Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36C7A8F/0D485FCA0A9A11EE955F44294AD9E6FC/03B9356C0AAC11EE9989895D4AD9E6FC.roa
File: 03B9356C0AAC11EE9989895D4AD9E6FC.roa (raw, json)
Hash identifier: GvzLodpAjODjSMFS5AA5iBQ1yRBDjLhq9pR5HhpCZGw=
Subject key identifier: C2:CD:DC:97:30:E1:AB:C4:51:9B:DD:4D:76:75:38:6C:14:02:7A:17
Certificate issuer: /CN=F36C7A8FAF/serialNumber=E99E81FC8FE487C2F84DC9AFADC1FCDBB4029AF9
Certificate serial: 0F
Authority key identifier: E9:9E:81:FC:8F:E4:87:C2:F8:4D:C9:AF:AD:C1:FC:DB:B4:02:9A:F9
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/6Z6B_I_kh8L4TcmvrcH827QCmvk.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36C7A8F/0D485FCA0A9A11EE955F44294AD9E6FC/03B9356C0AAC11EE9989895D4AD9E6FC.roa
Signing time: Wed 14 Jun 2023 12:07:21 +0000
ROA not before: Wed 14 Jun 2023 12:07:17 +0000
ROA not after: Fri 13 Jun 2025 12:07:17 +0000
asID: 36959
IP address blocks: 2c0f:feb8::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36C7A8F/0D485FCA0A9A11EE955F44294AD9E6FC/6Z6B_I_kh8L4TcmvrcH827QCmvk.crl
rsync://rpki.afrinic.net/repository/member_repository/F36C7A8F/0D485FCA0A9A11EE955F44294AD9E6FC/6Z6B_I_kh8L4TcmvrcH827QCmvk.mft
rsync://rpki.afrinic.net/repository/afrinic/6Z6B_I_kh8L4TcmvrcH827QCmvk.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 15 (0xf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36C7A8FAF/serialNumber=E99E81FC8FE487C2F84DC9AFADC1FCDBB4029AF9
Validity
Not Before: Jun 14 12:07:17 2023 GMT
Not After : Jun 13 12:07:17 2025 GMT
Subject: CN=6489ad79-e688
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:89:f5:97:11:91:fe:ba:e7:22:91:7b:b7:20:
76:97:a2:c5:24:6e:17:c3:9e:8d:f4:b6:41:77:e6:
0a:93:6a:18:f8:c8:db:b2:ee:9a:ae:87:25:0b:c9:
0b:dd:53:7f:99:09:e9:c1:f1:23:77:71:b7:cb:c9:
38:e4:77:59:51:d1:a2:89:62:2f:5f:be:62:b9:19:
cd:29:ce:8c:ef:2a:71:fa:a8:96:50:5e:82:a3:9a:
17:a7:bf:73:f2:ff:9f:b8:94:5c:a4:21:f7:8a:91:
e5:37:23:fa:3c:e1:f4:91:f1:d4:d2:cd:5d:47:81:
82:36:69:8b:d2:19:32:91:38:56:1f:95:fe:08:ca:
78:1c:e5:85:98:7c:4d:bf:31:a2:2a:e6:b5:9f:cf:
ae:c0:f8:04:75:4d:a9:63:50:82:36:41:6e:01:13:
fc:01:32:56:e4:84:0e:af:55:ab:f6:f0:42:3f:4f:
bb:bd:3b:83:05:46:e5:ef:51:1f:da:12:9f:69:d4:
aa:ac:cb:76:35:2a:15:7a:b0:e2:66:6b:5f:8a:0c:
1b:be:b6:14:71:04:c1:64:b6:05:ca:9f:8f:4f:7d:
f4:03:38:7d:66:c1:35:5b:5a:5e:ca:9f:12:cd:98:
31:41:1b:54:73:58:6f:e6:e3:3b:60:77:1e:1c:f2:
49:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:CD:DC:97:30:E1:AB:C4:51:9B:DD:4D:76:75:38:6C:14:02:7A:17
X509v3 Authority Key Identifier:
keyid:E9:9E:81:FC:8F:E4:87:C2:F8:4D:C9:AF:AD:C1:FC:DB:B4:02:9A:F9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36C7A8F/0D485FCA0A9A11EE955F44294AD9E6FC/6Z6B_I_kh8L4TcmvrcH827QCmvk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/6Z6B_I_kh8L4TcmvrcH827QCmvk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36C7A8F/0D485FCA0A9A11EE955F44294AD9E6FC/03B9356C0AAC11EE9989895D4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2c0f:feb8::/32
Signature Algorithm: sha256WithRSAEncryption
50:a5:34:8f:01:9a:4b:dc:22:10:ef:86:32:e9:94:23:7c:82:
1b:db:2e:d9:b6:d4:5a:fa:26:fb:35:85:c5:3d:94:42:16:ab:
6d:0b:c0:84:d2:9e:c6:e2:08:9e:f8:af:6d:c9:4e:ec:0d:01:
88:10:d7:21:83:b3:55:23:b1:0e:b5:56:20:ec:ad:f2:96:04:
4a:ad:0b:eb:9a:fa:72:cd:29:e6:58:49:98:b0:75:e2:ad:e1:
93:6c:a4:4b:3a:8a:7c:62:4c:5c:fe:e3:0d:98:57:d1:d5:c3:
49:d8:52:b4:46:99:b6:ea:b8:32:35:d6:f1:45:a6:86:ea:b3:
02:23:73:bf:3f:cb:7a:73:03:6c:05:76:14:b1:ce:8a:3b:38:
60:a8:1c:a1:b9:d2:86:b2:87:e4:a3:9a:a7:33:f7:d0:bb:6e:
01:15:9e:89:ad:6a:5e:a8:5f:f7:8a:5d:3e:83:bc:51:c1:d3:
c6:96:1a:db:59:28:04:78:0e:2b:2f:b7:44:a7:4b:fd:50:70:
cd:70:82:bb:3d:d9:65:c7:6b:3f:34:e4:92:63:2f:2a:69:04:
cd:e4:46:06:69:80:20:09:79:2b:b9:07:46:f1:54:22:fb:05:
01:cf:d0:10:4c:4f:0c:0d:b2:04:0c:b5:27:15:19:d4:26:7c:
76:dc:85:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 03:52:59 2024 by rpki-client on console-fra.rpki-client.org