Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F369E9B3/EE40A58A558C11EFAFCCFBA0762E951A/8BBDC91CA5CB11EF89203195762E951A.roa
File: 8BBDC91CA5CB11EF89203195762E951A.roa (raw, json)
Hash identifier: 3Qc/9VmFuR+UWsbuC4bLXKNHWdTAllxqOJ24DrkMHH8=
Subject key identifier: 80:1F:A2:82:11:AF:A5:48:71:80:20:FA:FC:38:6D:04:C2:53:1A:B7
Certificate issuer: /CN=F369E9B3AF/serialNumber=F574B16BA86AD96E00DEDACD6341F9A824EA47A7
Certificate serial: 71
Authority key identifier: F5:74:B1:6B:A8:6A:D9:6E:00:DE:DA:CD:63:41:F9:A8:24:EA:47:A7
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/9XSxa6hq2W4A3trNY0H5qCTqR6c.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F369E9B3/EE40A58A558C11EFAFCCFBA0762E951A/8BBDC91CA5CB11EF89203195762E951A.roa
Signing time: Mon 18 Nov 2024 16:38:31 +0000
ROA not before: Mon 18 Nov 2024 16:38:28 +0000
ROA not after: Mon 31 Mar 2025 16:38:28 +0000
asID: 329472
IP address blocks: 2c0f:54c0::/32 maxlen: 48
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F369E9B3/EE40A58A558C11EFAFCCFBA0762E951A/9XSxa6hq2W4A3trNY0H5qCTqR6c.crl
rsync://rpki.afrinic.net/repository/member_repository/F369E9B3/EE40A58A558C11EFAFCCFBA0762E951A/9XSxa6hq2W4A3trNY0H5qCTqR6c.mft
rsync://rpki.afrinic.net/repository/afrinic/9XSxa6hq2W4A3trNY0H5qCTqR6c.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 26 Nov 2024 00:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 113 (0x71)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F369E9B3AF/serialNumber=F574B16BA86AD96E00DEDACD6341F9A824EA47A7
Validity
Not Before: Nov 18 16:38:28 2024 GMT
Not After : Mar 31 16:38:28 2025 GMT
Subject: CN=673b6d87-7b42
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:3c:cf:74:9f:7c:94:d2:cc:07:9d:bc:1d:10:
9b:c8:fe:81:5c:f0:14:f1:e3:43:70:d5:c7:79:59:
96:d9:9b:e3:64:24:a9:7a:81:23:89:25:b6:11:73:
bc:d3:ff:8c:0c:59:c6:f8:4a:f0:86:20:d7:d1:cd:
ab:2f:fc:d0:dd:f4:3a:74:84:22:c5:df:be:df:2b:
f3:8e:be:85:47:73:8f:bc:ae:d4:61:a2:ac:6c:ab:
8f:c0:11:98:57:91:89:d0:d4:a8:1f:42:d9:3e:35:
18:81:55:64:94:2e:29:f2:92:fc:51:e9:a0:01:63:
13:87:78:7d:01:9e:be:7b:87:5c:28:92:46:d0:8a:
b8:32:b7:a8:74:16:9a:d3:86:8f:5c:9e:59:bb:c6:
66:19:35:92:0a:f3:fa:a3:92:db:31:2d:3c:a3:e2:
9a:ca:7b:fa:26:fe:4f:2b:3a:dd:b3:b7:5d:c4:dc:
6b:93:99:f2:d3:31:01:85:f7:27:5f:46:44:1c:1f:
d5:c8:da:8e:77:1d:d3:27:19:ae:eb:59:43:73:6c:
7e:d6:91:af:ec:46:b5:91:06:6d:ee:7c:e7:61:f8:
bd:b5:7d:16:3b:28:b8:73:cc:c6:7f:ea:90:8d:a5:
8c:8d:33:ea:d9:b8:20:a2:b7:09:f9:44:d3:59:31:
9a:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:1F:A2:82:11:AF:A5:48:71:80:20:FA:FC:38:6D:04:C2:53:1A:B7
X509v3 Authority Key Identifier:
keyid:F5:74:B1:6B:A8:6A:D9:6E:00:DE:DA:CD:63:41:F9:A8:24:EA:47:A7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F369E9B3/EE40A58A558C11EFAFCCFBA0762E951A/9XSxa6hq2W4A3trNY0H5qCTqR6c.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/9XSxa6hq2W4A3trNY0H5qCTqR6c.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F369E9B3/EE40A58A558C11EFAFCCFBA0762E951A/8BBDC91CA5CB11EF89203195762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2c0f:54c0::/32
Signature Algorithm: sha256WithRSAEncryption
92:ef:01:4b:e2:38:c0:3c:02:31:5a:77:d9:de:41:5c:b7:be:
65:f1:22:ff:ed:9a:86:a7:36:ff:84:e0:ba:43:e3:32:86:d9:
8a:a4:35:a8:18:b2:34:a7:cf:30:fb:ac:a7:f8:89:f3:d2:34:
34:a3:80:73:59:a1:44:12:ef:63:4c:d8:f5:25:38:59:2a:5b:
90:4e:d3:bf:cc:6a:6c:e7:0a:f0:62:a7:c6:fe:84:88:c2:20:
dc:80:7b:8b:9d:50:2b:41:0d:1f:e8:13:76:03:f0:a7:f4:20:
22:fd:b7:1e:fe:86:cd:17:72:d5:f3:75:97:1a:a2:b3:25:b6:
a6:c9:19:b6:cf:2d:50:3b:bb:8a:cb:7e:3d:7f:c3:53:15:25:
11:63:f4:c6:da:df:ab:80:15:d8:0b:32:4d:ef:06:af:5f:3c:
af:3e:84:26:b7:b2:77:4d:ac:0c:1a:f4:71:69:1b:0c:71:27:
1f:8f:e4:5b:14:8f:3a:36:64:fd:38:d2:2d:20:79:ae:b0:8a:
c6:2e:ca:90:5d:61:c0:9d:c4:cd:50:1a:aa:39:12:6e:59:ae:
69:73:c3:8c:14:d0:e6:4f:b0:05:18:28:3f:82:fe:f1:b1:f9:
7a:16:4f:cf:61:3e:18:73:44:c6:91:7d:a8:44:33:c9:52:85:
62:3c:aa:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Nov 24 05:19:32 2024 by rpki-client on console-ams.rpki-client.org