Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3697B99/11FE3600376011EEA28A212C4AD9E6FC/B63A66C4376711EEAA259F3E4AD9E6FC.roa
File: B63A66C4376711EEAA259F3E4AD9E6FC.roa (raw, json)
Hash identifier: 9w+jP2sXoRv+obbHw9SWbFJ5hQjBdgaqWD8tExz+tWg=
Subject key identifier: 6A:5C:E2:9D:B5:86:D6:54:CD:B3:94:33:69:F2:C0:DD:92:64:EE:3C
Certificate issuer: /CN=F3697B99AF/serialNumber=B4109BEDC4778727E24E9A377CC617BC07C0A735
Certificate serial: 0B
Authority key identifier: B4:10:9B:ED:C4:77:87:27:E2:4E:9A:37:7C:C6:17:BC:07:C0:A7:35
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/tBCb7cR3hyfiTpo3fMYXvAfApzU.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3697B99/11FE3600376011EEA28A212C4AD9E6FC/B63A66C4376711EEAA259F3E4AD9E6FC.roa
Signing time: Thu 10 Aug 2023 10:21:47 +0000
ROA not before: Thu 10 Aug 2023 10:21:44 +0000
ROA not after: Wed 10 Aug 2033 10:21:44 +0000
asID: 328792
IP address blocks: 2c0f:5600::/32 maxlen: 128
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3697B99/11FE3600376011EEA28A212C4AD9E6FC/tBCb7cR3hyfiTpo3fMYXvAfApzU.crl
rsync://rpki.afrinic.net/repository/member_repository/F3697B99/11FE3600376011EEA28A212C4AD9E6FC/tBCb7cR3hyfiTpo3fMYXvAfApzU.mft
rsync://rpki.afrinic.net/repository/afrinic/tBCb7cR3hyfiTpo3fMYXvAfApzU.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 11 (0xb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3697B99AF/serialNumber=B4109BEDC4778727E24E9A377CC617BC07C0A735
Validity
Not Before: Aug 10 10:21:44 2023 GMT
Not After : Aug 10 10:21:44 2033 GMT
Subject: CN=64d4ba3b-f728
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:bc:04:9e:1b:1a:ac:9a:82:c6:0c:f4:56:94:
46:2d:8a:61:b9:35:bc:d2:37:47:af:ee:21:da:af:
33:38:18:ec:da:76:94:7e:aa:10:a0:9f:73:de:76:
c3:b6:c0:9e:19:44:12:d5:25:f4:8d:13:f3:2c:f1:
bd:83:05:12:d6:d1:2c:c0:25:11:8e:94:83:3c:b8:
bf:21:a1:3e:a5:43:a7:5a:ce:77:c7:e6:a0:de:df:
7c:f2:62:a4:ad:5f:13:70:3d:ec:42:50:16:d7:be:
55:94:b1:ce:c5:ef:29:a0:28:bf:32:d6:f3:18:23:
1f:0a:c1:b5:66:43:1a:97:5b:b5:b3:0c:08:6a:45:
52:c9:04:16:ce:38:0c:ad:92:bb:fc:64:75:c1:dc:
33:85:c5:48:98:1e:3a:0c:69:1c:21:88:37:14:31:
ef:76:07:b7:1c:a2:d1:bc:68:e2:1b:6c:15:59:f5:
f0:27:21:ad:33:7c:0a:6d:61:d7:59:56:5a:ca:fd:
f6:8a:c2:59:3c:89:28:99:23:07:39:da:2a:3c:9a:
e1:04:25:c4:d3:4c:9f:76:c2:0e:df:bc:04:aa:d2:
bc:17:a3:1b:88:f6:63:9a:be:52:36:ae:64:6a:34:
28:e0:08:53:30:f1:34:e1:b4:31:19:30:11:c0:7c:
c1:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:5C:E2:9D:B5:86:D6:54:CD:B3:94:33:69:F2:C0:DD:92:64:EE:3C
X509v3 Authority Key Identifier:
keyid:B4:10:9B:ED:C4:77:87:27:E2:4E:9A:37:7C:C6:17:BC:07:C0:A7:35
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3697B99/11FE3600376011EEA28A212C4AD9E6FC/tBCb7cR3hyfiTpo3fMYXvAfApzU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/tBCb7cR3hyfiTpo3fMYXvAfApzU.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3697B99/11FE3600376011EEA28A212C4AD9E6FC/B63A66C4376711EEAA259F3E4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2c0f:5600::/32
Signature Algorithm: sha256WithRSAEncryption
92:35:75:a0:52:51:db:82:db:0c:36:1a:f1:b7:a8:46:f4:7a:
e7:d8:f3:ad:3a:09:5f:83:42:d7:c9:36:0b:73:d5:17:e4:e5:
4c:7e:9c:b5:86:fd:f9:c3:6a:e5:12:55:87:8c:b2:2d:74:1a:
93:b4:14:3e:98:48:34:e8:22:22:73:a0:bb:df:e0:b1:3d:2b:
9e:99:6a:91:58:ce:36:10:fb:ca:97:92:8f:f7:51:b8:af:fd:
bb:48:6e:2d:2e:be:dc:19:57:e3:ca:45:5c:81:08:8f:77:9d:
6d:1f:5e:77:f4:49:1a:09:68:1d:30:1d:28:6a:71:7a:24:e9:
7a:be:d6:1e:57:0a:f8:05:f1:3e:f0:de:8a:12:46:42:93:48:
a9:d7:cb:b4:a6:ff:cb:c1:0c:a4:3d:99:2a:5f:80:1c:72:a2:
d1:88:88:19:f7:0b:b5:5e:39:46:f9:96:b7:b9:e9:d2:15:60:
cb:24:88:7f:a6:90:8a:55:8a:a2:8d:44:fd:bc:c9:7a:b0:25:
5a:59:a5:c0:14:4b:2b:e6:95:48:20:e0:49:78:55:6d:4b:9f:
53:71:c5:b0:c9:3d:dc:3f:e5:52:08:72:30:1a:ca:f0:13:50:
eb:d9:21:c0:ed:c4:18:98:c2:98:a6:51:22:31:a8:78:de:e4:
d5:99:0a:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 03:52:57 2024 by rpki-client on console-fra.rpki-client.org