Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36D5F5A/2173E83ADAA611ED8227D4C42F6D8C1D/615887E46BB911EF9B6D9D47762E951A.roa
File: 615887E46BB911EF9B6D9D47762E951A.roa (raw, json)
Hash identifier: nmOMxJAKa4tO1J+gp8WTlOeuZ2TDN7o6wUH8R0eybX8=
Subject key identifier: CE:EA:D9:10:48:F1:21:77:90:8E:3F:DA:3C:48:16:D6:C7:26:52:10
Certificate issuer: /CN=F36D5F5AAF/serialNumber=28293436D4D6DA3A93A60ECA3FBEC77D8DC38F61
Certificate serial: 021C
Authority key identifier: 28:29:34:36:D4:D6:DA:3A:93:A6:0E:CA:3F:BE:C7:7D:8D:C3:8F:61
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/KCk0NtTW2jqTpg7KP77HfY3Dj2E.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36D5F5A/2173E83ADAA611ED8227D4C42F6D8C1D/615887E46BB911EF9B6D9D47762E951A.roa
Signing time: Thu 05 Sep 2024 19:02:22 +0000
ROA not before: Thu 05 Sep 2024 19:02:18 +0000
ROA not after: Fri 05 Sep 2025 19:02:18 +0000
asID: 37276
IP address blocks: 2c0f:2040::/32 maxlen: 49
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36D5F5A/2173E83ADAA611ED8227D4C42F6D8C1D/KCk0NtTW2jqTpg7KP77HfY3Dj2E.crl
rsync://rpki.afrinic.net/repository/member_repository/F36D5F5A/2173E83ADAA611ED8227D4C42F6D8C1D/KCk0NtTW2jqTpg7KP77HfY3Dj2E.mft
rsync://rpki.afrinic.net/repository/afrinic/KCk0NtTW2jqTpg7KP77HfY3Dj2E.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 540 (0x21c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36D5F5AAF/serialNumber=28293436D4D6DA3A93A60ECA3FBEC77D8DC38F61
Validity
Not Before: Sep 5 19:02:18 2024 GMT
Not After : Sep 5 19:02:18 2025 GMT
Subject: CN=66da003e-1df6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:fe:9e:15:c8:98:83:2e:3b:83:1a:22:e8:f2:
3e:c2:63:26:57:9b:22:13:63:96:59:85:14:52:26:
e1:3f:cb:fe:05:c0:22:ab:0e:bf:71:51:ce:06:c3:
71:fd:7f:7c:4e:e5:09:2d:40:e3:d3:50:09:56:30:
1b:98:09:26:e6:de:23:eb:bd:3f:fe:1a:a3:57:9e:
83:60:67:9f:8a:a8:ea:c6:a4:51:25:cb:cb:da:41:
40:85:0b:ab:5e:60:24:77:d8:74:e2:8e:c5:2b:2d:
a0:1f:6e:30:61:11:10:1f:9d:35:32:ee:db:bb:0a:
f4:d2:52:31:91:25:a8:2b:49:77:62:d1:72:04:d6:
5a:6c:49:ca:62:be:09:fe:cd:fe:71:d3:84:e1:42:
fa:03:c8:59:06:25:53:b7:f7:e6:f3:58:78:09:e0:
90:20:6f:5b:2e:0e:39:04:de:b5:70:b8:fc:52:ea:
a5:e7:56:cf:fe:75:28:a7:fe:f5:9a:01:bb:a9:b1:
00:25:bb:1e:d2:95:0c:8b:0f:ab:76:d0:85:2c:03:
bd:d8:d9:ce:9c:12:68:94:bf:97:42:b3:83:54:d4:
8f:6e:a8:36:6c:8d:e4:43:69:cf:dc:db:bd:5f:c2:
dd:2f:c6:86:67:6e:9e:06:52:8c:3c:13:0f:d5:7e:
c5:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:EA:D9:10:48:F1:21:77:90:8E:3F:DA:3C:48:16:D6:C7:26:52:10
X509v3 Authority Key Identifier:
keyid:28:29:34:36:D4:D6:DA:3A:93:A6:0E:CA:3F:BE:C7:7D:8D:C3:8F:61
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36D5F5A/2173E83ADAA611ED8227D4C42F6D8C1D/KCk0NtTW2jqTpg7KP77HfY3Dj2E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/KCk0NtTW2jqTpg7KP77HfY3Dj2E.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36D5F5A/2173E83ADAA611ED8227D4C42F6D8C1D/615887E46BB911EF9B6D9D47762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2c0f:2040::/32
Signature Algorithm: sha256WithRSAEncryption
01:c1:43:67:3f:27:62:f7:2c:41:3e:6d:1d:75:c7:ff:8a:f6:
a8:1b:06:54:fe:5f:00:15:f4:43:41:fc:e1:d9:a5:da:8b:60:
9e:f7:c9:f1:ee:1e:4f:6d:71:bf:25:a0:b4:8d:76:6d:a0:46:
1d:35:d2:e2:8e:f3:86:6e:5f:86:99:2c:e2:60:55:f7:43:f7:
e1:52:34:49:a1:42:55:ae:71:e6:39:c0:c1:96:10:19:55:d0:
7f:ac:cc:e2:b7:9d:41:3b:48:35:a8:59:6c:32:1b:9d:a0:88:
92:14:86:55:f8:f2:98:91:1e:ee:41:ba:b0:34:d8:f4:7f:6c:
cd:6c:bc:af:d1:fb:e9:ae:a1:ee:c3:4a:d1:09:25:e8:4c:80:
c3:2b:75:35:ef:04:96:74:3e:87:7f:42:18:98:49:65:2c:95:
32:1f:a2:42:19:ae:30:3e:a4:32:4d:7c:e6:61:f9:d0:aa:92:
59:71:ae:d9:af:c1:14:58:a5:ca:83:7b:89:ef:c6:74:17:fe:
0e:66:c5:2d:77:a7:01:05:78:8b:a1:15:f5:fd:0c:a7:89:a7:
34:b2:ac:7f:cb:cd:ec:22:e7:7f:e0:5d:9b:06:6e:0d:06:53:
05:f5:81:c9:81:38:af:69:a4:e1:5e:f1:61:1e:2f:9c:35:b7:
ef:e4:0f:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:05:28 2024 by rpki-client on console-ams.rpki-client.org