Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36E4B69/DE14770E887311EE89B811434AD9E6FC/4EA7D32E53E611EF9B5BE56C762E951A.roa
File: 4EA7D32E53E611EF9B5BE56C762E951A.roa (raw, json)
Hash identifier: NtlpVvP6+zWzB8RFTth6ghNvN5nR/THSHfhDD9x2bP8=
Subject key identifier: 70:D2:BA:1C:EF:8A:70:3E:02:2A:08:63:E3:A0:7B:09:8F:AF:28:B0
Certificate issuer: /CN=F36E4B69AF/serialNumber=CA6642EA9AFCC73AA24AA4047544B17C2603CBD2
Certificate serial: 0125
Authority key identifier: CA:66:42:EA:9A:FC:C7:3A:A2:4A:A4:04:75:44:B1:7C:26:03:CB:D2
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/ymZC6pr8xzqiSqQEdUSxfCYDy9I.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36E4B69/DE14770E887311EE89B811434AD9E6FC/4EA7D32E53E611EF9B5BE56C762E951A.roa
Signing time: Tue 06 Aug 2024 11:23:30 +0000
ROA not before: Tue 06 Aug 2024 11:23:27 +0000
ROA not after: Thu 31 Dec 2026 11:23:27 +0000
asID: 36912
IP address blocks: 2c0f:f070:2000:201::/64 maxlen: 64
2c0f:f070:2000:202::/64 maxlen: 64
2c0f:f070:6010:1003::/64 maxlen: 64
2c0f:f070:6010:1004::/64 maxlen: 64
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36E4B69/DE14770E887311EE89B811434AD9E6FC/ymZC6pr8xzqiSqQEdUSxfCYDy9I.crl
rsync://rpki.afrinic.net/repository/member_repository/F36E4B69/DE14770E887311EE89B811434AD9E6FC/ymZC6pr8xzqiSqQEdUSxfCYDy9I.mft
rsync://rpki.afrinic.net/repository/afrinic/ymZC6pr8xzqiSqQEdUSxfCYDy9I.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 26 Nov 2024 00:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 293 (0x125)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36E4B69AF/serialNumber=CA6642EA9AFCC73AA24AA4047544B17C2603CBD2
Validity
Not Before: Aug 6 11:23:27 2024 GMT
Not After : Dec 31 11:23:27 2026 GMT
Subject: CN=66b207b2-3fb8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:1e:43:3a:c3:db:88:03:5d:82:13:29:8a:11:
b1:ac:13:d4:f9:81:7c:95:0c:1d:cc:51:86:70:23:
e5:b7:43:6b:71:a0:d7:55:75:e5:ef:1d:5b:d0:cd:
ce:5f:4f:15:8a:20:42:45:d2:f7:47:2c:4a:df:8f:
42:c0:a2:45:6d:4e:36:2f:c5:34:ed:bb:fb:43:de:
e4:87:66:6a:c1:52:8e:63:20:0a:ab:00:ea:72:43:
1c:f9:09:9a:0e:3b:d9:31:1f:4c:57:86:44:af:63:
b5:ff:19:b6:72:04:21:9a:3e:4e:65:17:80:35:8b:
a6:54:37:0d:da:f9:cd:e2:12:45:d7:f9:8a:41:19:
2a:9f:2b:52:be:c5:1f:00:ed:74:5d:5a:39:2c:e5:
30:aa:1c:1d:bc:c3:a0:cf:86:e7:9f:c6:ba:63:04:
5e:fd:01:cb:da:1c:75:a1:fe:36:50:3e:5f:22:03:
d2:cf:ff:52:53:9b:9b:a0:6b:ba:63:95:62:11:aa:
ff:73:06:7b:7e:43:04:42:b3:c9:ee:a3:90:b6:11:
25:5b:74:24:f3:88:e1:99:28:20:b4:57:a4:d1:ab:
b0:1d:c8:54:f0:de:97:de:91:a8:a2:2a:2b:c3:4f:
39:2f:5e:f5:1e:b5:81:a8:e8:13:a8:3e:df:5f:8e:
16:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:D2:BA:1C:EF:8A:70:3E:02:2A:08:63:E3:A0:7B:09:8F:AF:28:B0
X509v3 Authority Key Identifier:
keyid:CA:66:42:EA:9A:FC:C7:3A:A2:4A:A4:04:75:44:B1:7C:26:03:CB:D2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36E4B69/DE14770E887311EE89B811434AD9E6FC/ymZC6pr8xzqiSqQEdUSxfCYDy9I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/ymZC6pr8xzqiSqQEdUSxfCYDy9I.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36E4B69/DE14770E887311EE89B811434AD9E6FC/4EA7D32E53E611EF9B5BE56C762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2c0f:f070:2000:201::-2c0f:f070:2000:202:ffff:ffff:ffff:ffff
2c0f:f070:6010:1003::-2c0f:f070:6010:1004:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
79:fa:35:fc:40:4c:fd:d5:af:2e:45:a9:66:73:85:a8:70:e7:
ed:c1:48:69:4a:ac:de:34:c4:e7:d4:e6:61:5b:d2:15:5f:2b:
7a:78:7c:4c:17:91:34:a7:aa:60:c8:fe:54:74:64:0a:d9:78:
97:1f:9a:a5:f5:6b:65:78:af:60:f3:0c:43:8e:79:0f:a2:74:
0b:5b:52:be:42:4a:20:e6:82:41:93:74:e2:c6:17:99:ac:03:
1b:97:58:e5:b7:72:4c:65:98:70:5e:5e:08:4e:06:46:bb:89:
98:b7:1d:e8:45:0a:9e:af:19:a0:79:93:af:d8:c4:6c:ef:76:
62:b9:cc:fe:ba:ae:45:77:5d:11:ef:1f:58:3d:bc:28:26:5c:
39:10:c7:47:31:9b:52:11:0f:1a:37:06:cc:b1:ec:78:0c:44:
da:2d:f1:95:1b:9b:cd:63:9a:c8:4e:4d:29:94:77:4d:9b:6b:
69:cd:fc:68:97:87:3b:91:98:21:61:58:50:1a:fc:67:5f:67:
c1:36:38:79:01:18:99:23:e4:d3:95:ae:d9:93:5c:7c:c3:84:
a2:f2:b5:dc:bc:f2:b2:3d:f8:f3:be:a8:b2:37:83:b2:5f:d1:
fd:36:e2:c6:cc:bc:7c:12:d9:15:80:a2:4a:eb:bd:61:79:70:
2e:d6:3c:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Nov 24 04:29:40 2024 by rpki-client on console-fra.rpki-client.org