Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36CA351/D8E6C5EAC2E611EE8B90697B775412E6/4AC08F14C2EE11EEB4E3D987775412E6.roa
File: 4AC08F14C2EE11EEB4E3D987775412E6.roa (raw, json)
Hash identifier: bO1LEM+FN2wwchIy92tn+HGmudyU/GUd3/xYb5guhGo=
Subject key identifier: 2D:10:34:65:97:67:72:F7:5A:5D:CF:15:8F:D0:A7:73:E6:9E:0A:38
Certificate issuer: /CN=F36CA351AF/serialNumber=58DA3BE331A612AAAE4F6A30637704063AC3DD42
Certificate serial: 0D
Authority key identifier: 58:DA:3B:E3:31:A6:12:AA:AE:4F:6A:30:63:77:04:06:3A:C3:DD:42
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/WNo74zGmEqquT2owY3cEBjrD3UI.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36CA351/D8E6C5EAC2E611EE8B90697B775412E6/4AC08F14C2EE11EEB4E3D987775412E6.roa
Signing time: Sat 03 Feb 2024 23:45:21 +0000
ROA not before: Sun 04 Feb 2024 23:45:17 +0000
ROA not after: Tue 31 Dec 2024 23:45:17 +0000
asID: 328988
IP address blocks: 2c0f:6f00::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36CA351/D8E6C5EAC2E611EE8B90697B775412E6/WNo74zGmEqquT2owY3cEBjrD3UI.crl
rsync://rpki.afrinic.net/repository/member_repository/F36CA351/D8E6C5EAC2E611EE8B90697B775412E6/WNo74zGmEqquT2owY3cEBjrD3UI.mft
rsync://rpki.afrinic.net/repository/afrinic/WNo74zGmEqquT2owY3cEBjrD3UI.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13 (0xd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36CA351AF/serialNumber=58DA3BE331A612AAAE4F6A30637704063AC3DD42
Validity
Not Before: Feb 4 23:45:17 2024 GMT
Not After : Dec 31 23:45:17 2024 GMT
Subject: CN=65bed011-6e51
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:8e:05:d6:06:a6:77:89:39:84:8f:a4:0d:ad:
43:de:dd:f9:eb:ed:a7:de:bd:1b:aa:a2:82:72:2a:
28:e9:70:1d:7e:b5:c0:22:43:1a:f8:91:0b:9e:ae:
b2:78:a4:e3:40:b1:b2:7f:a3:58:27:ff:db:cb:b0:
98:a3:bd:ac:20:1f:2b:98:8e:00:d0:f6:23:15:d1:
e9:7c:da:80:ce:31:2d:7a:19:4c:e3:99:fb:ec:bd:
58:21:85:94:71:ff:b5:45:71:88:95:4a:49:6b:ec:
fc:f4:1c:c3:c9:39:04:b1:a7:b0:b4:d8:a3:12:9f:
0a:68:f9:08:74:0a:fb:7e:ea:2a:49:bd:1c:20:5d:
4d:15:2a:56:d5:71:e5:fe:b6:cc:8e:63:e1:fb:ac:
79:0a:f0:78:8a:82:99:13:1c:bd:0f:ac:0d:24:a2:
c5:5b:7c:2a:7b:b7:3e:f4:50:99:3e:8d:0c:86:2a:
00:6c:7e:63:57:e7:2d:36:73:b6:99:84:1e:3d:42:
48:c9:86:41:26:a9:b5:bb:0c:32:c0:6c:ed:5f:bf:
cc:57:e0:60:04:2e:43:46:2c:17:26:d5:51:0f:bc:
c7:8b:ec:37:ca:b2:d8:fd:a1:dd:47:a3:81:93:cc:
b3:46:dd:95:e5:81:8c:25:dd:91:45:98:58:5c:8b:
bb:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:10:34:65:97:67:72:F7:5A:5D:CF:15:8F:D0:A7:73:E6:9E:0A:38
X509v3 Authority Key Identifier:
keyid:58:DA:3B:E3:31:A6:12:AA:AE:4F:6A:30:63:77:04:06:3A:C3:DD:42
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36CA351/D8E6C5EAC2E611EE8B90697B775412E6/WNo74zGmEqquT2owY3cEBjrD3UI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/WNo74zGmEqquT2owY3cEBjrD3UI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36CA351/D8E6C5EAC2E611EE8B90697B775412E6/4AC08F14C2EE11EEB4E3D987775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2c0f:6f00::/32
Signature Algorithm: sha256WithRSAEncryption
81:f1:ee:35:69:cf:e5:ed:86:85:ec:be:55:1f:18:f8:d0:55:
3f:2e:8c:c7:94:08:db:0d:ee:d0:bd:a2:58:e5:32:a8:1a:f8:
ff:10:64:b2:bb:8d:ba:e3:bd:67:9d:a0:89:a5:bb:76:f8:b4:
87:4b:3d:08:89:fd:2e:a8:f4:4b:96:9a:0c:76:0d:6b:12:70:
30:b6:01:b2:ea:e0:e6:01:77:57:32:a3:d6:8f:3d:3b:ce:76:
8f:06:3b:93:40:fa:5c:c7:b2:58:e7:35:7c:91:57:71:a4:25:
52:77:ba:31:4f:f2:f0:2e:f9:54:8e:87:27:66:58:78:8f:90:
95:e7:09:1c:ee:4f:21:ce:4b:48:9e:e4:53:23:05:22:96:a0:
2c:e5:85:6b:33:c8:95:ab:c7:b4:86:ff:3a:d4:d7:b1:82:78:
92:6d:5e:88:6b:ba:9c:28:44:26:f8:88:c3:a9:ce:35:bd:5d:
77:62:ed:46:ae:b2:36:9f:2a:7b:cf:d6:b9:b1:4f:26:9e:ac:
99:60:a5:a7:31:4f:07:49:54:c7:50:54:e5:bb:72:14:84:7d:
31:07:79:29:7c:92:9d:f1:da:64:27:7d:99:2d:1e:0a:7f:aa:
7a:1c:5b:cd:e5:d0:01:a5:a4:c5:6d:30:e0:5c:5c:c0:cd:e0:
6b:90:0a:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 03:52:59 2024 by rpki-client on console-fra.rpki-client.org