Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36E2B8C/C8F9DF1E0B6211EE862D868A4AD9E6FC/42DD302C216C11EF81B7191C7DDC24C2.roa
File: 42DD302C216C11EF81B7191C7DDC24C2.roa (raw, json)
Hash identifier: JJMt9932QgU+2OiDvLkyOUAa4AsBbuGAtem/jVVFQNU=
Subject key identifier: 69:8E:CD:FA:F9:62:BD:AD:93:20:59:64:CA:3C:7F:FA:B4:A7:21:E8
Certificate issuer: /CN=F36E2B8CAF/serialNumber=872130E69B3FB8035B1B25D3F6FB974A2A078ECC
Certificate serial: 01A2
Authority key identifier: 87:21:30:E6:9B:3F:B8:03:5B:1B:25:D3:F6:FB:97:4A:2A:07:8E:CC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/hyEw5ps_uANbGyXT9vuXSioHjsw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36E2B8C/C8F9DF1E0B6211EE862D868A4AD9E6FC/42DD302C216C11EF81B7191C7DDC24C2.roa
Signing time: Mon 03 Jun 2024 05:43:53 +0000
ROA not before: Mon 03 Jun 2024 05:43:50 +0000
ROA not after: Tue 01 Jan 2030 05:43:50 +0000
asID: 37684
IP address blocks: 2c0f:f408:100::/40 maxlen: 40
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36E2B8C/C8F9DF1E0B6211EE862D868A4AD9E6FC/hyEw5ps_uANbGyXT9vuXSioHjsw.crl
rsync://rpki.afrinic.net/repository/member_repository/F36E2B8C/C8F9DF1E0B6211EE862D868A4AD9E6FC/hyEw5ps_uANbGyXT9vuXSioHjsw.mft
rsync://rpki.afrinic.net/repository/afrinic/hyEw5ps_uANbGyXT9vuXSioHjsw.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 418 (0x1a2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36E2B8CAF/serialNumber=872130E69B3FB8035B1B25D3F6FB974A2A078ECC
Validity
Not Before: Jun 3 05:43:50 2024 GMT
Not After : Jan 1 05:43:50 2030 GMT
Subject: CN=665d5819-8ed2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:63:63:3a:1b:84:e4:a4:a0:46:ac:0f:c7:e5:
40:b6:6c:f8:4b:80:b2:93:9a:64:99:6e:38:d0:3a:
08:27:c5:98:a2:2c:49:27:5b:64:5b:3b:46:4b:e4:
78:ad:41:e8:2c:f0:e8:1b:0b:03:9a:6e:7b:e9:56:
1c:d9:62:67:13:35:9d:e4:5d:1d:21:25:f4:59:80:
e5:ba:60:31:2c:60:9c:45:ad:b8:59:bd:5c:4e:97:
70:d8:68:58:0a:bd:2b:b3:df:d0:5a:e2:80:b0:17:
74:33:f9:e9:6d:52:4e:2e:0e:82:5f:e3:8d:19:7a:
42:9d:7c:eb:aa:2d:2f:6f:54:a8:24:24:7f:97:f6:
9a:bd:71:39:cd:12:9c:7c:96:ec:c2:f6:8a:05:30:
92:7e:a2:ee:32:ee:04:2c:e4:76:14:a9:e4:45:8e:
6c:8d:99:c4:a7:39:86:a9:b3:f9:b3:5f:1b:c3:b7:
73:90:d3:49:39:95:ba:90:d0:2e:af:cb:58:50:33:
7e:c5:a3:11:f6:58:c6:27:02:f1:bb:d4:d2:9f:9d:
3e:95:18:dd:b0:93:9e:90:81:60:60:52:9a:66:a0:
22:59:63:02:ec:41:e6:b0:49:04:8e:4a:64:b0:02:
d4:70:37:97:45:ab:49:73:b3:c7:9f:ec:6c:04:e5:
60:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:8E:CD:FA:F9:62:BD:AD:93:20:59:64:CA:3C:7F:FA:B4:A7:21:E8
X509v3 Authority Key Identifier:
keyid:87:21:30:E6:9B:3F:B8:03:5B:1B:25:D3:F6:FB:97:4A:2A:07:8E:CC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36E2B8C/C8F9DF1E0B6211EE862D868A4AD9E6FC/hyEw5ps_uANbGyXT9vuXSioHjsw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/hyEw5ps_uANbGyXT9vuXSioHjsw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36E2B8C/C8F9DF1E0B6211EE862D868A4AD9E6FC/42DD302C216C11EF81B7191C7DDC24C2.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2c0f:f408:100::/40
Signature Algorithm: sha256WithRSAEncryption
19:61:db:41:6e:4c:90:b3:f9:d9:24:ca:30:a5:a2:b8:0b:f5:
c2:b4:fe:de:0a:71:ec:2f:cd:fa:16:91:5d:90:5c:30:1a:d8:
2b:3f:2f:5d:d7:66:6b:61:01:7a:d4:02:1e:eb:4d:85:94:48:
61:3b:0f:e5:9c:ac:bd:c8:7b:82:c2:cd:13:eb:2e:d9:2b:e5:
aa:62:5e:6a:84:da:89:2e:24:50:41:5d:8e:11:bd:85:2a:19:
07:6b:5f:be:c1:99:e4:72:45:10:90:4c:0a:eb:51:8a:84:ed:
b3:27:c0:fd:fd:89:84:71:f4:17:48:a0:c4:18:4d:c8:e4:f2:
bb:5a:5d:10:99:c0:27:89:b7:ad:0b:bf:c0:aa:f8:f8:5b:37:
52:91:aa:7e:b9:a6:5e:ef:44:d8:c8:f5:67:25:6a:8c:e7:78:
48:9d:03:b2:12:0c:fe:75:b6:c5:b0:fb:52:a5:4e:98:19:9e:
ed:52:41:53:41:4c:ce:53:d4:31:57:a9:82:33:84:6e:0f:5c:
63:00:27:60:22:79:78:28:86:b6:18:83:f1:64:fb:fe:85:5d:
09:dd:e6:79:b5:e0:94:15:5f:84:0e:7a:f1:cd:09:28:f1:e2:
80:3c:3b:4a:5a:51:a8:7b:5d:6b:8b:72:00:05:b4:76:09:96:
4e:39:df:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:05:30 2024 by rpki-client on console-ams.rpki-client.org