Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36FC6C8/D37D2DA070E311EF84610147762E951A/92198F1C8C7B11EF91333875762E951A.roa
File: 92198F1C8C7B11EF91333875762E951A.roa (raw, json)
Hash identifier: 8CqHSzJ0xNuEDprsb96xgLlLubPk4W2WPQbnzGutTAE=
Subject key identifier: F3:99:A9:D9:B8:A1:93:A4:B2:B3:9C:AD:8E:6A:32:66:BB:87:86:3C
Certificate issuer: /CN=F36FC6C8AF/serialNumber=2511BAD4078D4672ACF4324299218CE4855D039D
Certificate serial: 2A
Authority key identifier: 25:11:BA:D4:07:8D:46:72:AC:F4:32:42:99:21:8C:E4:85:5D:03:9D
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JRG61AeNRnKs9DJCmSGM5IVdA50.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36FC6C8/D37D2DA070E311EF84610147762E951A/92198F1C8C7B11EF91333875762E951A.roa
Signing time: Thu 17 Oct 2024 11:33:03 +0000
ROA not before: Thu 17 Oct 2024 11:33:00 +0000
ROA not after: Tue 17 Oct 2034 11:33:00 +0000
asID: 37680
IP address blocks: 2c0f:f9a8::/36 maxlen: 36
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36FC6C8/D37D2DA070E311EF84610147762E951A/JRG61AeNRnKs9DJCmSGM5IVdA50.crl
rsync://rpki.afrinic.net/repository/member_repository/F36FC6C8/D37D2DA070E311EF84610147762E951A/JRG61AeNRnKs9DJCmSGM5IVdA50.mft
rsync://rpki.afrinic.net/repository/afrinic/JRG61AeNRnKs9DJCmSGM5IVdA50.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 26 Oct 2024 00:05:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 42 (0x2a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36FC6C8AF/serialNumber=2511BAD4078D4672ACF4324299218CE4855D039D
Validity
Not Before: Oct 17 11:33:00 2024 GMT
Not After : Oct 17 11:33:00 2034 GMT
Subject: CN=6710f5ef-c9d8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:47:1c:2d:bd:83:08:b4:a9:3b:61:bf:07:1f:
68:ce:cc:91:5b:c5:e9:74:f8:70:3f:2b:03:ed:c8:
b5:86:f0:f2:cf:92:7b:12:22:4d:e2:c3:1d:d4:d8:
56:78:0c:9f:b0:ef:26:d8:28:e1:c8:74:39:64:b8:
cb:73:be:76:80:c7:b5:95:98:77:a9:96:94:f4:3c:
e6:97:80:13:f1:26:8d:d0:ce:fb:5b:c0:e6:50:40:
90:1f:07:19:fe:e8:c9:ca:f4:d3:5d:2b:de:f2:d1:
5d:45:12:5d:1a:f1:cd:d2:61:52:27:e0:8e:d0:40:
c5:05:5c:b6:dc:c9:01:62:75:a6:64:c3:7c:49:6b:
21:b0:fc:a6:27:49:49:9d:89:f3:00:ca:cf:fc:5d:
fe:fb:31:21:8a:8b:d9:59:3d:8c:22:db:08:78:46:
12:8c:3d:21:6a:38:99:76:a0:b7:7b:f4:5b:08:eb:
c7:26:4b:d4:2e:3e:3c:9f:70:bc:79:57:42:4c:97:
c2:96:52:79:78:f2:c5:61:5c:16:e6:17:02:b1:1a:
2f:00:d0:a9:00:2c:fb:4f:8a:ea:56:e4:f3:89:b4:
d4:f4:50:42:d8:67:db:65:d8:04:f6:f4:c4:77:70:
52:ad:7f:bc:33:c6:0e:a0:c1:00:33:c9:28:e3:56:
63:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:99:A9:D9:B8:A1:93:A4:B2:B3:9C:AD:8E:6A:32:66:BB:87:86:3C
X509v3 Authority Key Identifier:
keyid:25:11:BA:D4:07:8D:46:72:AC:F4:32:42:99:21:8C:E4:85:5D:03:9D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36FC6C8/D37D2DA070E311EF84610147762E951A/JRG61AeNRnKs9DJCmSGM5IVdA50.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JRG61AeNRnKs9DJCmSGM5IVdA50.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36FC6C8/D37D2DA070E311EF84610147762E951A/92198F1C8C7B11EF91333875762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2c0f:f9a8::/36
Signature Algorithm: sha256WithRSAEncryption
62:7f:51:ec:ae:c1:61:61:b1:b3:7b:e0:e6:30:f5:fa:6c:ad:
e3:be:6e:bc:b8:a3:26:25:bf:4e:e3:a1:36:6b:e5:d2:7a:f3:
7a:95:a0:94:6f:b9:84:dc:07:df:2f:3b:f6:5f:ee:cf:28:33:
7f:13:c8:0e:bc:fc:e9:54:7a:b1:ca:fb:f7:cd:7c:3f:ed:14:
b7:5d:30:0d:9d:72:6d:61:9b:de:cf:18:2a:9c:0b:a9:58:b0:
a9:1c:80:4f:4e:27:7e:40:06:4e:ae:cf:72:38:43:b2:5d:5b:
24:f6:a0:03:a1:93:11:0f:b1:af:8d:40:22:8d:ac:9f:35:4c:
5b:e0:86:77:89:84:10:86:8b:83:93:18:ac:6f:46:36:d8:1b:
25:30:ae:07:e3:a3:45:c6:27:fd:a1:24:26:aa:d0:02:3e:fc:
a0:5a:a5:22:8d:6c:85:94:53:e5:5f:ec:7f:a6:e1:32:bc:5e:
a3:31:9f:eb:93:07:07:a7:99:fa:92:61:6e:cc:97:2b:7e:6f:
9f:e1:db:eb:2e:df:74:87:e4:1b:ec:0e:a8:a7:36:8c:3b:a0:
73:da:d3:97:23:59:68:10:a9:17:96:56:71:d3:0a:77:09:0f:
1b:ff:c1:d4:c9:13:08:3d:ff:a3:47:05:5c:6c:7c:d0:1c:8d:
f1:d2:70:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Oct 24 07:10:32 2024 by rpki-client on console-ams.rpki-client.org