Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368788D/764A656EF6BD11EC8E5B79BEF1222468/4FA146B8A26D11EF8615AF63762E951A.roa
File: 4FA146B8A26D11EF8615AF63762E951A.roa (raw, json)
Hash identifier: 1lWOSLXoKapO4xyywLf2L4cW6uZX3BBDfChH/GRyj0g=
Subject key identifier: 0F:0E:02:7B:66:1B:91:C8:8D:59:01:98:F0:F9:BD:E4:A3:E9:7B:88
Certificate issuer: /CN=F368788DAF/serialNumber=37BF37CB655AF6C78EBA88082A9BEDD1BE4049C4
Certificate serial: 0390
Authority key identifier: 37:BF:37:CB:65:5A:F6:C7:8E:BA:88:08:2A:9B:ED:D1:BE:40:49:C4
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/N783y2Va9seOuogIKpvt0b5AScQ.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368788D/764A656EF6BD11EC8E5B79BEF1222468/4FA146B8A26D11EF8615AF63762E951A.roa
Signing time: Thu 14 Nov 2024 09:46:24 +0000
ROA not before: Thu 14 Nov 2024 09:46:21 +0000
ROA not after: Fri 12 Nov 2027 09:46:21 +0000
asID: 328567
IP address blocks: 2c0f:3140::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368788D/764A656EF6BD11EC8E5B79BEF1222468/N783y2Va9seOuogIKpvt0b5AScQ.crl
rsync://rpki.afrinic.net/repository/member_repository/F368788D/764A656EF6BD11EC8E5B79BEF1222468/N783y2Va9seOuogIKpvt0b5AScQ.mft
rsync://rpki.afrinic.net/repository/afrinic/N783y2Va9seOuogIKpvt0b5AScQ.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 21 Feb 2025 02:10:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 912 (0x390)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368788DAF
Validity
Not Before: Nov 14 09:46:21 2024 GMT
Not After : Nov 12 09:46:21 2027 GMT
Subject: CN=6735c6f0-98e0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:d8:c8:53:5f:9b:ae:fd:57:37:e3:25:bf:c3:
19:6e:c4:ea:78:15:ba:dd:54:c7:fe:c1:66:a7:47:
15:54:e4:83:2c:56:fe:59:39:21:09:21:85:e5:60:
16:c2:e4:49:71:84:c6:44:2c:7e:1b:c6:82:77:23:
01:98:24:81:59:3c:b3:54:0a:11:99:f5:07:e6:60:
5e:94:53:d1:dd:24:30:ab:dd:c7:c7:55:4e:7b:3b:
25:cd:fd:f3:01:ce:b5:4a:79:0c:a2:ec:7e:72:b4:
0c:bd:b6:24:ba:45:ab:90:eb:6f:eb:a2:b3:a6:bf:
5e:4d:d8:77:25:a6:37:17:db:8f:5f:f9:35:58:f2:
54:e9:77:54:09:18:df:e4:4b:f3:62:05:75:02:34:
cb:6f:62:9a:59:df:b9:0b:21:f8:ae:27:4f:26:5d:
01:ee:1c:1c:ba:7a:78:07:59:a4:23:14:75:aa:e5:
bd:ef:4b:6d:81:a9:ad:3d:b5:f1:c7:11:2b:7e:6a:
36:6f:95:90:6f:b7:3d:ba:a6:c5:41:5e:a2:68:3c:
d6:a3:5a:29:7d:d6:bc:07:ea:8a:98:9d:17:76:23:
70:3b:8b:00:9e:ac:c2:d9:33:61:48:8a:3a:20:da:
c4:5d:06:5a:4e:5f:cd:0b:f6:15:4b:d4:3b:6f:aa:
33:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:0E:02:7B:66:1B:91:C8:8D:59:01:98:F0:F9:BD:E4:A3:E9:7B:88
X509v3 Authority Key Identifier:
keyid:37:BF:37:CB:65:5A:F6:C7:8E:BA:88:08:2A:9B:ED:D1:BE:40:49:C4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368788D/764A656EF6BD11EC8E5B79BEF1222468/N783y2Va9seOuogIKpvt0b5AScQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/N783y2Va9seOuogIKpvt0b5AScQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368788D/764A656EF6BD11EC8E5B79BEF1222468/4FA146B8A26D11EF8615AF63762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2c0f:3140::/32
Signature Algorithm: sha256WithRSAEncryption
33:a0:e5:df:76:e9:a3:40:55:73:fe:7c:2e:d6:74:da:1f:20:
92:3b:b0:5c:1a:f5:32:33:ff:b3:46:69:d9:b8:19:2e:78:c4:
9e:bc:98:24:16:ab:67:9b:6e:ef:ed:1f:93:18:0b:16:f4:3b:
cd:67:35:f9:2f:dd:ff:3b:fe:fb:1d:bf:ae:90:09:52:ec:97:
96:11:4d:0b:a3:c0:17:5b:dd:66:d0:7d:a7:1b:9e:d4:04:58:
7e:42:e0:c5:ba:3b:4d:4f:f8:29:1c:c5:78:22:0c:b1:75:8c:
4a:b3:30:b9:1e:a9:19:66:ab:a1:08:c3:c2:c6:5f:46:ef:a3:
34:a4:3e:77:a5:03:db:79:16:75:2b:8e:4e:f2:d2:12:7f:32:
c0:1c:80:8c:fe:c7:4e:8f:48:f5:9c:e9:9b:1d:98:0b:71:7a:
2f:0b:c9:20:3d:fc:98:c6:92:61:bd:45:44:23:44:5a:6d:5d:
4c:2c:46:6d:d8:5a:e0:3b:df:a9:d3:7b:d8:27:da:46:5b:e0:
69:80:dc:95:fe:ed:03:dc:30:25:68:1b:33:61:ed:dc:c9:c5:
01:a7:dc:ef:74:3a:f7:99:e1:1f:fc:25:f1:f4:5e:17:d4:42:
cb:f3:71:b1:25:69:5c:2f:ce:8f:62:5d:e3:53:09:2a:af:c9:
92:b7:cd:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 20:44:31 2025 by rpki-client