Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36960E7/1C0AE63EEB7711EB80DE7C1ED8A014CE/BBDB457C50B211ED936AB1EFF1222468.roa
File: BBDB457C50B211ED936AB1EFF1222468.roa (raw, json)
Hash identifier: Ic3/YAN//xfDApEXJkLHl3ajCQB8DF7eTF+JzdLiPrw=
Subject key identifier: B3:57:BE:22:59:D6:C1:BC:F2:7A:9A:15:00:3E:E7:CB:09:28:C5:72
Certificate issuer: /CN=F36960E7AF/serialNumber=1F4DB9AC6B63108A19BDCDBEECFF449842C8D6A0
Certificate serial: 01E5
Authority key identifier: 1F:4D:B9:AC:6B:63:10:8A:19:BD:CD:BE:EC:FF:44:98:42:C8:D6:A0
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/H025rGtjEIoZvc2-7P9EmELI1qA.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36960E7/1C0AE63EEB7711EB80DE7C1ED8A014CE/BBDB457C50B211ED936AB1EFF1222468.roa
Signing time: Thu 20 Oct 2022 20:06:51 +0000
ROA not before: Thu 20 Oct 2022 20:06:47 +0000
ROA not after: Fri 31 Oct 2025 20:06:47 +0000
asID: 328840
IP address blocks: 2c0f:4e00::/34 maxlen: 34
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36960E7/1C0AE63EEB7711EB80DE7C1ED8A014CE/H025rGtjEIoZvc2-7P9EmELI1qA.crl
rsync://rpki.afrinic.net/repository/member_repository/F36960E7/1C0AE63EEB7711EB80DE7C1ED8A014CE/H025rGtjEIoZvc2-7P9EmELI1qA.mft
rsync://rpki.afrinic.net/repository/afrinic/H025rGtjEIoZvc2-7P9EmELI1qA.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 27 Nov 2024 00:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 485 (0x1e5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36960E7AF/serialNumber=1F4DB9AC6B63108A19BDCDBEECFF449842C8D6A0
Validity
Not Before: Oct 20 20:06:47 2022 GMT
Not After : Oct 31 20:06:47 2025 GMT
Subject: CN=6351aa5a-d8b2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:29:f7:90:55:b3:11:9d:42:fc:ba:e1:c5:90:
40:b2:6f:4e:99:a0:a6:97:3c:47:2b:38:15:2f:b4:
10:87:91:16:ab:8b:c9:8d:25:2a:2c:0d:5e:16:6b:
0b:81:d4:2c:52:ad:d9:7e:fa:bb:66:73:21:6d:d1:
13:10:e9:a5:d9:f5:a5:cc:e2:ce:d5:39:4b:89:49:
73:46:80:9b:40:f6:9d:55:5a:d7:d7:ba:37:e2:8e:
81:59:97:31:6d:01:84:a6:fd:61:63:34:ab:e0:df:
c9:e7:8a:37:d0:b7:c2:27:40:4a:b0:b3:5b:14:67:
50:db:c7:fd:58:19:d6:79:dc:3a:ff:1d:e4:ff:f3:
70:54:9c:65:b6:df:af:d4:0e:50:aa:1c:ba:c3:f2:
3f:08:52:f1:d2:01:d5:9e:cc:4a:4f:e1:cb:37:68:
95:8e:7b:e0:e8:80:fd:9a:07:9f:9e:25:7e:dc:85:
b8:51:6d:cd:7e:5f:3d:bb:57:80:74:59:20:00:bb:
ad:38:73:56:72:7d:40:6b:f7:31:06:af:96:8f:43:
5c:2c:0b:91:42:8d:bd:29:19:82:55:e7:4c:7d:82:
f2:8c:f0:90:02:7e:15:24:de:36:29:72:48:77:1f:
ff:22:04:0e:38:c3:8c:9c:88:c7:f1:45:b2:53:3d:
9c:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:57:BE:22:59:D6:C1:BC:F2:7A:9A:15:00:3E:E7:CB:09:28:C5:72
X509v3 Authority Key Identifier:
keyid:1F:4D:B9:AC:6B:63:10:8A:19:BD:CD:BE:EC:FF:44:98:42:C8:D6:A0
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36960E7/1C0AE63EEB7711EB80DE7C1ED8A014CE/H025rGtjEIoZvc2-7P9EmELI1qA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/H025rGtjEIoZvc2-7P9EmELI1qA.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36960E7/1C0AE63EEB7711EB80DE7C1ED8A014CE/BBDB457C50B211ED936AB1EFF1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2c0f:4e00::/34
Signature Algorithm: sha256WithRSAEncryption
6b:f9:1a:3a:83:17:18:4b:41:41:a6:b1:46:4f:b7:04:65:96:
05:36:6a:8a:b4:b6:a3:f2:aa:72:d5:01:49:1f:f2:79:56:e8:
81:a2:3d:ce:7f:20:06:99:32:f6:90:73:ea:56:15:40:d9:0d:
b7:5d:6c:90:13:bf:51:02:4c:7d:70:54:b1:ab:13:0e:ab:ad:
20:b0:99:e5:d0:27:1a:86:22:24:92:b4:ea:7d:f5:de:09:04:
dc:1d:e2:c7:df:51:07:ec:23:61:a8:6d:ea:a1:e5:17:c4:31:
b7:e3:3e:7a:01:51:df:22:e9:b9:43:05:98:e8:ed:59:b3:01:
eb:3d:b1:a2:91:34:18:43:a0:bf:d3:31:e9:5c:83:83:19:14:
51:93:3c:94:7f:ca:e5:26:ec:79:05:51:2a:95:3b:74:2d:55:
a9:14:d5:8c:89:e9:71:9d:81:f3:eb:97:ae:25:1b:0f:4d:9f:
32:ab:f8:8e:d9:50:06:31:35:e5:9a:f1:b2:7c:26:3f:aa:78:
ee:cf:ba:36:8e:41:69:79:5c:06:5e:ae:f8:7f:93:0a:9b:5b:
6a:b8:bd:35:c0:ca:15:51:84:57:b0:df:af:2e:21:ad:96:b1:
f3:17:50:4b:e7:62:d7:da:6f:f3:89:b2:76:d9:19:e2:7b:dc:
55:ad:79:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 03:00:08 2024 by rpki-client on console-fra.rpki-client.org