Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3678967/4AA442F478D911EA9A80955CF8AEA228/C7468CE2E77811EEA1A05FC9775412E6.roa
File: C7468CE2E77811EEA1A05FC9775412E6.roa (raw, json)
Hash identifier: /c7WzEE1XWOd4nr8e22x2r+tmERk1nvGspmezFZ5FXU=
Subject key identifier: AA:3E:19:65:AC:F4:23:C1:0E:52:29:7B:DD:E3:E7:64:42:75:5B:BD
Certificate issuer: /CN=F3678967AF/serialNumber=5CAA982C03179326332D6B770A58E8795CB8459F
Certificate serial: 05D2
Authority key identifier: 5C:AA:98:2C:03:17:93:26:33:2D:6B:77:0A:58:E8:79:5C:B8:45:9F
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/XKqYLAMXkyYzLWt3CljoeVy4RZ8.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3678967/4AA442F478D911EA9A80955CF8AEA228/C7468CE2E77811EEA1A05FC9775412E6.roa
Signing time: Thu 21 Mar 2024 11:47:22 +0000
ROA not before: Thu 21 Mar 2024 11:47:19 +0000
ROA not after: Mon 20 Mar 2034 11:47:19 +0000
asID: 328633
IP address blocks: 2c0f:e848::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3678967/4AA442F478D911EA9A80955CF8AEA228/XKqYLAMXkyYzLWt3CljoeVy4RZ8.crl
rsync://rpki.afrinic.net/repository/member_repository/F3678967/4AA442F478D911EA9A80955CF8AEA228/XKqYLAMXkyYzLWt3CljoeVy4RZ8.mft
rsync://rpki.afrinic.net/repository/afrinic/XKqYLAMXkyYzLWt3CljoeVy4RZ8.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1490 (0x5d2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3678967AF/serialNumber=5CAA982C03179326332D6B770A58E8795CB8459F
Validity
Not Before: Mar 21 11:47:19 2024 GMT
Not After : Mar 20 11:47:19 2034 GMT
Subject: CN=65fc1e4a-cfba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:e8:08:49:2e:34:14:23:41:10:21:6d:08:c9:
30:7b:ee:5a:16:c6:a9:ad:a9:92:8e:2f:1b:ff:8b:
22:c5:5a:72:9a:db:8e:08:2f:ba:5a:72:0a:49:45:
26:fa:0b:56:98:69:71:d1:76:20:5c:76:fd:a3:fe:
9a:1a:eb:0a:1a:ae:2d:ba:51:8f:d9:51:04:b3:e5:
cc:a0:55:f2:31:37:31:04:12:19:b2:ee:96:1a:b2:
61:2b:75:7c:cf:73:ec:d2:e4:7e:29:a7:d7:90:14:
be:57:1e:61:a7:b2:13:71:66:75:8b:85:ab:a6:d4:
dd:c7:6c:f0:94:97:9c:3a:af:3c:98:20:83:4c:c3:
3c:80:cf:81:4d:65:c4:ad:80:32:0c:97:5b:25:28:
d1:40:b2:f3:5d:d7:7c:26:8a:b5:28:48:45:96:b3:
18:ad:71:23:1e:24:84:55:0e:b3:70:95:99:ca:4e:
19:13:3a:6a:d7:3a:fb:0e:95:c4:4b:e7:7e:b9:17:
59:74:94:53:b2:87:ed:42:28:be:65:ad:35:a5:05:
37:18:89:4e:f4:61:c0:55:93:97:3c:a6:81:9a:cb:
f1:71:19:70:60:9a:46:cf:2c:10:02:18:bc:e5:3c:
ad:57:9a:c7:31:32:4d:50:0d:eb:b8:f5:75:df:61:
1a:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:3E:19:65:AC:F4:23:C1:0E:52:29:7B:DD:E3:E7:64:42:75:5B:BD
X509v3 Authority Key Identifier:
keyid:5C:AA:98:2C:03:17:93:26:33:2D:6B:77:0A:58:E8:79:5C:B8:45:9F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3678967/4AA442F478D911EA9A80955CF8AEA228/XKqYLAMXkyYzLWt3CljoeVy4RZ8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/XKqYLAMXkyYzLWt3CljoeVy4RZ8.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3678967/4AA442F478D911EA9A80955CF8AEA228/C7468CE2E77811EEA1A05FC9775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2c0f:e848::/32
Signature Algorithm: sha256WithRSAEncryption
a7:21:f7:e7:d8:30:f9:76:8c:3f:60:9f:a0:95:11:0e:2f:f7:
9a:3e:b9:3b:bd:5c:92:fd:be:c7:96:3f:c3:cb:df:97:8e:e7:
39:ce:74:b3:38:14:03:23:5e:44:56:c2:51:04:a7:9a:54:7f:
74:c8:1d:48:ce:72:46:c4:62:01:c8:16:ae:44:58:d0:8c:db:
c0:23:4b:ba:37:cc:75:f0:bb:10:74:d3:28:45:7a:2d:d9:74:
35:cd:83:d5:b5:1c:50:d2:b5:fe:ba:54:1b:41:97:72:ae:42:
b2:47:29:af:50:88:83:9c:f2:1a:aa:95:cb:78:40:e6:cf:8c:
34:0e:0a:cd:37:83:55:89:fa:f4:31:96:72:e9:f2:f4:ac:6e:
b6:b8:bd:35:12:95:05:24:1a:44:03:e7:eb:c7:68:37:24:7b:
6d:0a:63:90:38:bd:da:56:16:e5:4f:cc:3d:ca:4f:35:63:66:
70:4c:6a:ab:85:da:e7:03:ec:ca:2b:75:95:a5:f9:dc:49:8d:
eb:b1:ec:35:9c:ab:55:17:4e:b0:78:7b:36:5d:0b:ff:72:1c:
c2:6a:5e:a0:96:67:97:95:6a:f6:d7:f2:a6:5a:ec:69:12:de:
89:73:32:28:9a:e6:c9:1e:66:96:8c:fe:cc:5d:7a:1d:46:1f:
ed:81:97:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:08:54 2024 by rpki-client on console-fra.rpki-client.org