Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F369DB5E/D1EA5914BF3111EDA7E717D0F1222468/48D1B612F7D011EEB7ACF12A017001B1.roa
File: 48D1B612F7D011EEB7ACF12A017001B1.roa (raw, json)
Hash identifier: MO6EQKtkkq85RZaTVkomcZUCuBadwthtdCSH79/DaIw=
Subject key identifier: 17:FC:AB:58:CE:56:A3:46:C7:D7:F3:DF:DF:D6:68:53:84:8F:40:B5
Certificate issuer: /CN=F369DB5EAF/serialNumber=D3E2E0BCEB61FB9C4527826E610D467699D63E14
Certificate serial: 01A8
Authority key identifier: D3:E2:E0:BC:EB:61:FB:9C:45:27:82:6E:61:0D:46:76:99:D6:3E:14
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/0-LgvOth-5xFJ4JuYQ1GdpnWPhQ.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F369DB5E/D1EA5914BF3111EDA7E717D0F1222468/48D1B612F7D011EEB7ACF12A017001B1.roa
Signing time: Thu 11 Apr 2024 06:54:04 +0000
ROA not before: Thu 11 Apr 2024 06:54:01 +0000
ROA not after: Thu 30 Apr 2043 06:54:01 +0000
asID: 30988
IP address blocks: 2c0f:fc60::/31 maxlen: 48
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F369DB5E/D1EA5914BF3111EDA7E717D0F1222468/0-LgvOth-5xFJ4JuYQ1GdpnWPhQ.crl
rsync://rpki.afrinic.net/repository/member_repository/F369DB5E/D1EA5914BF3111EDA7E717D0F1222468/0-LgvOth-5xFJ4JuYQ1GdpnWPhQ.mft
rsync://rpki.afrinic.net/repository/afrinic/0-LgvOth-5xFJ4JuYQ1GdpnWPhQ.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 23 May 2024 00:04:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 424 (0x1a8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F369DB5EAF/serialNumber=D3E2E0BCEB61FB9C4527826E610D467699D63E14
Validity
Not Before: Apr 11 06:54:01 2024 GMT
Not After : Apr 30 06:54:01 2043 GMT
Subject: CN=6617890c-51c3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:f7:23:7c:bb:85:2f:20:4d:a5:50:c1:13:a5:
e7:ee:f2:05:28:28:ae:a2:dd:4a:95:d8:22:0c:37:
f0:fc:a3:f8:01:ce:0e:00:ef:fd:41:86:28:f1:db:
1a:22:1c:24:8a:1b:6d:94:66:84:99:3d:11:4e:6c:
17:76:c4:8d:1e:28:4b:09:64:84:8e:6b:46:10:5c:
40:81:73:bf:a3:0b:d9:25:9d:dd:91:26:69:c7:08:
fe:22:cf:d8:60:1d:48:ee:cb:50:a7:23:e6:d4:f2:
f8:db:6f:69:2a:19:87:6e:31:10:14:78:b1:ff:c2:
31:73:f5:b6:f2:39:32:b0:5d:86:fa:72:a0:76:99:
62:f2:02:7d:8b:83:7a:76:f2:55:1e:4d:79:68:c7:
a1:b1:28:1f:10:8b:11:d6:68:c9:8b:58:49:f6:a6:
a3:2b:d4:c0:3f:1a:e7:3a:7e:f0:9b:f5:f7:37:44:
9b:6e:0b:05:5a:69:9b:5e:ff:c5:69:c6:eb:6a:48:
4f:6b:03:02:19:dc:d6:ea:6d:11:4d:69:42:bc:f1:
10:db:73:24:f7:b3:c1:8f:2e:fe:0e:cb:16:43:72:
28:15:79:f4:6d:c2:96:6a:02:97:1f:15:18:59:ee:
ed:e5:5a:9b:fa:c8:05:b2:e8:47:53:e7:fc:a7:55:
a5:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:FC:AB:58:CE:56:A3:46:C7:D7:F3:DF:DF:D6:68:53:84:8F:40:B5
X509v3 Authority Key Identifier:
keyid:D3:E2:E0:BC:EB:61:FB:9C:45:27:82:6E:61:0D:46:76:99:D6:3E:14
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F369DB5E/D1EA5914BF3111EDA7E717D0F1222468/0-LgvOth-5xFJ4JuYQ1GdpnWPhQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/0-LgvOth-5xFJ4JuYQ1GdpnWPhQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F369DB5E/D1EA5914BF3111EDA7E717D0F1222468/48D1B612F7D011EEB7ACF12A017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2c0f:fc60::/31
Signature Algorithm: sha256WithRSAEncryption
79:20:56:d6:cc:e0:ba:1a:0d:95:71:55:0d:b3:0a:9b:74:9c:
37:8d:46:ef:42:a5:df:72:f1:4a:aa:78:5e:42:f1:f3:f9:60:
03:1e:18:1a:1d:b2:d6:82:ac:ca:bd:b8:6c:9c:18:49:d1:eb:
cc:2e:6e:65:2b:b1:8c:6e:45:2f:00:95:4e:86:0f:95:75:86:
3e:d1:3c:fc:c0:4b:e0:d2:ff:7f:82:f5:fb:41:b0:1d:33:ee:
79:3c:73:3d:56:03:09:b6:d0:f3:4e:62:fb:d6:ca:4a:29:03:
86:e8:a3:ca:d5:de:f2:e4:d6:60:4c:4c:24:a9:a4:ef:5b:df:
f4:31:34:d8:87:9b:32:de:fc:e2:1c:62:9f:e0:30:c9:de:d4:
a5:98:d7:d7:86:98:a0:7a:f7:5c:04:08:4f:9e:fd:1d:48:64:
f1:76:6b:87:c0:e5:96:3e:cf:3a:8f:ce:97:32:e1:d7:e1:b4:
35:cf:89:f1:ee:a8:da:60:ea:47:d0:40:c8:18:f9:cd:e9:77:
90:37:47:e5:88:26:67:3f:e5:0e:13:ce:f0:3b:00:1b:8c:76:
59:3c:22:c3:0a:10:1e:69:ef:5e:d2:b8:86:e4:4a:de:16:8b:
97:3e:51:9f:37:f9:cd:42:34:e4:0b:b5:29:f4:2c:83:04:39:
28:33:1a:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 21 03:39:22 2024 by rpki-client on console-ams.rpki-client.org