Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F367D68C/B68F7ED8920611EBAB13BC7CF8AEA228/69EE67B4920711EBA4D68A7DF8AEA228.roa
File: 69EE67B4920711EBA4D68A7DF8AEA228.roa (raw, json)
Hash identifier: PWOhXQJ0fibjAAccGAeAnloClqV+BwPlt2KmVpD849M=
Subject key identifier: 56:E6:B8:39:5A:54:3C:F5:E9:FD:58:1C:48:75:B0:B6:39:7C:46:DC
Certificate issuer: /CN=F367D68CAF/serialNumber=C653B15A50EE4301FF258D8A2A7C186383C50EBA
Certificate serial: 02
Authority key identifier: C6:53:B1:5A:50:EE:43:01:FF:25:8D:8A:2A:7C:18:63:83:C5:0E:BA
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/xlOxWlDuQwH_JY2KKnwYY4PFDro.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F367D68C/B68F7ED8920611EBAB13BC7CF8AEA228/69EE67B4920711EBA4D68A7DF8AEA228.roa
Signing time: Wed 31 Mar 2021 09:56:51 +0000
ROA not before: Wed 31 Mar 2021 09:56:45 +0000
ROA not after: Tue 31 Mar 2026 09:56:45 +0000
asID: 327859
IP address blocks: 2c0f:eff0::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F367D68C/B68F7ED8920611EBAB13BC7CF8AEA228/xlOxWlDuQwH_JY2KKnwYY4PFDro.crl
rsync://rpki.afrinic.net/repository/member_repository/F367D68C/B68F7ED8920611EBAB13BC7CF8AEA228/xlOxWlDuQwH_JY2KKnwYY4PFDro.mft
rsync://rpki.afrinic.net/repository/afrinic/xlOxWlDuQwH_JY2KKnwYY4PFDro.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 11 May 2024 00:04:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2 (0x2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F367D68CAF/serialNumber=C653B15A50EE4301FF258D8A2A7C186383C50EBA
Validity
Not Before: Mar 31 09:56:45 2021 GMT
Not After : Mar 31 09:56:45 2026 GMT
Subject: CN=60644763-e6a9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:fb:ca:f2:2a:8e:1a:6a:af:6a:24:5e:78:e9:
2c:87:41:56:4a:dd:27:3b:9f:43:73:3d:cc:93:8b:
35:2d:6c:5d:bc:be:63:f1:e7:14:31:98:82:11:1b:
d3:00:21:bc:d5:e4:d3:a6:fb:cb:ff:c6:8a:98:b0:
4c:8f:17:76:5f:43:21:6a:ea:d4:34:13:74:83:ad:
e2:c1:26:87:3c:b8:38:5d:a3:78:ca:6a:86:77:e0:
4c:0b:c8:57:89:2d:2b:e2:e5:16:fa:1c:b6:58:77:
d1:8c:9f:aa:6b:79:22:b5:1e:11:9f:3f:25:91:ed:
a8:0d:91:96:d1:b7:8c:73:74:9c:94:6f:97:ba:32:
c4:4a:88:a2:63:cd:b0:47:55:56:70:1d:dd:92:59:
bb:b8:45:8b:54:7e:d0:33:8c:7c:69:b8:df:5d:e3:
66:51:69:8a:f9:65:e2:04:8e:a9:87:91:ed:c8:b4:
72:78:61:40:f9:08:11:1b:18:62:f0:7e:e4:83:f8:
a9:34:2a:b1:d3:c6:5e:1c:e1:7a:a7:24:c5:e1:81:
30:7e:19:db:4f:73:b0:f6:25:ba:e9:a0:03:06:b9:
0f:96:26:b0:a7:32:68:a6:cf:b9:62:51:e7:a2:fc:
d8:6b:c9:6a:19:a4:e0:88:fd:e4:79:21:71:16:5c:
03:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:E6:B8:39:5A:54:3C:F5:E9:FD:58:1C:48:75:B0:B6:39:7C:46:DC
X509v3 Authority Key Identifier:
keyid:C6:53:B1:5A:50:EE:43:01:FF:25:8D:8A:2A:7C:18:63:83:C5:0E:BA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F367D68C/B68F7ED8920611EBAB13BC7CF8AEA228/xlOxWlDuQwH_JY2KKnwYY4PFDro.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/xlOxWlDuQwH_JY2KKnwYY4PFDro.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F367D68C/B68F7ED8920611EBAB13BC7CF8AEA228/69EE67B4920711EBA4D68A7DF8AEA228.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2c0f:eff0::/32
Signature Algorithm: sha256WithRSAEncryption
07:0d:49:97:e9:e3:10:c6:c7:e0:3e:89:d5:2c:cf:b0:a2:af:
6a:e0:78:9c:24:df:43:34:9b:15:03:72:34:65:63:48:f2:20:
7f:80:3d:fa:23:99:40:0f:6b:c3:df:c9:0f:29:3d:3c:a1:d4:
6d:9e:0c:38:a8:1d:c8:00:e9:ef:33:73:d6:f5:71:92:c6:c9:
c9:08:9d:cd:18:57:89:96:e7:ea:e0:36:70:51:0f:8a:16:27:
9b:12:22:8a:69:4a:07:77:69:f7:93:18:ca:e3:ba:ee:16:6b:
e2:9b:77:3c:2e:00:d7:e8:17:cd:54:84:1e:b9:aa:24:77:b2:
3d:72:a9:f2:8d:64:39:2a:e6:79:b6:36:96:39:25:ad:ce:2a:
08:31:19:cf:31:4a:93:82:57:8d:a4:1f:fc:c8:20:3b:b8:e6:
29:f7:16:16:27:59:f6:70:8c:b9:a5:b4:52:b2:16:d0:8f:38:
4a:46:2a:39:71:19:49:75:c8:b3:fa:c2:df:ef:86:01:f5:25:
b8:87:30:25:af:ce:01:97:69:03:91:ca:7c:d1:be:f9:84:53:
e2:13:38:5f:6d:22:e6:f0:6c:84:9d:ae:f3:28:26:05:86:da:
6c:9e:cf:56:15:47:f2:84:5e:b4:06:57:13:e6:78:f1:37:6f:
90:a0:bd:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 9 02:15:04 2024 by rpki-client on console-fra.rpki-client.org