Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36BBF41/14CDF8B210D611EE958C0F154AD9E6FC/77525E5A1C2611EE8D4AC85C4AD9E6FC.roa
File: 77525E5A1C2611EE8D4AC85C4AD9E6FC.roa (raw, json)
Hash identifier: DpMrNiTjRZWKu4SpXJlLIPkKtzQPA3MM+9+EToM9kyg=
Subject key identifier: F1:DD:7A:BF:36:F0:2F:57:04:83:7E:AA:07:97:36:98:45:5E:35:A1
Certificate issuer: /CN=F36BBF41AF/serialNumber=3F677F3A18ACAAE6C97F81F99AE8794654E0410B
Certificate serial: 3E
Authority key identifier: 3F:67:7F:3A:18:AC:AA:E6:C9:7F:81:F9:9A:E8:79:46:54:E0:41:0B
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/P2d_OhisqubJf4H5muh5RlTgQQs.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36BBF41/14CDF8B210D611EE958C0F154AD9E6FC/77525E5A1C2611EE8D4AC85C4AD9E6FC.roa
Signing time: Thu 06 Jul 2023 17:56:43 +0000
ROA not before: Thu 06 Jul 2023 17:56:40 +0000
ROA not after: Wed 06 Jul 2033 17:56:40 +0000
asID: 37105
IP address blocks: 2c0f:ffd8::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36BBF41/14CDF8B210D611EE958C0F154AD9E6FC/P2d_OhisqubJf4H5muh5RlTgQQs.crl
rsync://rpki.afrinic.net/repository/member_repository/F36BBF41/14CDF8B210D611EE958C0F154AD9E6FC/P2d_OhisqubJf4H5muh5RlTgQQs.mft
rsync://rpki.afrinic.net/repository/afrinic/P2d_OhisqubJf4H5muh5RlTgQQs.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 62 (0x3e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36BBF41AF/serialNumber=3F677F3A18ACAAE6C97F81F99AE8794654E0410B
Validity
Not Before: Jul 6 17:56:40 2023 GMT
Not After : Jul 6 17:56:40 2033 GMT
Subject: CN=64a7005b-fb13
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:5d:05:c6:29:10:c0:72:c2:be:bf:c0:59:91:
e9:3e:64:1b:ce:3e:2d:2d:80:f1:d6:7a:c7:6c:ca:
26:ca:62:e6:f5:58:8e:fa:1e:01:c2:7b:fc:9f:fb:
66:e3:f4:55:b0:c0:2e:48:7f:66:b5:be:71:69:40:
50:1f:c5:0e:4b:79:46:e7:f9:e8:36:5b:06:00:34:
c7:66:9e:5b:9f:cc:ad:a5:b9:a7:f7:ec:f8:84:9b:
d2:44:3d:f0:4a:77:c6:a5:ca:a8:1e:13:49:90:b3:
5d:f8:8f:61:e3:8c:7e:76:92:25:9a:d3:05:f5:f3:
aa:d3:1f:20:cb:8a:1e:27:23:cc:22:85:30:ba:0b:
6d:89:30:09:4a:f6:fd:c4:2d:20:11:4f:63:20:4e:
95:1d:c0:5c:ea:fc:ea:e5:d8:71:c4:35:19:13:55:
f9:10:fe:e8:63:d8:ed:22:11:3f:bf:3a:2d:0d:3b:
c9:6d:55:41:40:1d:22:c5:a6:90:42:0f:6f:18:eb:
8f:ff:b1:2d:3c:4f:10:49:a4:9d:ff:a1:5a:df:d0:
38:87:d2:07:85:e8:a2:54:d7:f9:bd:5c:d1:86:a0:
f9:93:83:01:f6:ba:4f:6e:e3:7b:a2:2f:14:eb:e8:
c9:97:9e:c6:c0:77:28:79:e7:ce:e5:5b:4f:ac:da:
c8:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:DD:7A:BF:36:F0:2F:57:04:83:7E:AA:07:97:36:98:45:5E:35:A1
X509v3 Authority Key Identifier:
keyid:3F:67:7F:3A:18:AC:AA:E6:C9:7F:81:F9:9A:E8:79:46:54:E0:41:0B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36BBF41/14CDF8B210D611EE958C0F154AD9E6FC/P2d_OhisqubJf4H5muh5RlTgQQs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/P2d_OhisqubJf4H5muh5RlTgQQs.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36BBF41/14CDF8B210D611EE958C0F154AD9E6FC/77525E5A1C2611EE8D4AC85C4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2c0f:ffd8::/32
Signature Algorithm: sha256WithRSAEncryption
0f:09:d4:93:b4:53:fd:d6:c6:08:51:32:7e:4f:a5:ad:ea:09:
9e:56:0b:33:fb:47:08:b8:1d:81:1f:34:b3:b9:81:be:bf:39:
5a:ea:4c:33:73:f1:22:a6:04:9b:b2:d2:3f:28:2d:8e:fe:74:
56:28:39:5a:9b:47:9d:56:22:7c:95:a1:6a:51:96:a1:50:95:
0d:93:bf:5b:92:b4:49:03:d1:24:df:7a:17:8c:af:98:3f:f8:
15:fa:5d:c2:fc:a1:81:de:e4:66:af:a4:9b:75:9e:54:fe:cc:
1c:71:11:27:84:d2:70:13:2d:52:72:3f:78:cb:8b:9f:ce:30:
5b:38:3c:24:3a:de:1e:86:77:09:9b:56:57:f9:0a:d6:64:77:
19:86:79:80:f0:01:8f:c9:52:a3:22:8a:c5:f9:51:18:08:e9:
67:4c:d4:03:6a:1a:98:fa:d2:29:d9:48:2a:07:7b:6c:c0:93:
32:d8:c5:fb:a0:8d:37:75:7d:af:85:2b:3d:63:39:03:02:6f:
7c:43:e3:c8:c4:5b:22:9d:e6:7e:1a:f6:39:b1:98:ca:68:bb:
24:c5:fe:e1:1f:80:f8:a0:d6:cd:5c:6f:1f:7c:e0:cf:6d:50:
3e:94:e9:fc:c5:ab:27:0a:b6:2f:cc:a8:de:3a:7a:3e:33:fc:
ac:b2:fd:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:05:22 2024 by rpki-client on console-ams.rpki-client.org