Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368948B/57871110B09A11EFBA5BE8A0762E951A/2B39C894B3A811EFB417EA70762E951A.roa
File: 2B39C894B3A811EFB417EA70762E951A.roa (raw, json)
Hash identifier: JbNHPWtSF1vQZDwXPX2JIdA3ze8jlLo9getuU4tbAN4=
Subject key identifier: 2C:8D:2F:11:8F:58:10:E7:20:FC:47:3B:B5:A7:29:C5:24:94:54:34
Certificate issuer: /CN=F368948BAF/serialNumber=C2B72A0EDB6018EBA4ED7CD3035DB132F449C01D
Certificate serial: 0B
Authority key identifier: C2:B7:2A:0E:DB:60:18:EB:A4:ED:7C:D3:03:5D:B1:32:F4:49:C0:1D
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/wrcqDttgGOuk7XzTA12xMvRJwB0.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368948B/57871110B09A11EFBA5BE8A0762E951A/2B39C894B3A811EFB417EA70762E951A.roa
Signing time: Fri 06 Dec 2024 08:00:33 +0000
ROA not before: Fri 06 Dec 2024 08:00:29 +0000
ROA not after: Wed 06 Dec 2034 08:00:29 +0000
asID: 328490
IP address blocks: 2c0f:eda0::/32 maxlen: 120
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368948B/57871110B09A11EFBA5BE8A0762E951A/wrcqDttgGOuk7XzTA12xMvRJwB0.crl
rsync://rpki.afrinic.net/repository/member_repository/F368948B/57871110B09A11EFBA5BE8A0762E951A/wrcqDttgGOuk7XzTA12xMvRJwB0.mft
rsync://rpki.afrinic.net/repository/afrinic/wrcqDttgGOuk7XzTA12xMvRJwB0.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 03:21:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 11 (0xb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368948BAF
Validity
Not Before: Dec 6 08:00:29 2024 GMT
Not After : Dec 6 08:00:29 2034 GMT
Subject: CN=6752af21-a156
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:23:48:a1:1f:3a:32:70:21:f6:9d:d6:25:01:
a3:f8:d4:3a:17:6f:f8:47:0f:28:7d:0b:bc:e7:95:
c2:1a:e8:c5:4f:80:22:eb:9b:e4:d6:4b:e8:b4:6c:
91:64:9a:76:65:8a:f5:19:81:e2:6f:e1:c0:82:36:
91:66:78:b7:0f:48:67:bb:bb:11:34:9d:12:bd:63:
4f:66:6c:8e:b4:73:f4:75:1e:13:17:d5:c3:fd:7b:
25:40:89:dc:77:52:b3:d3:87:c6:08:32:64:b1:2e:
30:dd:8a:ef:c0:ba:2d:c8:55:db:08:3a:5d:b5:0d:
8e:b8:67:fb:00:be:db:eb:c5:4f:1a:e7:75:b1:92:
bc:dd:ba:92:19:6a:62:ef:b1:04:04:44:57:59:36:
02:07:af:e8:ec:20:3c:1a:18:85:55:45:40:9e:23:
41:0a:f4:d4:96:a0:84:57:06:96:aa:83:c9:c8:2e:
7a:2c:32:ee:95:6d:48:b0:32:a5:ea:69:fd:20:b2:
f5:9f:4a:7b:fc:bf:1c:e4:79:45:9d:aa:da:d4:5a:
1f:08:62:a9:1e:b3:4b:33:29:23:01:2b:4e:d8:8f:
b4:45:8e:fa:fa:12:f3:55:fe:e8:ec:c1:4a:77:d3:
35:4f:3a:d0:2a:8c:6a:cc:74:23:4d:2b:87:34:47:
75:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:8D:2F:11:8F:58:10:E7:20:FC:47:3B:B5:A7:29:C5:24:94:54:34
X509v3 Authority Key Identifier:
keyid:C2:B7:2A:0E:DB:60:18:EB:A4:ED:7C:D3:03:5D:B1:32:F4:49:C0:1D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368948B/57871110B09A11EFBA5BE8A0762E951A/wrcqDttgGOuk7XzTA12xMvRJwB0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/wrcqDttgGOuk7XzTA12xMvRJwB0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368948B/57871110B09A11EFBA5BE8A0762E951A/2B39C894B3A811EFB417EA70762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2c0f:eda0::/32
Signature Algorithm: sha256WithRSAEncryption
65:18:e0:f2:20:d8:10:24:75:61:c1:ab:cf:d6:9b:b0:87:bf:
fb:a4:ae:1c:83:f8:69:03:3f:07:eb:8d:67:ed:f8:a8:e1:38:
de:da:00:41:8c:3a:bd:f4:1f:35:1b:ff:53:ae:74:d0:6c:0f:
91:83:60:1c:df:87:bd:0a:70:4b:f4:05:70:77:0d:28:10:7c:
31:b5:5e:2a:d1:56:e9:ce:dc:4f:30:9b:e8:2c:f6:b6:a9:42:
80:ff:ff:23:4c:62:f8:22:84:c7:d3:cb:e2:b0:67:7f:63:8b:
d7:68:fb:87:83:38:c7:cd:21:44:2d:17:de:e5:e6:a4:1b:27:
e6:1b:d0:77:a2:4d:f8:5d:58:cd:5c:da:d1:da:d7:fa:be:93:
58:d3:0c:f6:c2:95:3f:31:d2:b8:2a:89:02:d1:48:95:36:de:
83:6d:d3:28:45:59:ab:44:f8:57:46:8f:88:af:f4:f6:45:05:
35:f7:e8:2f:b2:14:96:e9:df:7b:ab:d3:a2:41:64:1a:8e:87:
4d:c1:c0:20:51:85:28:01:df:6b:41:69:71:31:bc:76:0f:21:
0d:0d:62:1c:02:8f:62:4b:e7:87:a5:d1:98:eb:3c:dd:1d:b7:
6b:d8:70:42:61:f1:e9:ff:cb:7b:2d:65:a8:e6:c4:54:40:64:
26:49:84:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 16:03:15 2025 by rpki-client