Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36FC6C8/D37D2DA070E311EF84610147762E951A/615D99C28C7B11EF93C02E75762E951A.roa
File: 615D99C28C7B11EF93C02E75762E951A.roa (raw, json)
Hash identifier: B7U2pkuZT0AKxT4fVE6jf7K23uKq821FyiDmXkJ6gXg=
Subject key identifier: 90:37:7A:6C:6A:2A:6A:2B:7C:87:07:BB:DD:0B:60:E9:A0:62:B1:09
Certificate issuer: /CN=F36FC6C8AF/serialNumber=2511BAD4078D4672ACF4324299218CE4855D039D
Certificate serial: 28
Authority key identifier: 25:11:BA:D4:07:8D:46:72:AC:F4:32:42:99:21:8C:E4:85:5D:03:9D
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JRG61AeNRnKs9DJCmSGM5IVdA50.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36FC6C8/D37D2DA070E311EF84610147762E951A/615D99C28C7B11EF93C02E75762E951A.roa
Signing time: Thu 17 Oct 2024 11:31:41 +0000
ROA not before: Thu 17 Oct 2024 11:31:38 +0000
ROA not after: Tue 17 Oct 2034 11:31:38 +0000
asID: 37680
IP address blocks: 2c0f:f9a8::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36FC6C8/D37D2DA070E311EF84610147762E951A/JRG61AeNRnKs9DJCmSGM5IVdA50.crl
rsync://rpki.afrinic.net/repository/member_repository/F36FC6C8/D37D2DA070E311EF84610147762E951A/JRG61AeNRnKs9DJCmSGM5IVdA50.mft
rsync://rpki.afrinic.net/repository/afrinic/JRG61AeNRnKs9DJCmSGM5IVdA50.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 26 Oct 2024 00:05:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 40 (0x28)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36FC6C8AF/serialNumber=2511BAD4078D4672ACF4324299218CE4855D039D
Validity
Not Before: Oct 17 11:31:38 2024 GMT
Not After : Oct 17 11:31:38 2034 GMT
Subject: CN=6710f59d-4a4b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:21:8c:83:51:d8:c7:fb:60:e6:a1:54:5b:6f:
b0:ed:3a:4e:ae:9d:50:f2:c6:b9:21:ed:f3:99:af:
0b:b3:84:fe:da:b3:b7:84:7e:a4:fc:31:d8:e9:41:
f0:9f:65:2c:50:20:6a:4e:2d:34:c9:89:5a:d0:19:
ee:ae:2b:fb:fe:62:dd:b7:76:43:15:6f:25:74:f6:
c6:60:ee:2d:53:36:35:29:9e:32:ed:e4:7f:2a:53:
f0:78:02:df:1e:51:fa:42:66:95:e8:f7:87:20:94:
e3:c3:0d:cc:7f:56:a2:6f:36:a1:48:b8:a5:ee:f6:
ed:78:2b:77:51:22:6c:32:15:74:41:1f:c1:01:71:
ef:cd:75:51:28:87:8e:ce:5f:c1:b5:e2:45:4d:8f:
50:6b:ee:95:4d:0a:2f:c3:31:0e:70:23:c1:72:03:
b2:f2:66:c1:37:d7:ab:e7:7a:30:5a:29:f6:91:6c:
0c:93:fe:76:93:e8:73:91:55:f2:d5:58:af:42:45:
56:1b:c5:76:93:4a:bb:25:f3:fa:ce:4b:61:ee:9b:
1b:46:21:6d:3e:aa:69:18:5a:74:ee:14:94:c7:84:
89:3c:50:f7:e2:9a:32:c0:6c:c2:82:7a:89:63:27:
41:88:bc:4c:14:78:96:69:b4:7a:fe:97:7a:e5:bd:
99:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:37:7A:6C:6A:2A:6A:2B:7C:87:07:BB:DD:0B:60:E9:A0:62:B1:09
X509v3 Authority Key Identifier:
keyid:25:11:BA:D4:07:8D:46:72:AC:F4:32:42:99:21:8C:E4:85:5D:03:9D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36FC6C8/D37D2DA070E311EF84610147762E951A/JRG61AeNRnKs9DJCmSGM5IVdA50.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JRG61AeNRnKs9DJCmSGM5IVdA50.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36FC6C8/D37D2DA070E311EF84610147762E951A/615D99C28C7B11EF93C02E75762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2c0f:f9a8::/32
Signature Algorithm: sha256WithRSAEncryption
78:a0:26:85:f4:77:7c:fe:f2:61:a1:9f:49:80:c1:98:e5:d6:
56:31:12:7e:32:de:93:25:fc:8a:0a:03:af:39:bb:08:32:56:
f3:e3:58:27:b6:81:59:6e:78:21:e0:41:16:69:ac:23:65:b7:
ab:e9:1d:02:58:8b:ae:79:c1:48:c0:5f:67:ca:4c:ae:bd:f3:
71:3f:fd:52:ef:25:6f:d1:5e:27:ed:67:1f:2c:13:ab:5b:5c:
b1:a3:fa:fc:20:a0:f4:95:be:8e:80:a4:78:5a:40:04:52:6e:
df:d9:ab:27:45:cc:9c:71:b7:8e:0f:e2:7b:23:0a:04:0c:09:
33:f5:eb:27:27:0e:88:18:78:23:09:8d:ba:e6:e6:0c:85:9b:
3e:9d:8e:91:5d:e0:66:90:eb:e7:4f:60:e8:ae:51:68:a3:46:
a2:ba:5c:29:9b:13:c2:45:ff:22:c5:5f:35:0f:20:8c:76:ae:
24:16:53:36:cb:d8:35:f9:e6:d1:6b:2c:87:d7:a7:b1:60:66:
b4:b1:02:dd:5e:fc:0b:e8:11:08:21:b9:4d:47:1d:a5:29:6b:
d9:91:36:7c:1c:77:ee:21:33:41:b8:e2:b6:f0:cb:07:e6:39:
d8:f2:ca:a4:f8:c4:76:60:73:4a:a5:ff:9a:f0:fc:e2:5f:c9:
a7:c5:82:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Oct 24 06:47:52 2024 by rpki-client on console-fra.rpki-client.org