Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36D0F50/5EAAA6B8258F11EBB70B7C19F8AEA228/0FEDD30C2F0911EE8AA78D714AD9E6FC.roa
File: 0FEDD30C2F0911EE8AA78D714AD9E6FC.roa (raw, json)
Hash identifier: 9YX9KsjzzX5P4foplbQNx2OQuHYo4lqU/pDFyXpc4Zc=
Subject key identifier: A1:97:33:3A:4A:F5:DA:22:07:E6:14:E8:7B:17:58:B5:67:C4:65:6A
Certificate issuer: /CN=F36D0F50AF/serialNumber=AE98A5FDAD2DC9F4FC1BE47F66857A8C47988102
Certificate serial: 0502
Authority key identifier: AE:98:A5:FD:AD:2D:C9:F4:FC:1B:E4:7F:66:85:7A:8C:47:98:81:02
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/rpil_a0tyfT8G-R_ZoV6jEeYgQI.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36D0F50/5EAAA6B8258F11EBB70B7C19F8AEA228/0FEDD30C2F0911EE8AA78D714AD9E6FC.roa
Signing time: Sun 30 Jul 2023 18:44:06 +0000
ROA not before: Sun 30 Jul 2023 18:44:03 +0000
ROA not after: Sat 30 Jul 2033 18:44:03 +0000
asID: 37119
IP address blocks: 2c0f:f888:500::/40 maxlen: 40
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36D0F50/5EAAA6B8258F11EBB70B7C19F8AEA228/rpil_a0tyfT8G-R_ZoV6jEeYgQI.crl
rsync://rpki.afrinic.net/repository/member_repository/F36D0F50/5EAAA6B8258F11EBB70B7C19F8AEA228/rpil_a0tyfT8G-R_ZoV6jEeYgQI.mft
rsync://rpki.afrinic.net/repository/afrinic/rpil_a0tyfT8G-R_ZoV6jEeYgQI.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1282 (0x502)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36D0F50AF/serialNumber=AE98A5FDAD2DC9F4FC1BE47F66857A8C47988102
Validity
Not Before: Jul 30 18:44:03 2023 GMT
Not After : Jul 30 18:44:03 2033 GMT
Subject: CN=64c6af76-9417
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:ef:74:40:bb:69:ae:9f:9a:43:73:72:f2:0e:
eb:e5:9b:d8:11:d1:8e:3d:f0:49:31:da:dd:92:d1:
e7:41:28:05:a9:93:aa:b5:7c:a7:e1:26:a8:a5:2b:
9f:01:b2:73:47:51:06:92:b4:e5:81:71:be:15:ca:
e1:79:2e:6c:d7:6d:da:e7:6b:18:9a:9d:39:2c:75:
1d:eb:82:b6:77:53:54:2a:e8:9f:c7:d6:14:7b:2d:
db:e7:d5:6c:dc:d3:78:a2:e8:e2:d9:28:89:9d:fd:
05:16:3c:d3:31:10:6f:5b:8a:6e:32:2d:04:dd:c1:
58:e7:68:ae:2d:05:a0:5c:50:87:04:ef:16:91:83:
0e:1b:ec:c9:28:a3:da:12:61:b9:52:41:12:10:91:
b3:78:26:ec:ec:2f:58:74:0c:d1:70:d1:15:82:41:
6b:a9:02:f2:24:1e:f1:59:da:f7:c0:d8:5a:a9:d3:
62:9f:78:4d:d6:fd:b2:6e:93:c2:73:11:ab:65:29:
20:dd:0d:0d:de:3f:f5:d0:a2:af:1e:ac:42:d0:6d:
9a:c7:24:3d:37:4f:d2:1f:e6:a1:96:4e:3f:c9:8f:
84:a1:b0:15:98:f8:bf:11:74:95:08:14:62:11:85:
9c:73:b1:08:44:68:03:f8:c8:6b:bd:46:49:d4:0d:
20:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:97:33:3A:4A:F5:DA:22:07:E6:14:E8:7B:17:58:B5:67:C4:65:6A
X509v3 Authority Key Identifier:
keyid:AE:98:A5:FD:AD:2D:C9:F4:FC:1B:E4:7F:66:85:7A:8C:47:98:81:02
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36D0F50/5EAAA6B8258F11EBB70B7C19F8AEA228/rpil_a0tyfT8G-R_ZoV6jEeYgQI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/rpil_a0tyfT8G-R_ZoV6jEeYgQI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36D0F50/5EAAA6B8258F11EBB70B7C19F8AEA228/0FEDD30C2F0911EE8AA78D714AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2c0f:f888:500::/40
Signature Algorithm: sha256WithRSAEncryption
93:79:3a:74:f2:4a:ad:c7:c3:27:61:e0:11:40:80:e4:e3:aa:
52:79:34:0f:00:c0:5d:7a:a6:08:f3:9f:cb:e2:59:ef:7a:81:
75:11:ed:5c:96:a5:da:5f:c8:5c:4d:e1:28:3e:72:86:86:85:
a6:18:1c:47:6d:4f:58:75:39:61:9c:4a:40:de:cf:ac:8a:40:
88:7b:14:61:3b:57:c8:20:72:88:6e:6c:d7:17:77:f2:7d:1b:
ff:aa:ad:60:f9:c2:b5:ce:59:c3:ea:a2:96:3b:ca:83:d7:d9:
a9:8f:19:65:1b:5d:3d:18:1d:b5:33:14:3e:e6:c4:27:cd:97:
00:11:72:69:23:38:39:00:a1:a2:7c:d9:17:e7:f1:f5:3c:9e:
f2:74:f4:81:5c:63:13:39:3c:6b:46:06:b3:fa:f1:6c:11:17:
ff:74:5f:80:8a:ab:de:66:95:fa:c1:9f:13:e5:a8:d1:1f:e7:
ad:72:77:ab:25:b1:72:3a:94:1b:ca:79:fb:a6:62:18:d5:2c:
42:f9:6c:ec:96:d1:59:22:b6:90:1a:b2:70:c0:cf:b7:87:8b:
e3:38:8b:10:7c:db:1c:6d:b3:c5:13:7d:a1:76:42:37:fe:ec:
20:48:42:2b:58:d0:38:46:1e:4c:ec:3e:46:dc:cd:76:1d:74:
f6:37:3b:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:10:17 2024 by rpki-client on console-fra.rpki-client.org