Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36D32D1/AD00932C407D11ECA8E59D0FD8A014CE/EC73A322848211EFA35B4DA3762E951A.roa
File: EC73A322848211EFA35B4DA3762E951A.roa (raw, json)
Hash identifier: E9n0BXdEdCO4VUpJ00TALsQfI4M1cW8WL9kQTleR3iM=
Subject key identifier: 09:6E:61:33:2E:F7:6C:41:C5:CB:D4:7D:9F:40:4D:78:6D:24:99:22
Certificate issuer: /CN=F36D32D1AF/serialNumber=BF5D3F4DC9AF17F8BA73F55A1D72F3959C0518E2
Certificate serial: 0452
Authority key identifier: BF:5D:3F:4D:C9:AF:17:F8:BA:73:F5:5A:1D:72:F3:95:9C:05:18:E2
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/v10_TcmvF_i6c_VaHXLzlZwFGOI.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36D32D1/AD00932C407D11ECA8E59D0FD8A014CE/EC73A322848211EFA35B4DA3762E951A.roa
Signing time: Mon 07 Oct 2024 08:05:32 +0000
ROA not before: Mon 07 Oct 2024 08:05:28 +0000
ROA not after: Tue 31 Oct 2034 08:05:28 +0000
asID: 328537
IP address blocks: 2c0f:ea58::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36D32D1/AD00932C407D11ECA8E59D0FD8A014CE/v10_TcmvF_i6c_VaHXLzlZwFGOI.crl
rsync://rpki.afrinic.net/repository/member_repository/F36D32D1/AD00932C407D11ECA8E59D0FD8A014CE/v10_TcmvF_i6c_VaHXLzlZwFGOI.mft
rsync://rpki.afrinic.net/repository/afrinic/v10_TcmvF_i6c_VaHXLzlZwFGOI.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1106 (0x452)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36D32D1AF/serialNumber=BF5D3F4DC9AF17F8BA73F55A1D72F3959C0518E2
Validity
Not Before: Oct 7 08:05:28 2024 GMT
Not After : Oct 31 08:05:28 2034 GMT
Subject: CN=6703964c-6b16
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:cf:dc:93:dd:cf:9e:94:e6:b6:41:f4:b6:dc:
ff:e0:f3:06:f0:08:6b:cd:41:67:0c:a5:d1:73:42:
73:0a:a4:63:db:da:57:cc:c0:8c:e2:31:ca:b1:e0:
82:ea:d6:b5:05:85:3f:b0:70:3d:5a:63:62:54:aa:
27:d6:b2:b6:2a:16:15:96:5a:75:60:80:66:67:83:
a4:23:6a:d7:67:b6:ae:a2:32:02:52:e0:d3:11:72:
cf:8a:48:34:7a:12:76:bd:01:cf:8e:18:8c:d7:7c:
7d:e0:ae:b7:bf:36:57:63:3c:e6:59:d8:9b:ab:75:
f5:94:b6:f0:48:7a:02:2c:8a:e3:61:43:c4:72:44:
fd:3c:2e:d3:25:c2:ff:2a:35:fe:8d:28:a0:a3:6a:
cc:5e:8f:dd:11:99:9f:fe:bc:3a:28:32:02:b2:60:
29:c0:76:eb:d6:f3:9a:30:c5:e5:1f:27:2f:19:07:
1c:aa:8b:89:78:94:5e:aa:51:be:b1:34:f0:7d:cb:
1f:d8:71:c1:fd:fc:61:cd:0d:cd:39:b1:0e:25:f5:
54:23:b5:a5:19:a5:4c:bd:5a:7a:21:83:94:92:bb:
d7:6f:a7:cc:48:91:a2:bf:23:da:77:e7:a0:44:a9:
50:1b:51:96:8b:3c:f1:1b:72:38:d4:72:cf:9f:26:
42:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:6E:61:33:2E:F7:6C:41:C5:CB:D4:7D:9F:40:4D:78:6D:24:99:22
X509v3 Authority Key Identifier:
keyid:BF:5D:3F:4D:C9:AF:17:F8:BA:73:F5:5A:1D:72:F3:95:9C:05:18:E2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36D32D1/AD00932C407D11ECA8E59D0FD8A014CE/v10_TcmvF_i6c_VaHXLzlZwFGOI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/v10_TcmvF_i6c_VaHXLzlZwFGOI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36D32D1/AD00932C407D11ECA8E59D0FD8A014CE/EC73A322848211EFA35B4DA3762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2c0f:ea58::/32
Signature Algorithm: sha256WithRSAEncryption
a4:a1:93:ba:53:9e:aa:b1:9a:02:4d:be:0a:91:49:0e:cf:41:
9a:5e:96:6b:22:1c:f8:43:aa:5f:a1:ce:b0:72:8b:e9:87:af:
16:a4:80:40:64:79:9d:fa:b2:bd:5a:12:d8:73:07:d4:bc:2e:
e5:bd:d7:16:6a:74:09:17:cb:4f:c6:e6:57:41:d2:f5:99:e0:
a8:91:6c:04:f0:fa:26:57:f3:5f:05:44:eb:91:55:84:71:f0:
01:dd:41:4e:45:eb:93:62:a8:7a:6f:79:96:72:bf:41:04:61:
4a:47:6b:b1:f2:dc:1a:9b:04:6d:9b:b8:3d:e1:4d:e3:da:98:
91:60:03:51:a0:20:3f:95:8f:3d:b7:d2:35:5f:41:cb:25:67:
29:27:58:c1:30:71:d9:96:d6:35:1b:a8:80:0e:e9:47:25:33:
a2:f4:4e:5a:e3:6f:16:32:42:3c:b6:84:d8:53:f8:d5:e0:ab:
0a:39:37:9a:c6:0a:0f:e9:c1:38:ff:15:41:ce:d9:1e:72:0a:
e6:ac:57:4f:eb:b7:55:8d:63:13:44:61:9f:60:43:a7:c5:92:
1c:a2:5d:c3:8a:e7:13:1a:da:49:a0:bb:0d:62:98:56:6e:f3:
57:af:9d:9c:49:1d:60:e8:71:52:45:7f:96:81:02:65:7c:1d:
f4:8c:82:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:05:27 2024 by rpki-client on console-ams.rpki-client.org