Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36BBF41/14CDF8B210D611EE958C0F154AD9E6FC/E1F54F2E5FF511EFAE767E52762E951A.roa
File: E1F54F2E5FF511EFAE767E52762E951A.roa (raw, json)
Hash identifier: ZHyP78AP+q/JJtHtUW/HC4m2P265a+lBVZzkus9pUMQ=
Subject key identifier: 40:00:CC:5D:AD:64:9C:7C:DA:ED:1F:00:D4:90:32:F7:FF:F0:E5:45
Certificate issuer: /CN=F36BBF41AF/serialNumber=3F677F3A18ACAAE6C97F81F99AE8794654E0410B
Certificate serial: 0207
Authority key identifier: 3F:67:7F:3A:18:AC:AA:E6:C9:7F:81:F9:9A:E8:79:46:54:E0:41:0B
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/P2d_OhisqubJf4H5muh5RlTgQQs.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36BBF41/14CDF8B210D611EE958C0F154AD9E6FC/E1F54F2E5FF511EFAE767E52762E951A.roa
Signing time: Wed 21 Aug 2024 19:45:13 +0000
ROA not before: Wed 21 Aug 2024 19:45:10 +0000
ROA not after: Mon 21 Aug 2034 19:45:10 +0000
asID: 37105
IP address blocks: 2c0e:8000::/24 maxlen: 26
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36BBF41/14CDF8B210D611EE958C0F154AD9E6FC/P2d_OhisqubJf4H5muh5RlTgQQs.crl
rsync://rpki.afrinic.net/repository/member_repository/F36BBF41/14CDF8B210D611EE958C0F154AD9E6FC/P2d_OhisqubJf4H5muh5RlTgQQs.mft
rsync://rpki.afrinic.net/repository/afrinic/P2d_OhisqubJf4H5muh5RlTgQQs.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 519 (0x207)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36BBF41AF/serialNumber=3F677F3A18ACAAE6C97F81F99AE8794654E0410B
Validity
Not Before: Aug 21 19:45:10 2024 GMT
Not After : Aug 21 19:45:10 2034 GMT
Subject: CN=66c643c9-75d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:51:d8:26:b7:4a:d7:f0:ae:2e:72:3f:ba:42:
0d:14:3d:8a:7d:9c:33:10:1d:0d:99:8f:8a:15:d8:
35:8f:e8:91:2b:2d:7f:c8:0b:7e:8d:17:0f:7f:16:
4b:54:e1:4f:95:1b:c2:dd:ca:6e:84:d7:12:5a:3f:
e8:55:89:e2:20:29:17:9d:1d:42:74:5b:30:86:92:
f0:86:29:84:70:c0:7c:99:91:4e:2c:24:34:92:89:
a3:f4:cd:e9:f0:fd:b1:2b:ff:ce:d5:0a:f3:cb:49:
28:e1:ee:13:5a:ec:56:9b:9e:65:8a:22:34:c7:75:
0a:00:24:d6:b8:a1:1a:6a:7d:82:24:d5:a5:b1:80:
73:d7:58:68:e4:d4:4d:22:53:a2:be:67:b6:5d:09:
f2:95:b2:1d:fa:60:65:2d:66:8b:18:82:8c:b4:25:
db:fc:41:e4:1c:37:48:9c:8d:be:4d:43:b9:85:22:
07:7e:b7:39:f1:29:f0:fe:8c:09:f1:db:78:ca:4f:
73:73:50:4e:15:da:e6:d3:1c:70:14:fb:68:d7:8c:
f3:16:d5:03:ed:57:20:e1:f9:55:99:ae:f7:86:99:
0f:7a:1e:7c:ef:3f:57:ea:7b:23:4a:92:3f:23:ce:
51:24:f4:83:b7:b3:48:a3:d2:a9:7b:d7:09:a0:fc:
9b:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:00:CC:5D:AD:64:9C:7C:DA:ED:1F:00:D4:90:32:F7:FF:F0:E5:45
X509v3 Authority Key Identifier:
keyid:3F:67:7F:3A:18:AC:AA:E6:C9:7F:81:F9:9A:E8:79:46:54:E0:41:0B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36BBF41/14CDF8B210D611EE958C0F154AD9E6FC/P2d_OhisqubJf4H5muh5RlTgQQs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/P2d_OhisqubJf4H5muh5RlTgQQs.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36BBF41/14CDF8B210D611EE958C0F154AD9E6FC/E1F54F2E5FF511EFAE767E52762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2c0e:8000::/24
Signature Algorithm: sha256WithRSAEncryption
93:2a:53:d3:7c:5a:1a:59:a6:da:ab:4b:5e:b4:40:da:67:48:
60:2a:78:1a:e4:da:95:9e:c4:e5:8a:77:fc:92:90:1b:ce:b3:
f8:af:54:e2:7e:f4:6e:2d:34:f9:14:6b:2a:eb:d9:7b:28:01:
1e:82:26:d4:0e:91:f1:21:9c:84:4f:03:28:f4:b3:6f:45:c1:
de:45:5d:76:c4:74:38:e3:8c:27:fb:93:56:5f:b3:a0:4d:f2:
f1:8c:69:1d:5e:08:4a:66:68:24:60:9b:7f:14:90:2c:84:ad:
8f:c5:fd:da:60:5a:39:76:96:9e:4d:15:4b:2e:d0:a2:66:7f:
7d:ad:ca:c5:1c:ae:23:ec:bb:74:29:f9:89:e7:f2:8c:76:bc:
25:1b:4d:21:6c:e6:92:cc:f0:3b:62:b4:3b:b7:ed:5a:10:5a:
32:3d:e6:1f:fb:34:ad:74:18:94:f4:6c:a3:74:db:89:fb:25:
d6:3d:86:54:da:47:dd:f9:4f:c2:25:f3:02:a5:0d:4c:7b:0e:
9c:7e:1b:9c:3d:9f:c9:86:67:5a:44:a5:97:75:3f:52:fb:b3:
40:72:94:4a:b9:ce:bc:03:75:dd:c8:1a:ca:50:0a:29:26:4d:
25:ec:5b:67:6c:bb:db:f6:c0:cf:50:b5:83:a6:37:df:da:a3:
90:35:b8:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 03:52:58 2024 by rpki-client on console-fra.rpki-client.org