Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3696E5F/3DA3D320189711ED8C936BD2F1222468/55C5598E732611EEB932E0714AD9E6FC.roa
File: 55C5598E732611EEB932E0714AD9E6FC.roa (raw, json)
Hash identifier: UYbbzhlk9KgbwGKtzI9mBTFfbCZIlddNCw7o5BaYOTw=
Subject key identifier: 5E:5F:52:89:1C:70:2E:7F:3E:E6:76:2E:E2:12:BF:71:DA:33:CE:68
Certificate issuer: /CN=F3696E5FAF/serialNumber=5375CF4CA1643B08C341BDA79D8BE105BDC3C48B
Certificate serial: 0208
Authority key identifier: 53:75:CF:4C:A1:64:3B:08:C3:41:BD:A7:9D:8B:E1:05:BD:C3:C4:8B
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/U3XPTKFkOwjDQb2nnYvhBb3DxIs.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3696E5F/3DA3D320189711ED8C936BD2F1222468/55C5598E732611EEB932E0714AD9E6FC.roa
Signing time: Wed 25 Oct 2023 11:04:58 +0000
ROA not before: Wed 25 Oct 2023 11:04:48 +0000
ROA not after: Fri 25 Oct 2030 11:04:48 +0000
asID: 25818
IP address blocks: 2001:4210::/32 maxlen: 40
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3696E5F/3DA3D320189711ED8C936BD2F1222468/U3XPTKFkOwjDQb2nnYvhBb3DxIs.crl
rsync://rpki.afrinic.net/repository/member_repository/F3696E5F/3DA3D320189711ED8C936BD2F1222468/U3XPTKFkOwjDQb2nnYvhBb3DxIs.mft
rsync://rpki.afrinic.net/repository/afrinic/U3XPTKFkOwjDQb2nnYvhBb3DxIs.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 520 (0x208)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3696E5FAF/serialNumber=5375CF4CA1643B08C341BDA79D8BE105BDC3C48B
Validity
Not Before: Oct 25 11:04:48 2023 GMT
Not After : Oct 25 11:04:48 2030 GMT
Subject: CN=6538f65a-850d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:29:63:b4:cf:46:f1:92:c7:40:ec:a9:31:43:
d2:a2:d4:d1:b2:1e:b8:70:cc:01:05:a7:2b:b3:6a:
d7:e3:2c:13:7e:4a:bb:2f:6f:57:3b:a8:84:79:c1:
fe:7e:bd:4e:0d:54:4a:5a:39:1e:7d:dd:cf:a9:ce:
fd:3b:87:f3:6b:62:50:26:33:4a:58:78:f8:52:7e:
40:85:5a:0a:94:27:f4:28:9a:91:80:c5:2d:bb:70:
6c:dd:f4:1a:a2:0b:08:7c:fe:4d:1a:d1:1f:39:3c:
28:d9:8b:7b:32:cf:a0:04:28:ea:8c:83:f3:11:22:
e5:36:29:b3:89:a2:c5:de:c3:e7:7c:29:0d:6a:1f:
47:fb:cd:68:b0:c0:fe:ed:8c:99:bd:be:16:0c:52:
13:e7:3c:4e:ad:5f:52:a6:d1:c2:60:7a:55:4a:de:
6a:fb:c6:c1:8d:cf:ca:d4:3c:61:dd:a0:71:2c:3c:
56:6f:d1:da:11:af:83:6a:d0:7b:e8:96:5e:2e:7c:
8c:54:94:ad:6f:f0:cb:5a:1a:82:fb:3b:19:9b:83:
34:26:82:6f:74:a0:44:a4:52:29:13:0e:e2:e8:1c:
cd:ec:41:28:2a:d3:db:f7:41:21:91:ee:2a:4b:bd:
95:35:fc:75:ec:e6:60:27:71:09:8c:52:eb:a8:92:
c9:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:5F:52:89:1C:70:2E:7F:3E:E6:76:2E:E2:12:BF:71:DA:33:CE:68
X509v3 Authority Key Identifier:
keyid:53:75:CF:4C:A1:64:3B:08:C3:41:BD:A7:9D:8B:E1:05:BD:C3:C4:8B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3696E5F/3DA3D320189711ED8C936BD2F1222468/U3XPTKFkOwjDQb2nnYvhBb3DxIs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/U3XPTKFkOwjDQb2nnYvhBb3DxIs.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3696E5F/3DA3D320189711ED8C936BD2F1222468/55C5598E732611EEB932E0714AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:4210::/32
Signature Algorithm: sha256WithRSAEncryption
97:54:23:7b:3a:9b:f5:48:1e:3a:79:f1:1a:a8:6a:d0:a3:f5:
5e:7f:b2:f4:b1:a6:c4:34:ff:93:95:34:27:9f:63:de:f2:3c:
93:4d:c6:70:7f:77:c3:ef:86:16:8c:25:cf:65:17:ef:4b:7a:
c6:b9:24:f2:da:71:7c:74:13:83:42:59:69:82:a0:5a:fd:8c:
79:8a:61:bf:2b:76:6a:3d:f6:78:f2:ff:38:0d:d0:00:19:1b:
a7:22:2d:ab:38:6c:16:01:fc:0d:10:c4:e1:c3:74:23:05:6f:
97:51:f0:81:02:1e:85:cf:64:fb:85:02:5f:93:18:6c:9a:05:
8e:2d:be:57:e9:c6:38:5e:f6:57:a2:0d:05:3c:6e:1b:d1:a2:
9b:80:f4:cc:0b:2f:14:de:98:de:5a:a8:6e:ba:e5:4b:57:65:
aa:ce:57:b2:85:ef:bd:74:e0:b1:10:68:0b:48:40:88:ef:b9:
21:3d:90:1b:a2:f7:1f:7d:e1:f9:f9:d1:20:a3:d2:f1:9f:d6:
4b:a5:31:8b:68:1c:eb:7b:04:99:da:f3:46:63:94:94:4b:4d:
64:b7:71:18:67:df:0c:d5:ed:c2:79:7d:91:a4:c9:c8:7e:93:
54:0c:1c:8c:01:62:be:80:49:34:03:5f:11:5c:5d:c5:79:99:
1f:5c:8c:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 03:52:57 2024 by rpki-client on console-fra.rpki-client.org