Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F367B8D1/561E2FDC21F011EEACFC01104AD9E6FC/2BBF61F4261711EEBF1F207C4AD9E6FC.roa
File: 2BBF61F4261711EEBF1F207C4AD9E6FC.roa (raw, json)
Hash identifier: uweMPd3tzGkzK5NAwH3tY1Gjy+sA5uAC5mjmqHriOro=
Subject key identifier: 9A:2D:47:52:51:BF:04:80:D4:47:79:55:DE:DD:89:DE:58:7C:22:80
Certificate issuer: /CN=F367B8D1AF/serialNumber=2FD39D92ACDAA5137BCE481ABE6C8DF1DCCD0EF6
Certificate serial: 07
Authority key identifier: 2F:D3:9D:92:AC:DA:A5:13:7B:CE:48:1A:BE:6C:8D:F1:DC:CD:0E:F6
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/L9OdkqzapRN7zkgavmyN8dzNDvY.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F367B8D1/561E2FDC21F011EEACFC01104AD9E6FC/2BBF61F4261711EEBF1F207C4AD9E6FC.roa
Signing time: Wed 19 Jul 2023 09:32:26 +0000
ROA not before: Wed 19 Jul 2023 09:32:22 +0000
ROA not after: Tue 19 Jul 2033 09:32:22 +0000
asID: 28683
IP address blocks: 2001:4320::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F367B8D1/561E2FDC21F011EEACFC01104AD9E6FC/L9OdkqzapRN7zkgavmyN8dzNDvY.crl
rsync://rpki.afrinic.net/repository/member_repository/F367B8D1/561E2FDC21F011EEACFC01104AD9E6FC/L9OdkqzapRN7zkgavmyN8dzNDvY.mft
rsync://rpki.afrinic.net/repository/afrinic/L9OdkqzapRN7zkgavmyN8dzNDvY.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 26 Nov 2024 00:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7 (0x7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F367B8D1AF/serialNumber=2FD39D92ACDAA5137BCE481ABE6C8DF1DCCD0EF6
Validity
Not Before: Jul 19 09:32:22 2023 GMT
Not After : Jul 19 09:32:22 2033 GMT
Subject: CN=64b7ada9-edf2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:27:bd:86:3e:59:14:bc:cd:c1:05:86:76:16:
f0:85:a5:d3:b2:27:2e:0f:16:d9:e6:62:ac:4c:f2:
58:cf:10:c4:84:ab:8c:c6:ed:c1:c7:fd:1c:cb:06:
e9:9a:32:28:16:54:ee:b9:8b:66:ab:53:a3:b5:61:
31:c4:95:f0:92:fe:71:b8:c8:02:49:ca:36:9c:0e:
53:06:00:2c:0e:9d:02:6f:6d:ae:77:65:d9:77:dc:
24:e8:f1:d2:3d:67:2c:7a:df:6f:c2:0a:d0:75:d2:
33:23:00:79:81:86:e4:5e:61:d1:30:68:38:98:f1:
84:9f:d5:6c:9a:aa:ef:98:4d:9e:e8:84:84:1a:18:
e3:b5:2a:ca:35:66:54:c5:ce:7a:b0:1b:bc:27:e2:
a9:a8:1e:16:6e:2b:73:1c:2f:89:49:49:9d:57:42:
d4:b7:01:71:d6:28:a9:75:d1:ad:71:f6:cf:40:31:
43:84:f6:0c:25:fb:71:28:4a:5b:fd:ee:71:74:f9:
cd:26:4e:a1:22:31:83:41:dc:c3:df:48:58:9a:8b:
dd:51:2c:41:d8:0f:3e:d2:6a:55:72:32:e0:b1:21:
07:06:41:d7:9b:14:74:0f:4b:6f:af:91:c4:9b:98:
6c:5e:42:cb:b7:bf:0d:38:cb:2d:5e:83:15:c2:b7:
02:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:2D:47:52:51:BF:04:80:D4:47:79:55:DE:DD:89:DE:58:7C:22:80
X509v3 Authority Key Identifier:
keyid:2F:D3:9D:92:AC:DA:A5:13:7B:CE:48:1A:BE:6C:8D:F1:DC:CD:0E:F6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F367B8D1/561E2FDC21F011EEACFC01104AD9E6FC/L9OdkqzapRN7zkgavmyN8dzNDvY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/L9OdkqzapRN7zkgavmyN8dzNDvY.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F367B8D1/561E2FDC21F011EEACFC01104AD9E6FC/2BBF61F4261711EEBF1F207C4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:4320::/32
Signature Algorithm: sha256WithRSAEncryption
43:54:47:b7:65:c2:4d:91:31:7e:a6:b8:56:37:df:94:76:08:
42:22:da:87:51:ea:22:56:77:b7:9e:09:7f:5e:ba:60:4c:cf:
58:c2:08:ad:04:25:5c:a9:ce:99:18:56:ba:bc:2e:41:69:2f:
87:54:e6:06:fb:30:88:df:05:a0:7f:73:d5:0a:11:80:ff:d4:
0c:b5:2a:92:30:a5:bb:f7:42:ec:72:4d:0b:dc:6f:74:29:98:
81:87:45:56:aa:5c:cf:df:9d:01:aa:02:a1:21:e4:c5:ba:b4:
a7:ec:ba:9c:34:25:ce:f1:63:84:a3:3f:c9:98:9e:01:86:d0:
cc:27:1f:4a:38:30:ec:d0:ae:05:bc:e1:7c:58:b2:ab:2c:39:
ac:30:62:29:11:8e:3c:94:8f:32:cd:56:27:4a:44:fa:9a:22:
cc:60:b0:6c:fb:54:8a:c2:ba:b5:4c:52:54:6a:b3:81:67:4c:
bd:4a:c2:5f:6b:df:85:9d:f5:57:2d:b6:83:3c:8a:2d:56:7a:
b7:8e:10:67:ba:a5:66:43:78:11:84:ae:2a:54:11:a4:b8:19:
df:da:0c:81:0a:04:7d:c9:57:ad:f8:fa:31:38:74:0a:9b:0e:
23:43:e2:4a:93:5d:a8:7e:0c:11:42:0f:50:7a:27:e8:54:2b:
3e:94:3c:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Nov 24 04:29:37 2024 by rpki-client on console-fra.rpki-client.org