Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36FCA07/8A4B771C72B111EEA0E0096E4AD9E6FC/02E6D31E985A11EF9E664242762E951A.roa
File: 02E6D31E985A11EF9E664242762E951A.roa (raw, json)
Hash identifier: kGG1RiMSP23E2TSxLvJ3oRzrbpa7GUjmAWIe62Zi+WQ=
Subject key identifier: 17:BE:FA:6E:18:19:7C:42:FF:B2:C8:74:95:45:C9:AD:5A:17:25:74
Certificate issuer: /CN=F36FCA07AF/serialNumber=BC3DE1E9840080B83C65278CDEA85EA298829481
Certificate serial: 018C
Authority key identifier: BC:3D:E1:E9:84:00:80:B8:3C:65:27:8C:DE:A8:5E:A2:98:82:94:81
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/vD3h6YQAgLg8ZSeM3qheopiClIE.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36FCA07/8A4B771C72B111EEA0E0096E4AD9E6FC/02E6D31E985A11EF9E664242762E951A.roa
Signing time: Fri 01 Nov 2024 14:03:04 +0000
ROA not before: Fri 01 Nov 2024 14:03:00 +0000
ROA not after: Fri 01 Nov 2030 14:03:00 +0000
asID: 328055
IP address blocks: 2c0f:4100::/32 maxlen: 36
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36FCA07/8A4B771C72B111EEA0E0096E4AD9E6FC/vD3h6YQAgLg8ZSeM3qheopiClIE.crl
rsync://rpki.afrinic.net/repository/member_repository/F36FCA07/8A4B771C72B111EEA0E0096E4AD9E6FC/vD3h6YQAgLg8ZSeM3qheopiClIE.mft
rsync://rpki.afrinic.net/repository/afrinic/vD3h6YQAgLg8ZSeM3qheopiClIE.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 396 (0x18c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36FCA07AF/serialNumber=BC3DE1E9840080B83C65278CDEA85EA298829481
Validity
Not Before: Nov 1 14:03:00 2024 GMT
Not After : Nov 1 14:03:00 2030 GMT
Subject: CN=6724df97-74c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:9c:6b:3f:87:b3:39:33:ec:84:d8:85:61:6a:
b8:1f:12:a4:60:0e:e4:1a:24:74:05:9a:b9:f2:6a:
21:0b:de:6b:54:ba:c4:25:2f:10:ca:d4:51:06:0e:
e6:1a:7f:65:47:30:e0:b1:c0:7e:ec:b6:9f:7d:1a:
76:13:3b:35:d2:17:68:9d:58:f0:de:79:be:b9:f3:
08:70:79:3c:00:4d:e8:0a:de:be:a8:cc:88:6e:6f:
05:e9:99:8a:2d:02:24:b2:ad:38:01:d6:02:d0:38:
77:c1:7a:7a:29:71:fe:95:f0:e3:d1:88:14:e0:d8:
b3:1a:2f:83:32:d3:31:e2:67:9b:1e:3d:ba:26:f7:
4a:57:67:60:28:cc:65:49:b2:4d:ea:52:99:e9:85:
29:80:66:b2:67:53:f9:bf:25:a5:1a:95:4e:1b:00:
a4:66:ed:94:71:f2:fa:be:76:21:cd:b9:3d:db:2a:
44:df:19:e0:d8:92:7b:03:0d:ac:61:20:14:63:6c:
f5:6f:35:1d:0f:58:fc:0a:77:25:63:8a:0b:76:f8:
a8:91:d4:0d:8d:5d:d4:d9:c4:38:cf:a7:c5:14:03:
d9:48:74:d4:0d:09:df:51:ba:a3:aa:67:35:0b:8d:
e2:78:fb:75:8a:02:41:3a:4f:d7:6e:4a:2d:1f:4f:
f3:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:BE:FA:6E:18:19:7C:42:FF:B2:C8:74:95:45:C9:AD:5A:17:25:74
X509v3 Authority Key Identifier:
keyid:BC:3D:E1:E9:84:00:80:B8:3C:65:27:8C:DE:A8:5E:A2:98:82:94:81
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36FCA07/8A4B771C72B111EEA0E0096E4AD9E6FC/vD3h6YQAgLg8ZSeM3qheopiClIE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/vD3h6YQAgLg8ZSeM3qheopiClIE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36FCA07/8A4B771C72B111EEA0E0096E4AD9E6FC/02E6D31E985A11EF9E664242762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2c0f:4100::/32
Signature Algorithm: sha256WithRSAEncryption
8c:97:5b:47:96:8a:f8:99:de:35:58:68:61:3d:73:d7:f7:86:
75:f5:41:48:67:a4:4e:89:2d:ec:88:1e:b5:8c:86:1f:ac:e8:
d5:df:0a:c9:e1:ca:35:23:92:27:c4:67:1c:a7:f6:0c:e4:7b:
52:9d:78:f6:39:e1:59:25:83:18:3b:6f:f5:43:64:b4:d5:ef:
7a:f8:2f:9f:b7:7a:0d:a0:df:68:65:69:d0:e3:2d:88:21:d8:
cb:20:84:65:f1:96:7a:85:c2:a6:86:a1:d8:03:6a:05:f4:6b:
6d:b7:2e:a7:e6:a5:9a:57:f0:4a:b7:13:fc:18:da:af:88:f1:
18:8d:08:61:c8:2a:39:fa:2b:27:6b:2c:ff:3d:fd:a2:00:47:
87:44:2f:d2:8c:1a:90:04:61:2d:65:2b:e3:f3:2d:55:0c:18:
79:94:63:69:86:bb:b6:15:6c:4a:8b:94:aa:17:15:c4:60:db:
c0:08:7c:f6:75:76:d3:e2:4d:f7:d3:62:cc:70:24:48:5d:8b:
ac:77:57:76:22:02:00:c9:99:e0:e6:a4:13:91:56:22:0e:16:
b2:61:12:3f:17:fe:bc:35:55:9e:e9:0d:6e:60:a8:84:50:b9:
cf:bb:3b:35:7f:be:ee:30:80:8f:12:76:36:55:d5:44:e1:87:
5d:a3:e5:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:05:34 2024 by rpki-client on console-ams.rpki-client.org