Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F367B8D1/561E2FDC21F011EEACFC01104AD9E6FC/82D2D66E261811EE84FCC57F4AD9E6FC.roa
File: 82D2D66E261811EE84FCC57F4AD9E6FC.roa (raw, json)
Hash identifier: 8DOR79YopZBDIjmiAAaaEool8LnL3u27308SxIQ3uSY=
Subject key identifier: 46:86:D3:32:EF:C2:52:ED:7E:51:4A:57:53:AA:2A:24:C8:53:BD:4D
Certificate issuer: /CN=F367B8D1AF/serialNumber=2FD39D92ACDAA5137BCE481ABE6C8DF1DCCD0EF6
Certificate serial: 0B
Authority key identifier: 2F:D3:9D:92:AC:DA:A5:13:7B:CE:48:1A:BE:6C:8D:F1:DC:CD:0E:F6
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/L9OdkqzapRN7zkgavmyN8dzNDvY.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F367B8D1/561E2FDC21F011EEACFC01104AD9E6FC/82D2D66E261811EE84FCC57F4AD9E6FC.roa
Signing time: Wed 19 Jul 2023 09:42:01 +0000
ROA not before: Wed 19 Jul 2023 09:41:57 +0000
ROA not after: Tue 19 Jul 2033 09:41:57 +0000
asID: 328228
IP address blocks: 2c0f:f188:7::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F367B8D1/561E2FDC21F011EEACFC01104AD9E6FC/L9OdkqzapRN7zkgavmyN8dzNDvY.crl
rsync://rpki.afrinic.net/repository/member_repository/F367B8D1/561E2FDC21F011EEACFC01104AD9E6FC/L9OdkqzapRN7zkgavmyN8dzNDvY.mft
rsync://rpki.afrinic.net/repository/afrinic/L9OdkqzapRN7zkgavmyN8dzNDvY.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 26 Nov 2024 00:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 11 (0xb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F367B8D1AF/serialNumber=2FD39D92ACDAA5137BCE481ABE6C8DF1DCCD0EF6
Validity
Not Before: Jul 19 09:41:57 2023 GMT
Not After : Jul 19 09:41:57 2033 GMT
Subject: CN=64b7afe9-be52
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:e2:d0:2f:c6:ec:65:c0:9e:21:75:98:60:c7:
4a:62:ea:b5:06:42:a0:c8:d3:b3:3a:5c:32:28:20:
a7:f8:98:21:85:2b:ec:4f:10:7f:a2:89:1e:b1:60:
f0:ef:a8:15:44:80:04:c7:d3:61:4c:aa:2d:d0:71:
29:b1:80:6c:21:c5:0d:b1:73:09:d7:70:c6:f0:85:
74:bb:3c:00:21:14:b2:f2:e1:92:4a:fc:66:d4:6d:
fc:5a:93:28:cb:58:32:5c:68:1d:eb:99:90:5e:e5:
a5:25:c4:11:6f:ce:85:12:f4:78:6c:ec:f5:e9:75:
89:d8:da:b1:c6:d3:20:43:df:29:ed:97:2e:e8:01:
df:47:96:3a:e3:51:75:81:26:dd:d9:e3:58:5f:8f:
31:f6:bf:34:92:9f:3b:e8:83:5e:79:22:18:7a:73:
49:51:59:05:c9:17:22:0c:08:41:5d:91:e5:a4:35:
4c:f4:3b:66:9c:79:7e:4c:55:ae:ed:a5:53:1d:8e:
fe:61:28:b2:b9:43:0a:4a:a6:28:75:60:2d:62:f7:
1b:0e:db:d1:94:72:66:16:61:b5:21:dd:d0:c8:33:
c6:1d:74:40:58:7b:bd:7d:fd:47:e5:20:f3:90:ea:
31:59:4b:79:81:bb:e2:48:6a:c0:2a:6e:b3:b0:d3:
bf:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:86:D3:32:EF:C2:52:ED:7E:51:4A:57:53:AA:2A:24:C8:53:BD:4D
X509v3 Authority Key Identifier:
keyid:2F:D3:9D:92:AC:DA:A5:13:7B:CE:48:1A:BE:6C:8D:F1:DC:CD:0E:F6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F367B8D1/561E2FDC21F011EEACFC01104AD9E6FC/L9OdkqzapRN7zkgavmyN8dzNDvY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/L9OdkqzapRN7zkgavmyN8dzNDvY.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F367B8D1/561E2FDC21F011EEACFC01104AD9E6FC/82D2D66E261811EE84FCC57F4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2c0f:f188:7::/48
Signature Algorithm: sha256WithRSAEncryption
33:7f:a9:73:50:c7:2d:b0:a0:47:99:10:ae:92:84:75:84:94:
d3:ce:3f:ee:ee:79:b4:e2:34:d0:06:be:2e:27:7d:92:0c:4a:
aa:e6:e6:86:70:6c:52:ed:cf:81:9b:e1:8c:cd:0d:2d:d0:04:
5d:9e:6b:78:ee:11:92:46:85:88:3b:a2:db:bd:37:db:e5:30:
e2:4e:07:28:7c:93:9d:26:65:df:51:7f:70:08:e6:4f:95:24:
0c:34:08:71:7f:6c:6d:82:57:93:1a:85:1e:df:ae:93:23:52:
da:24:e8:45:d9:ba:7d:7e:18:89:93:28:d3:66:76:02:57:ea:
4e:de:51:ca:d4:cd:fc:33:23:cc:a6:ea:d1:e4:99:d7:05:35:
79:68:c9:c4:eb:52:6e:a2:2b:73:86:1e:1a:ad:17:8f:8b:b6:
d5:f6:b7:39:bf:7b:47:8b:4a:bb:54:8f:6b:19:f4:c6:b2:d1:
82:a7:24:aa:85:f5:88:be:c9:b7:ad:52:0f:c8:84:21:0f:c6:
0a:c7:d1:cc:0e:59:a7:7e:86:72:c8:84:3b:9d:8e:76:48:33:
7e:49:f3:f6:3c:47:40:f9:87:7b:96:82:13:26:4b:0c:6c:c2:
f7:a9:3e:2d:46:c2:47:4d:73:75:01:31:39:8f:76:5a:ae:39:
d4:ce:da:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Nov 24 04:29:37 2024 by rpki-client on console-fra.rpki-client.org