Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36DBC4B/2336786EF8A911EEBCB49C0F017001B1/05DF0B04F8AF11EE8BD62941017001B1.roa
File: 05DF0B04F8AF11EE8BD62941017001B1.roa (raw, json)
Hash identifier: AUmm6r2H5eqnSnC+hHL1AKHFkLav9dOlq0qQZ6hkhLU=
Subject key identifier: 7B:B3:6A:21:C9:46:89:A9:06:D4:6A:FA:0A:A8:38:4E:30:A5:C0:36
Certificate issuer: /CN=F36DBC4BAF/serialNumber=FE7FFA7B06D37351DB92D6B9D3B0AD10307B5A21
Certificate serial: 0B
Authority key identifier: FE:7F:FA:7B:06:D3:73:51:DB:92:D6:B9:D3:B0:AD:10:30:7B:5A:21
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/_n_6ewbTc1Hbkta507CtEDB7WiE.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36DBC4B/2336786EF8A911EEBCB49C0F017001B1/05DF0B04F8AF11EE8BD62941017001B1.roa
Signing time: Fri 12 Apr 2024 09:28:30 +0000
ROA not before: Fri 12 Apr 2024 09:28:26 +0000
ROA not after: Mon 31 Mar 2025 09:28:26 +0000
asID: 33567
IP address blocks: 2c0f:fe58::/32 maxlen: 128
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36DBC4B/2336786EF8A911EEBCB49C0F017001B1/_n_6ewbTc1Hbkta507CtEDB7WiE.crl
rsync://rpki.afrinic.net/repository/member_repository/F36DBC4B/2336786EF8A911EEBCB49C0F017001B1/_n_6ewbTc1Hbkta507CtEDB7WiE.mft
rsync://rpki.afrinic.net/repository/afrinic/_n_6ewbTc1Hbkta507CtEDB7WiE.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 11 (0xb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36DBC4BAF/serialNumber=FE7FFA7B06D37351DB92D6B9D3B0AD10307B5A21
Validity
Not Before: Apr 12 09:28:26 2024 GMT
Not After : Mar 31 09:28:26 2025 GMT
Subject: CN=6618febe-de5a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:b1:c3:72:45:23:17:65:c0:10:af:de:13:df:
6f:eb:e2:39:dc:a8:26:9a:79:af:5a:3a:63:4d:02:
2b:1d:b7:c9:7d:e0:c3:85:b1:42:81:37:86:c7:4f:
ac:ca:2e:4a:e8:a0:6b:4b:c2:34:59:ed:53:3e:b8:
4b:5b:05:e6:f9:64:1b:5e:26:eb:04:1e:dc:e4:33:
5b:2e:26:d8:38:13:b5:34:4e:e8:10:f2:46:d3:2d:
b7:3e:0d:0a:1e:bc:37:82:ca:33:d1:30:b1:27:4a:
2b:6e:f8:e3:42:83:61:a1:da:fe:3a:49:f8:68:d9:
2f:87:bc:0a:ef:cd:a1:04:34:0d:e2:06:c6:98:7f:
59:d7:1c:1a:07:c5:fb:6b:78:bb:c4:09:46:fa:35:
80:0b:3c:54:9d:27:28:69:b1:e3:87:fd:9d:92:91:
d9:ec:06:72:30:c6:b6:07:be:93:d3:94:1d:7a:10:
28:75:fb:d9:bb:d9:86:5b:ed:85:c2:cc:f8:55:ab:
3d:4f:ca:f6:60:29:45:03:04:53:5b:20:64:14:a6:
dc:b9:1b:c5:2c:8e:f9:68:6b:05:ed:e7:26:58:1f:
70:37:44:71:eb:2c:0e:ec:f9:66:d5:0f:84:61:bb:
06:67:0d:9d:f4:34:1b:d3:8f:ec:42:9c:82:9c:36:
b4:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:B3:6A:21:C9:46:89:A9:06:D4:6A:FA:0A:A8:38:4E:30:A5:C0:36
X509v3 Authority Key Identifier:
keyid:FE:7F:FA:7B:06:D3:73:51:DB:92:D6:B9:D3:B0:AD:10:30:7B:5A:21
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36DBC4B/2336786EF8A911EEBCB49C0F017001B1/_n_6ewbTc1Hbkta507CtEDB7WiE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/_n_6ewbTc1Hbkta507CtEDB7WiE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36DBC4B/2336786EF8A911EEBCB49C0F017001B1/05DF0B04F8AF11EE8BD62941017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2c0f:fe58::/32
Signature Algorithm: sha256WithRSAEncryption
5e:47:cf:22:cf:45:39:a2:32:19:32:61:91:7a:56:1c:44:c1:
1b:8a:b5:4c:e0:83:98:08:0f:a7:7e:e0:f1:47:c4:70:3f:ef:
6d:89:7c:3c:17:3a:d1:07:fe:f9:0b:77:84:e4:6b:e1:37:2d:
f4:a7:2d:8b:ef:14:ac:bc:f0:0d:bd:96:4b:bb:cc:a5:9e:91:
91:7d:dd:1d:b6:41:cc:bf:37:cf:77:b5:09:38:e6:99:fa:74:
4c:1c:90:73:dd:9f:07:42:c5:6a:bd:78:e5:8c:26:c0:ae:67:
07:1c:b6:c8:36:67:36:04:84:f3:86:5b:f2:3f:06:cf:35:f9:
da:a8:f1:ed:80:89:49:8b:70:55:67:89:8d:27:3b:a8:48:29:
ee:16:eb:d9:1b:be:ba:ee:53:d6:cc:db:58:40:da:7f:d1:d6:
b2:58:83:1f:04:57:7a:65:2d:50:25:65:af:a4:03:f5:44:4b:
12:01:32:8b:7c:ba:e0:81:f1:7b:b1:74:5c:92:a4:02:97:6b:
6e:62:bc:3d:c4:5b:6a:80:f9:d2:4d:5c:40:46:f8:7d:4f:7e:
36:01:3c:7f:f4:ab:43:ad:76:b2:00:43:65:bf:83:fa:8e:01:
28:d6:0e:72:69:d2:15:aa:d4:ed:4e:ad:6a:be:1a:41:e2:e1:
7d:e7:52:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:05:29 2024 by rpki-client on console-ams.rpki-client.org