Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36E4B69/DE14770E887311EE89B811434AD9E6FC/A1BBDFB45BDA11EFA2803F75762E951A.roa
File: A1BBDFB45BDA11EFA2803F75762E951A.roa (raw, json)
Hash identifier: B+/DOrNgATDNRMYx/JLMgJNXWHAPifjl6iw4sXJYoDA=
Subject key identifier: C6:2C:92:E5:D1:53:D9:6D:08:24:3B:FA:AA:0E:A9:7D:02:BB:56:A4
Certificate issuer: /CN=F36E4B69AF/serialNumber=CA6642EA9AFCC73AA24AA4047544B17C2603CBD2
Certificate serial: 0133
Authority key identifier: CA:66:42:EA:9A:FC:C7:3A:A2:4A:A4:04:75:44:B1:7C:26:03:CB:D2
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/ymZC6pr8xzqiSqQEdUSxfCYDy9I.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36E4B69/DE14770E887311EE89B811434AD9E6FC/A1BBDFB45BDA11EFA2803F75762E951A.roa
Signing time: Fri 16 Aug 2024 14:20:05 +0000
ROA not before: Fri 16 Aug 2024 14:19:57 +0000
ROA not after: Thu 31 Dec 2026 14:19:57 +0000
asID: 36912
IP address blocks: 2c0f:f070:4000::/34 maxlen: 34
2c0f:f070:8000::/34 maxlen: 34
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36E4B69/DE14770E887311EE89B811434AD9E6FC/ymZC6pr8xzqiSqQEdUSxfCYDy9I.crl
rsync://rpki.afrinic.net/repository/member_repository/F36E4B69/DE14770E887311EE89B811434AD9E6FC/ymZC6pr8xzqiSqQEdUSxfCYDy9I.mft
rsync://rpki.afrinic.net/repository/afrinic/ymZC6pr8xzqiSqQEdUSxfCYDy9I.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 26 Nov 2024 00:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 307 (0x133)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36E4B69AF/serialNumber=CA6642EA9AFCC73AA24AA4047544B17C2603CBD2
Validity
Not Before: Aug 16 14:19:57 2024 GMT
Not After : Dec 31 14:19:57 2026 GMT
Subject: CN=66bf6015-3eaa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:2a:fc:31:7b:7f:92:dc:c1:fc:6f:92:c5:f7:
bc:b1:64:87:e1:c9:46:f0:ea:2e:1b:b4:aa:f1:e9:
e5:82:78:81:4a:0b:1e:c6:d1:cc:3d:cb:79:7d:33:
f9:61:19:f8:90:4a:3b:8e:02:47:b8:0e:1b:14:7b:
ee:3b:13:a4:d0:6f:aa:4a:b1:43:2e:bd:5b:39:29:
36:64:0d:20:fe:01:1c:11:9a:a5:d0:f2:06:97:48:
fd:57:81:9b:3e:68:d8:6f:4c:9b:fd:eb:e9:18:74:
20:23:a7:7b:17:88:d9:0d:99:f3:d9:d7:73:02:8a:
b1:a5:9e:3e:55:c4:20:c8:58:73:4d:7f:ec:bf:0f:
fa:fc:0d:83:93:96:38:c9:f5:d5:03:f5:94:36:7e:
1c:4b:c9:a2:df:49:f3:ac:55:ee:af:45:77:f3:e6:
a2:d6:27:57:25:1a:0a:8a:d2:01:c0:98:6a:54:a2:
91:72:91:91:92:7c:90:5f:7f:e9:1e:5e:9c:d3:32:
43:ea:7c:44:05:9e:2f:b5:7f:74:a9:c2:95:20:93:
2b:56:b7:ca:44:76:42:60:19:f0:d7:14:38:f8:e1:
c9:36:46:d8:be:8f:dd:ae:be:34:cc:83:13:16:df:
53:47:72:35:9a:72:28:55:e1:53:47:a9:00:88:08:
33:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:2C:92:E5:D1:53:D9:6D:08:24:3B:FA:AA:0E:A9:7D:02:BB:56:A4
X509v3 Authority Key Identifier:
keyid:CA:66:42:EA:9A:FC:C7:3A:A2:4A:A4:04:75:44:B1:7C:26:03:CB:D2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36E4B69/DE14770E887311EE89B811434AD9E6FC/ymZC6pr8xzqiSqQEdUSxfCYDy9I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/ymZC6pr8xzqiSqQEdUSxfCYDy9I.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36E4B69/DE14770E887311EE89B811434AD9E6FC/A1BBDFB45BDA11EFA2803F75762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2c0f:f070:4000::-2c0f:f070:bfff:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
86:0f:2b:02:41:7a:81:a7:8d:ff:2e:be:db:f3:53:f2:fe:60:
8b:77:47:c3:b0:58:e9:a1:82:5b:3d:67:27:c0:dd:1c:68:62:
08:50:41:15:87:fb:a5:2b:5b:a5:26:0f:d2:e8:02:82:47:22:
f8:1a:80:00:7b:ac:64:07:a9:cf:ab:22:dc:14:11:21:09:bf:
3d:22:63:3e:10:6c:46:46:46:91:fb:6d:a4:e2:4f:e2:b7:f0:
bb:1a:d1:4c:bf:eb:57:d2:6d:4f:91:43:62:3f:bb:6c:2c:e2:
40:35:6b:15:8b:eb:5e:a7:1b:ff:ff:90:71:98:57:7e:95:1f:
b7:c7:7f:6e:89:67:ab:eb:db:8b:95:fe:52:c8:d3:04:02:29:
d5:40:f0:93:1d:00:92:83:a2:fa:6c:5c:4a:e7:c5:cb:67:d3:
01:a3:5e:de:27:8d:02:12:02:51:ad:5b:7b:b1:85:5e:67:8a:
d8:4a:7d:9c:a1:22:d7:d2:00:b9:1b:ba:92:b2:cc:f2:8d:ba:
f8:36:79:e0:7a:ae:a4:34:53:59:df:1e:06:0f:4b:81:3f:68:
40:91:a5:35:0f:c2:e2:1d:cd:a0:f3:30:18:bf:f4:6c:55:13:
c7:5c:22:04:4d:4a:01:47:90:46:e9:83:0f:27:16:1e:2d:dc:
41:26:79:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Nov 24 03:19:44 2024 by rpki-client on console-ams.rpki-client.org