Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3681ED0/5251C078CE2411EDA092D0ACF1222468/42CC1EC00B7611EEA5D28A444AD9E6FC.roa
File: 42CC1EC00B7611EEA5D28A444AD9E6FC.roa (raw, json)
Hash identifier: hsH3WbP2I/ts2EY2aQeTrcaXJgp89zEB64yilwHc5pg=
Subject key identifier: 94:C3:7E:CC:1B:BF:23:EB:D3:CA:27:E1:83:29:F8:B5:A9:4D:DE:7E
Certificate issuer: /CN=F3681ED0AF/serialNumber=4A83F31B1B0604CA6D0B72A453DAA3EB587B4C82
Certificate serial: 60
Authority key identifier: 4A:83:F3:1B:1B:06:04:CA:6D:0B:72:A4:53:DA:A3:EB:58:7B:4C:82
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/SoPzGxsGBMptC3KkU9qj61h7TII.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3681ED0/5251C078CE2411EDA092D0ACF1222468/42CC1EC00B7611EEA5D28A444AD9E6FC.roa
Signing time: Thu 15 Jun 2023 12:15:05 +0000
ROA not before: Thu 15 Jun 2023 12:15:00 +0000
ROA not after: Thu 16 Jun 2033 12:15:00 +0000
asID: 30986
IP address blocks: 2c0f:f7c0::/32 maxlen: 48
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3681ED0/5251C078CE2411EDA092D0ACF1222468/SoPzGxsGBMptC3KkU9qj61h7TII.crl
rsync://rpki.afrinic.net/repository/member_repository/F3681ED0/5251C078CE2411EDA092D0ACF1222468/SoPzGxsGBMptC3KkU9qj61h7TII.mft
rsync://rpki.afrinic.net/repository/afrinic/SoPzGxsGBMptC3KkU9qj61h7TII.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 27 Nov 2024 00:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 96 (0x60)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3681ED0AF/serialNumber=4A83F31B1B0604CA6D0B72A453DAA3EB587B4C82
Validity
Not Before: Jun 15 12:15:00 2023 GMT
Not After : Jun 16 12:15:00 2033 GMT
Subject: CN=648b00c9-82c5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:22:a5:24:34:da:78:f5:f7:d4:1d:26:c3:9b:
60:fb:26:54:c4:5e:18:9c:b3:f9:f4:5d:a0:a7:28:
bd:76:6d:e9:33:2a:c4:b0:ea:b0:e1:c7:e8:6c:95:
c0:8d:5d:e9:dd:75:4c:59:69:f5:fd:56:4c:90:1b:
01:7e:87:c0:fd:8c:b7:e7:5c:09:69:ee:c8:92:00:
46:77:3e:1f:61:51:ea:21:2b:39:7c:9a:aa:2d:1c:
74:45:70:1f:7a:e5:c0:a4:6e:35:4c:81:84:d5:5e:
14:0a:84:62:46:c4:19:d0:ae:c5:12:10:60:e6:01:
5d:d4:ee:4a:c6:1e:7b:0c:d7:4b:f7:c7:0e:9c:f9:
0f:6f:08:ab:5a:17:6a:2e:04:f3:2a:97:1c:17:3e:
52:e3:ca:67:63:63:eb:31:3f:a9:c0:74:cc:5e:e3:
ef:fd:04:87:5a:39:11:fe:91:88:62:46:d6:ab:88:
f8:a4:a4:c0:e9:ed:10:5c:1f:c6:99:a9:b0:10:60:
a8:be:5e:fc:08:ae:68:03:15:80:31:53:91:81:e4:
0c:af:85:40:ab:c6:4a:6a:30:46:7e:6b:da:fe:b5:
b1:6c:b9:70:07:0c:06:8b:ce:52:9d:aa:26:92:09:
8a:6f:1d:8d:1e:a9:c7:43:48:aa:c8:e3:1f:4c:46:
08:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:C3:7E:CC:1B:BF:23:EB:D3:CA:27:E1:83:29:F8:B5:A9:4D:DE:7E
X509v3 Authority Key Identifier:
keyid:4A:83:F3:1B:1B:06:04:CA:6D:0B:72:A4:53:DA:A3:EB:58:7B:4C:82
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3681ED0/5251C078CE2411EDA092D0ACF1222468/SoPzGxsGBMptC3KkU9qj61h7TII.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/SoPzGxsGBMptC3KkU9qj61h7TII.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3681ED0/5251C078CE2411EDA092D0ACF1222468/42CC1EC00B7611EEA5D28A444AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2c0f:f7c0::/32
