dc:6b:41:72:c0:e7:92:c0:b5:
a7:cd:ec:7d:06:fe:33:96:23:2b:b4:20:71:61:94:
62:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:89:17:E1:D7:33:1D:51:D0:A8:FD:BF:36:D9:CE:33:F6:BD:C3:94
X509v3 Authority Key Identifier:
keyid:2D:91:C9:F2:55:C0:98:34:74:A4:D4:C6:0E:8F:E0:EC:31:EE:B7:EA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3675C2B/C61954AAB83811EDB1717BB1F1222468/LZHJ8lXAmDR0pNTGDo_g7DHut-o.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/LZHJ8lXAmDR0pNTGDo_g7DHut-o.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3675C2B/C61954AAB83811EDB1717BB1F1222468/9AA2C8F4A72111EFAFB5507D762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2c0f:3880::/32
Signature Algorithm: sha256WithRSAEncryption
86:13:f5:33:d3:71:c4:f1:4b:e4:af:51:0b:50:c2:b1:8c:1e:
5a:2e:14:b0:8b:73:99:9b:28:c1:4c:06:2b:c8:32:0c:45:af:
e1:e9:27:f8:b2:d0:eb:98:b2:f6:a9:ec:5f:f2:aa:27:44:39:
10:68:9f:04:7b:c2:97:00:df:24:65:6c:e3:9e:98:b8:27:aa:
84:c1:65:9e:d4:42:ca:89:fc:0f:1c:89:04:db:71:f4:51:7d:
a9:56:d4:63:82:27:99:0d:c1:2f:09:42:33:e7:4e:4c:23:3d:
63:de:e5:08:b9:94:5e:e4:84:9b:18:cc:90:20:b8:58:39:b5:
e1:a0:8b:f0:41:4b:4a:bf:b4:4f:71:52:77:3d:82:21:5c:6c:
ce:e7:f9:86:ab:90:03:dd:e7:ef:77:0e:5e:08:92:0c:1f:ba:
8e:e5:3b:14:a9:95:f4:3e:81:cb:6e:04:b1:fe:83:b6:2c:42:
6c:ee:96:c3:01:b8:e2:b2:75:81:b1:00:fd:6e:c2:cf:4f:f2:
e9:e1:6d:25:07:43:49:27:31:4c:a0:da:c5:61:24:df:f4:a7:
8a:cf:5d:e4:20:18:1c:f7:78:eb:af:f2:da:c9:8d:76:e0:4d:
4d:30:ab:2a:62:81:75:f2:48:dc:a8:e5:5a:76:e5:a0:82:22:
50:35:1a:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 03:52:56 2024 by rpki-client on console-fra.rpki-client.org