Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3686B65/C5F0BEB29A8411EEA702E730D25BE465/59BC8CC8704211EF9670AC4C762E951A.roa
File: 59BC8CC8704211EF9670AC4C762E951A.roa (raw, json)
Hash identifier: YHGbrYfTK/XykaZGHLmnPu2OovDDz4Wf7WXTsS/BDLI=
Subject key identifier: BA:FD:81:42:5A:54:F8:32:70:17:2F:69:58:AB:38:17:7D:86:10:33
Certificate issuer: /CN=F3686B65AF/serialNumber=B8AD9011EF3B28987B5CE230F1E275547330396A
Certificate serial: 0129
Authority key identifier: B8:AD:90:11:EF:3B:28:98:7B:5C:E2:30:F1:E2:75:54:73:30:39:6A
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/uK2QEe87KJh7XOIw8eJ1VHMwOWo.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3686B65/C5F0BEB29A8411EEA702E730D25BE465/59BC8CC8704211EF9670AC4C762E951A.roa
Signing time: Wed 11 Sep 2024 13:32:55 +0000
ROA not before: Wed 11 Sep 2024 13:32:50 +0000
ROA not after: Sun 31 Dec 2034 13:32:50 +0000
asID: 329057
IP address blocks: 2c0f:7c0::/32 maxlen: 44
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3686B65/C5F0BEB29A8411EEA702E730D25BE465/uK2QEe87KJh7XOIw8eJ1VHMwOWo.crl
rsync://rpki.afrinic.net/repository/member_repository/F3686B65/C5F0BEB29A8411EEA702E730D25BE465/uK2QEe87KJh7XOIw8eJ1VHMwOWo.mft
rsync://rpki.afrinic.net/repository/afrinic/uK2QEe87KJh7XOIw8eJ1VHMwOWo.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 27 Nov 2024 00:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 297 (0x129)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3686B65AF/serialNumber=B8AD9011EF3B28987B5CE230F1E275547330396A
Validity
Not Before: Sep 11 13:32:50 2024 GMT
Not After : Dec 31 13:32:50 2034 GMT
Subject: CN=66e19c07-0211
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:3b:48:80:72:29:60:5a:3f:14:c4:2c:f3:ca:
c2:da:dd:f5:88:53:97:82:2b:3c:a3:e1:68:92:cc:
9e:bf:77:b8:84:ba:51:9e:3a:4d:b9:60:46:d1:05:
c5:84:dc:f0:38:f1:3d:50:e5:b4:8b:35:d8:46:64:
1d:ba:17:25:d8:1d:e0:35:7e:6d:ba:0a:53:e0:ee:
a1:c7:39:a8:d5:c8:da:45:01:aa:30:f6:35:4b:08:
40:14:21:a0:24:c2:36:06:bc:8d:ae:2d:28:7e:f0:
2c:c4:03:09:4b:09:34:77:41:b9:fa:31:dc:26:70:
cb:d8:44:5a:9f:bc:03:5f:3a:64:29:3e:67:e1:a5:
44:31:08:e1:f4:5c:9c:e6:af:82:86:cb:6b:71:11:
4b:da:1f:1e:3c:69:93:2e:89:6c:4f:29:4a:46:ba:
73:cc:fb:f4:d2:32:e7:d4:a8:a1:c0:75:a9:f2:65:
02:2a:51:b5:dc:5d:09:d5:98:88:49:65:6d:d7:3f:
70:1a:9a:86:fd:a1:b6:8e:9f:10:46:74:a6:b7:79:
ee:d8:cb:9b:14:86:26:4b:dd:c0:47:fd:75:68:08:
14:0a:d3:15:ca:ad:28:03:f5:20:f7:30:21:84:c6:
de:bb:8f:bc:77:09:56:b6:b7:ea:bb:37:6d:f6:8b:
b6:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:FD:81:42:5A:54:F8:32:70:17:2F:69:58:AB:38:17:7D:86:10:33
X509v3 Authority Key Identifier:
keyid:B8:AD:90:11:EF:3B:28:98:7B:5C:E2:30:F1:E2:75:54:73:30:39:6A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3686B65/C5F0BEB29A8411EEA702E730D25BE465/uK2QEe87KJh7XOIw8eJ1VHMwOWo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/uK2QEe87KJh7XOIw8eJ1VHMwOWo.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3686B65/C5F0BEB29A8411EEA702E730D25BE465/59BC8CC8704211EF9670AC4C762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2c0f:7c0::/32
Signature Algorithm: sha256WithRSAEncryption
6b:ed:c1:e2:05:5e:7f:f7:62:0c:bd:e7:14:0a:44:ed:a6:4d:
8d:ab:91:ea:5e:e3:42:0a:07:60:f9:ce:3a:90:c2:b7:ef:13:
bc:24:5b:5f:02:9f:53:bb:41:c8:cf:c3:c8:02:6e:4a:14:ac:
6b:fb:e2:1d:90:30:45:c1:c3:fc:43:04:11:fe:dc:c9:ad:5e:
37:22:50:76:ee:66:f4:3a:04:bb:e1:c7:70:89:5e:df:3f:47:
3f:87:8f:c4:1f:e9:8a:7e:28:ac:0d:9a:6a:1d:19:45:c1:25:
64:17:09:84:69:2b:8c:1f:f0:b2:c5:57:71:54:65:f1:20:7c:
75:4f:77:c6:8c:5b:5c:bd:8c:8c:0f:b8:95:2e:a7:d3:ae:3e:
17:2d:84:c4:99:47:7c:45:0a:74:67:02:bf:c4:0a:79:df:3f:
b0:59:da:06:0f:18:60:8d:c2:c7:23:a2:08:ac:2d:07:7e:4f:
92:37:2e:6a:22:c9:9a:da:63:19:9b:ac:1f:d3:9c:33:cc:96:
b0:8b:7b:bd:ff:87:f6:2c:84:35:d1:ad:97:de:5b:26:fa:3f:
4e:81:79:2d:83:c3:cf:9d:8c:04:5c:1b:6e:ee:c4:cc:e2:2d:
b3:53:68:d6:d4:68:93:61:e0:f2:e4:db:0d:d8:85:af:d8:a8:
5b:5b:76:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 04:43:46 2024 by rpki-client on console-ams.rpki-client.org