Signature Algorithm: sha256WithRSAEncryption
a4:21:cf:9e:eb:f3:70:fe:93:0b:d4:30:82:ee:9f:ce:83:b0:
0b:da:09:20:4a:45:c3:4a:62:26:1b:c2:b0:2a:1a:e7:ec:05:
59:cb:a0:1c:96:36:1a:5d:39:fe:53:c8:2d:05:f7:1c:d5:4a:
15:d2:2d:74:db:31:e7:47:17:40:51:cc:ff:46:e4:d3:f0:ea:
db:c1:99:62:5d:96:40:22:1d:a8:a1:c6:90:74:c9:cd:88:63:
94:64:b5:8b:f1:69:73:3a:dd:f4:41:4e:9e:3d:38:74:18:1d:
4f:93:e5:c7:7b:f7:c4:86:4f:81:42:b8:f2:3d:62:9b:9b:97:
23:a1:57:16:84:7b:77:14:1e:ba:7d:6a:e9:2f:7a:e2:75:81:
3d:02:cb:52:06:4d:16:96:f1:e7:c0:0e:1b:b5:cb:03:40:5f:
cf:2d:68:90:88:48:b3:1f:1b:e6:63:d5:67:b9:3b:78:f3:db:
32:a3:97:7c:19:2d:60:0f:84:d3:85:56:85:fb:95:0e:46:13:
0e:d3:62:d5:21:26:09:ef:8a:cd:ab:f3:87:0a:4e:38:e5:48:
35:6e:44:cb:30:94:c4:bd:1e:5b:38:46:35:ea:d0:f2:26:21:
c1:7d:4c:6d:ab:90:c2:7a:d6:74:74:cc:31:91:c5:bd:62:b2:
35:ee:88:f6
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgIBYDANBgkqhkiG9w0BAQsFADBIMRMwEQYDVQQDDApGMzY4
MUVEMEFGMTEwLwYDVQQFEyg0QTgzRjMxQjFCMDYwNENBNkQwQjcyQTQ1M0RBQTNF
QjU4N0I0QzgyMB4XDTIzMDYxNTEyMTUwMFoXDTMzMDYxNjEyMTUwMFowGDEWMBQG
A1UEAxMNNjQ4YjAwYzktODJjNTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBAOwipSQ02nj199QdJsObYPsmVMReGJyz+fRdoKcovXZt6TMqxLDqsOHH6GyV
wI1d6d11TFlp9f1WTJAbAX6HwP2Mt+dcCWnuyJIARnc+H2FR6iErOXyaqi0cdEVw
H3rlwKRuNUyBhNVeFAqEYkbEGdCuxRIQYOYBXdTuSsYeewzXS/fHDpz5D28Iq1oX
ai4E8yqXHBc+UuPKZ2Nj6zE/qcB0zF7j7/0Eh1o5Ef6RiGJG1quI+KSkwOntEFwf
xpmpsBBgqL5e/AiuaAMVgDFTkYHkDK+FQKvGSmowRn5r2v61sWy5cAcMBovOUp2q
JpIJim8djR6px0NIqsjjH0xGCNUCAwEAAaOCAqYwggKiMB0GA1UdDgQWBBSUw37M
G78j69PKJ+GDKfi1qU3efjAfBgNVHSMEGDAWgBRKg/MbGwYEym0LcqRT2qPrWHtM
gjAOBgNVHQ8BAf8EBAMCB4AwgZUGA1UdHwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6
Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVyX3JlcG9zaXRvcnkv
RjM2ODFFRDAvNTI1MUMwNzhDRTI0MTFFREEwOTJEMEFDRjEyMjI0NjgvU29Qekd4
c0dCTXB0QzNLa1U5cWo2MWg3VElJLmNybDBnBggrBgEFBQcBAQRbMFkwVwYIKwYB
BQUHMAKGS3JzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L2Fmcmlu
aWMvU29Qekd4c0dCTXB0QzNLa1U5cWo2MWg3VElJLmNlcjBPBgNVHSABAf8ERTBD
MEEGCCsGAQUFBw4CMDUwMwYIKwYBBQUHAgEWJ2h0dHBzOi8vcnBraS5hZnJpbmlj
Lm5ldC9wb2xpY3kvQ1BTLnBkZjCB2wYIKwYBBQUHAQsEgc4wgcswgZEGCCsGAQUF
BzALhoGEcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVy
X3JlcG9zaXRvcnkvRjM2ODFFRDAvNTI1MUMwNzhDRTI0MTFFREEwOTJEMEFDRjEy
MjI0NjgvNDJDQzFFQzAwQjc2MTFFRUE1RDI4QTQ0NEFEOUU2RkMucm9hMDUGCCsG
AQUFBzANhilodHRwczovL3JyZHAuYWZyaW5pYy5uZXQvbm90aWZpY2F0aW9uLnht
bDAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACwP98AwDQYJKoZIhvcNAQEL
BQADggEBAKQhz57r83D+kwvUMILun86DsAvaCSBKRcNKYiYbwrAqGufsBVnLoByW
NhpdOf5TyC0F9xzVShXSLXTbMedHF0BRzP9G5NPw6tvBmWJdlkAiHaihxpB0yc2I
Y5RktYvxaXM63fRBTp49OHQYHU+T5cd798SGT4FCuPI9YpublyOhVxaEe3cUHrp9
aukveuJ1gT0Cy1IGTRaW8efADhu1ywNAX88taJCISLMfG+Zj1We5O3jz2zKjl3wZ
LWAPhNOFVoX7lQ5GEw7TYtUhJgnvis2r84cKTjjlSDVuRMswlMS9Hls4RjXq0PIm
IcF9TG2rkMJ61nR0zDGRxb1isjXuiPY=
-----END CERTIFICATE-----
Generated at Mon Nov 25 04:43:45 2024 by rpki-client on console-ams.rpki-client.org