Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3690793/A252AAC8A42411EBA135D26EF8AEA228/AEEE236EC67911EEAD12F8AE775412E6.roa
File: AEEE236EC67911EEAD12F8AE775412E6.roa (raw, json)
Hash identifier: T0oca2AEcgFcrK1PsYZJPTBdlzaX1LQylDi6J2hgcIM=
Subject key identifier: 40:5B:A2:E6:FA:32:25:9C:65:18:96:08:5B:1A:33:6F:E6:2B:4E:55
Certificate issuer: /CN=F3690793AF/serialNumber=5FE33172A6082C54ABC911F19F579D49FD809814
Certificate serial: 0426
Authority key identifier: 5F:E3:31:72:A6:08:2C:54:AB:C9:11:F1:9F:57:9D:49:FD:80:98:14
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/X-MxcqYILFSryRHxn1edSf2AmBQ.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3690793/A252AAC8A42411EBA135D26EF8AEA228/AEEE236EC67911EEAD12F8AE775412E6.roa
Signing time: Thu 08 Feb 2024 12:00:42 +0000
ROA not before: Thu 08 Feb 2024 12:00:39 +0000
ROA not after: Tue 31 Jan 2034 12:00:39 +0000
asID: 328839
IP address blocks: 2c0f:4600::/32 maxlen: 36
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3690793/A252AAC8A42411EBA135D26EF8AEA228/X-MxcqYILFSryRHxn1edSf2AmBQ.crl
rsync://rpki.afrinic.net/repository/member_repository/F3690793/A252AAC8A42411EBA135D26EF8AEA228/X-MxcqYILFSryRHxn1edSf2AmBQ.mft
rsync://rpki.afrinic.net/repository/afrinic/X-MxcqYILFSryRHxn1edSf2AmBQ.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1062 (0x426)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3690793AF/serialNumber=5FE33172A6082C54ABC911F19F579D49FD809814
Validity
Not Before: Feb 8 12:00:39 2024 GMT
Not After : Jan 31 12:00:39 2034 GMT
Subject: CN=65c4c26a-fa0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:49:59:80:a7:2c:77:ab:68:2f:2c:48:25:53:
f3:a0:2e:7c:ad:8a:15:3f:97:aa:42:fb:e7:be:e2:
f8:a3:50:5a:b7:01:78:25:aa:95:a4:8a:b5:6a:53:
a0:fc:a5:85:57:11:71:e4:51:a4:99:dd:a1:99:a7:
d1:7a:99:ab:7f:ab:34:fb:5f:fa:0d:a5:7a:cc:91:
51:f0:16:b9:40:53:32:9f:63:48:a9:43:ef:73:62:
72:9f:c2:14:7f:e2:44:34:9a:e8:5c:e2:7e:9c:12:
f1:18:76:cf:ad:ab:fd:51:2a:5a:7c:34:17:b4:07:
32:c1:8b:ee:d5:8e:c4:c4:b0:11:64:fb:20:19:73:
74:47:53:3f:aa:44:d9:ac:67:33:a0:a0:9c:6c:d0:
ba:7e:ef:79:81:3a:46:a9:f4:18:da:32:ee:0d:e8:
06:27:26:73:56:72:77:89:68:b1:23:0b:f6:64:96:
fb:3f:3c:ab:36:ee:62:8e:93:de:73:19:cd:fb:5f:
07:57:2b:21:33:22:51:79:2d:a9:5c:59:27:52:87:
b3:58:53:3f:a8:2f:b1:a6:3a:44:88:01:0d:e5:16:
02:29:9f:10:9a:af:4c:fb:1f:0e:65:28:4e:3b:10:
bb:61:af:c2:12:12:d5:3d:dd:c9:fe:f4:43:71:e3:
e8:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:5B:A2:E6:FA:32:25:9C:65:18:96:08:5B:1A:33:6F:E6:2B:4E:55
X509v3 Authority Key Identifier:
keyid:5F:E3:31:72:A6:08:2C:54:AB:C9:11:F1:9F:57:9D:49:FD:80:98:14
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3690793/A252AAC8A42411EBA135D26EF8AEA228/X-MxcqYILFSryRHxn1edSf2AmBQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/X-MxcqYILFSryRHxn1edSf2AmBQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3690793/A252AAC8A42411EBA135D26EF8AEA228/AEEE236EC67911EEAD12F8AE775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2c0f:4600::/32
Signature Algorithm: sha256WithRSAEncryption
4b:cc:6f:2f:51:91:92:9e:d9:1b:f6:d8:cc:1f:30:8e:1a:54:
35:f6:8c:cc:e9:b0:1b:00:06:b7:df:5b:ca:32:b6:f8:5f:e1:
df:69:0c:43:29:e2:7d:5d:3c:4f:73:ec:0a:b0:1b:a4:ff:5d:
34:ce:be:9b:32:b4:ef:03:63:2a:bc:28:2f:3a:6b:6a:38:d4:
a3:f0:37:4b:09:94:2d:f2:bc:cd:60:95:1f:68:2b:04:4d:ac:
6f:82:1a:13:c6:f9:e1:96:c1:61:38:f3:5f:48:ab:86:4f:82:
96:4f:05:de:13:c6:8e:06:bf:71:47:56:0f:b5:52:c1:0c:45:
73:48:d7:76:c6:e7:e9:ce:92:ed:e4:74:8f:67:d0:e2:d6:63:
f9:1b:62:5e:a7:ed:ea:a0:09:57:39:4b:92:4d:34:bc:81:5a:
a5:f4:a9:33:57:1e:da:7c:46:aa:d8:46:a5:44:f4:f9:f9:08:
67:28:3c:b8:f2:21:e7:d6:a5:c0:31:d9:3d:f7:cc:c1:ab:26:
59:09:1f:1b:bc:5c:34:70:b9:d0:d5:30:03:d2:56:c4:9a:e2:
11:72:e1:55:c1:11:74:d4:b9:e9:f0:bb:30:b1:f1:05:2b:8e:
8f:15:e7:d1:89:c6:3a:a1:87:bb:29:f4:8b:05:72:4e:0c:4c:
51:9f:45:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:05:13 2024 by rpki-client on console-ams.rpki-client.org