Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36CF917/0D7561E6E27811ECBD71BBD6F1222468/253CF3E43B4F11EE852A4B2D4AD9E6FC.roa
File: 253CF3E43B4F11EE852A4B2D4AD9E6FC.roa (raw, json)
Hash identifier: RlEOtpSGeYrPaVSZP6LI/5abPPjoVjrVCd9agjhwB9Q=
Subject key identifier: BD:9E:B7:AE:18:2E:7D:61:01:E0:60:5D:64:D1:72:CF:70:73:3D:26
Certificate issuer: /CN=F36CF917AF/serialNumber=5A98A11302BA1C49AABC60D502CB750C599107C3
Certificate serial: 01D6
Authority key identifier: 5A:98:A1:13:02:BA:1C:49:AA:BC:60:D5:02:CB:75:0C:59:91:07:C3
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/WpihEwK6HEmqvGDVAst1DFmRB8M.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36CF917/0D7561E6E27811ECBD71BBD6F1222468/253CF3E43B4F11EE852A4B2D4AD9E6FC.roa
Signing time: Tue 15 Aug 2023 09:36:01 +0000
ROA not before: Tue 15 Aug 2023 09:35:57 +0000
ROA not after: Sun 15 Aug 2032 09:35:57 +0000
asID: 36913
IP address blocks: 2c0f:fc58::/32 maxlen: 64
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36CF917/0D7561E6E27811ECBD71BBD6F1222468/WpihEwK6HEmqvGDVAst1DFmRB8M.crl
rsync://rpki.afrinic.net/repository/member_repository/F36CF917/0D7561E6E27811ECBD71BBD6F1222468/WpihEwK6HEmqvGDVAst1DFmRB8M.mft
rsync://rpki.afrinic.net/repository/afrinic/WpihEwK6HEmqvGDVAst1DFmRB8M.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 470 (0x1d6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36CF917AF/serialNumber=5A98A11302BA1C49AABC60D502CB750C599107C3
Validity
Not Before: Aug 15 09:35:57 2023 GMT
Not After : Aug 15 09:35:57 2032 GMT
Subject: CN=64db4701-f6d9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:c9:15:78:84:9b:21:02:83:32:b9:11:24:06:
e8:89:07:81:41:fd:73:09:cc:27:00:ce:9d:ce:75:
2b:b1:03:52:ac:e4:55:9a:4a:d0:9c:db:56:aa:57:
bc:ed:11:cc:be:3b:b6:f4:65:7a:30:32:4f:d9:77:
d6:03:94:1a:e1:23:a2:62:75:75:95:b4:da:6e:a8:
0e:a9:ae:ad:e1:1d:fe:5c:38:85:7a:8e:32:f3:86:
54:18:cb:51:ff:f5:69:43:b9:ea:ba:5b:5a:55:2d:
cd:b6:2e:e9:9e:13:c7:c5:e4:6a:1b:1c:fc:ab:62:
0e:26:2a:0e:b9:84:7b:b8:3b:b5:6a:9f:84:b9:c9:
8e:63:3c:00:fa:db:ce:09:33:e5:a8:db:fc:0c:d9:
30:15:a8:9a:6b:64:c7:7f:90:cf:76:18:69:50:40:
2b:9f:8b:15:16:cf:1f:04:e5:5f:0c:16:0d:15:d5:
ca:eb:dc:80:6c:c1:af:8b:be:7c:86:41:b5:02:cb:
a0:2d:0a:5e:59:b1:37:30:c2:08:ed:0f:cf:af:63:
1a:0e:36:53:7d:b6:9f:15:1d:45:ac:1e:19:5b:eb:
eb:af:c7:c7:e9:c2:0d:e0:9e:e3:0f:1a:6d:65:79:
5f:e0:b2:b8:1c:7d:28:fb:76:a6:06:88:10:8a:5e:
6b:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:9E:B7:AE:18:2E:7D:61:01:E0:60:5D:64:D1:72:CF:70:73:3D:26
X509v3 Authority Key Identifier:
keyid:5A:98:A1:13:02:BA:1C:49:AA:BC:60:D5:02:CB:75:0C:59:91:07:C3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36CF917/0D7561E6E27811ECBD71BBD6F1222468/WpihEwK6HEmqvGDVAst1DFmRB8M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/WpihEwK6HEmqvGDVAst1DFmRB8M.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36CF917/0D7561E6E27811ECBD71BBD6F1222468/253CF3E43B4F11EE852A4B2D4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2c0f:fc58::/32
Signature Algorithm: sha256WithRSAEncryption
a6:72:de:4c:5e:0e:c0:ea:00:78:da:bf:16:9e:e6:52:49:75:
b9:76:45:c0:18:2a:a9:bf:88:3b:85:b3:2b:a9:40:e4:58:90:
4e:2d:dd:92:7e:62:6a:d5:30:91:59:12:6b:37:66:f8:43:17:
47:7e:fb:22:61:1c:19:92:ec:9e:52:92:5f:5f:e0:1f:a2:00:
1e:26:7a:87:57:a2:48:7f:50:26:fb:8e:11:04:b8:5d:ec:37:
5e:76:27:d9:07:16:25:39:3b:d1:78:fb:0b:92:a8:a0:c9:f1:
d3:f5:ce:4e:5f:5e:73:84:d3:e9:61:76:0a:fa:6f:ee:25:30:
26:0f:f2:ce:0c:e8:21:04:94:10:11:69:7e:bb:75:13:95:77:
bc:cd:d6:6e:41:41:b7:8d:8f:f9:c0:ff:a9:11:b4:5c:1f:f6:
28:96:03:23:86:4b:04:3c:1d:8d:c4:db:bc:91:f1:a9:52:34:
e3:82:ae:4e:cd:33:c5:5b:39:07:72:9a:95:b6:ce:cd:6c:d1:
39:5d:62:7d:b5:63:d8:8f:00:de:76:42:86:87:b1:80:e7:d4:
86:f1:3a:55:dc:a0:1e:70:c8:bc:53:b6:d5:39:36:6b:09:38:
9c:2a:62:44:ea:81:d8:7c:5a:5b:1d:95:93:86:9e:14:b6:11:
b0:37:96:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:05:27 2024 by rpki-client on console-ams.rpki-client.org