Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368CC63/0F97EDE8B24D11EFBDE38866762E951A/CE647098B24D11EFBF39E46A762E951A.roa
File: CE647098B24D11EFBF39E46A762E951A.roa (raw, json)
Hash identifier: Tr+Uq3brNImHW7wN7GMiqLrOGB3PYGFFy8E/vBXE1gM=
Subject key identifier: 7E:99:93:29:FF:D3:FA:FF:80:C0:FF:2C:15:85:17:16:15:B7:55:33
Certificate issuer: /CN=F368CC63AF/serialNumber=3F2D44F5035BD76916935671263D1F1FE22D3FD1
Certificate serial: 04
Authority key identifier: 3F:2D:44:F5:03:5B:D7:69:16:93:56:71:26:3D:1F:1F:E2:2D:3F:D1
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/Py1E9QNb12kWk1ZxJj0fH-ItP9E.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368CC63/0F97EDE8B24D11EFBDE38866762E951A/CE647098B24D11EFBF39E46A762E951A.roa
Signing time: Wed 04 Dec 2024 14:41:12 +0000
ROA not before: Wed 04 Dec 2024 14:41:08 +0000
ROA not after: Mon 04 Dec 2034 14:41:08 +0000
asID: 36924
IP address blocks: 2c0f:53c0::/32 maxlen: 48
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368CC63/0F97EDE8B24D11EFBDE38866762E951A/Py1E9QNb12kWk1ZxJj0fH-ItP9E.crl
rsync://rpki.afrinic.net/repository/member_repository/F368CC63/0F97EDE8B24D11EFBDE38866762E951A/Py1E9QNb12kWk1ZxJj0fH-ItP9E.mft
rsync://rpki.afrinic.net/repository/afrinic/Py1E9QNb12kWk1ZxJj0fH-ItP9E.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 03:21:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4 (0x4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368CC63AF
Validity
Not Before: Dec 4 14:41:08 2024 GMT
Not After : Dec 4 14:41:08 2034 GMT
Subject: CN=67506a08-8678
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:ad:c8:f8:81:96:c1:88:7b:d1:31:57:9d:53:
4b:5d:b9:cb:1c:24:04:06:5c:af:b8:82:11:47:ff:
c4:af:7d:5a:fb:6f:98:11:c4:19:c4:24:7e:f7:1f:
7a:bd:91:8b:8f:f0:56:e5:e6:22:ce:88:85:80:9e:
1d:61:53:25:86:3c:38:b5:0a:b1:a0:3a:e4:f5:02:
12:bc:71:48:fd:a1:7b:b2:dc:2b:88:ba:84:78:c9:
68:71:72:18:35:28:bb:35:b5:a2:ea:be:41:1f:8b:
de:0d:bd:a4:b6:7b:fb:cc:4a:08:31:9d:6a:f9:a2:
9d:cb:5f:89:48:a1:9c:06:8e:f4:f9:9d:be:66:54:
7d:d6:a0:ad:2f:38:5b:c7:26:5c:49:4a:2b:0d:af:
b0:ca:d3:67:22:30:9d:be:7b:5f:2a:a1:4d:94:40:
dc:3b:85:c0:fd:ad:a0:1a:d9:fe:fb:46:fb:7d:81:
6f:37:0f:47:7f:f3:1f:b0:07:fb:a5:de:90:05:90:
ae:53:d1:a5:d0:b5:e7:31:00:7f:16:89:bf:7c:52:
e2:99:37:61:b9:96:55:a3:78:09:28:b1:d9:9e:96:
13:91:44:42:b9:7f:02:44:20:44:8a:c0:c1:2e:0e:
6d:81:b9:3c:d7:25:f8:4b:6b:2d:33:3b:56:e3:e7:
3c:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:99:93:29:FF:D3:FA:FF:80:C0:FF:2C:15:85:17:16:15:B7:55:33
X509v3 Authority Key Identifier:
keyid:3F:2D:44:F5:03:5B:D7:69:16:93:56:71:26:3D:1F:1F:E2:2D:3F:D1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368CC63/0F97EDE8B24D11EFBDE38866762E951A/Py1E9QNb12kWk1ZxJj0fH-ItP9E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/Py1E9QNb12kWk1ZxJj0fH-ItP9E.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368CC63/0F97EDE8B24D11EFBDE38866762E951A/CE647098B24D11EFBF39E46A762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2c0f:53c0::/32
Signature Algorithm: sha256WithRSAEncryption
5b:e4:22:6f:11:ce:c4:10:84:da:11:a9:ff:65:48:76:6b:a1:
ed:17:2e:1e:97:15:98:fb:c9:5f:65:d6:52:5f:6e:ee:03:7b:
49:b1:57:7d:c5:ff:48:46:bf:d4:2c:1c:9f:02:4f:0e:98:b8:
de:c6:1a:8d:59:a6:4f:ba:d2:8f:62:82:d5:29:b6:fa:30:25:
99:a3:11:45:dc:9e:84:00:80:28:76:2b:47:78:65:19:bb:aa:
c9:68:7d:99:bc:fa:4b:93:98:5a:c1:10:f3:f3:64:0e:a8:ef:
b3:82:40:10:d1:d2:c8:82:15:23:b6:8d:9d:a1:0e:22:4c:55:
f8:89:94:a1:30:56:89:e8:e3:e1:11:cb:9a:c8:8e:8e:35:9f:
c8:08:a4:36:e7:5d:60:e9:05:96:95:76:87:7e:5f:89:10:d6:
f7:07:4f:e2:be:99:f4:04:89:de:a0:50:eb:1f:7d:0e:17:d9:
45:69:1a:27:4a:a6:3d:c0:de:20:c7:49:58:1a:96:47:98:93:
b8:bb:ec:93:80:b8:1f:12:13:cb:5d:ce:46:41:e1:a5:85:58:
8b:42:26:e6:52:e6:80:79:a5:2b:8f:41:2e:0b:de:d4:98:e6:
78:db:08:55:bb:11:cf:78:24:c7:5a:0e:88:97:33:e6:74:07:
4a:fb:af:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 15:44:29 2025 by rpki-client