Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36D0F50/5EAAA6B8258F11EBB70B7C19F8AEA228/64B007102F0A11EEBEDD6F754AD9E6FC.roa
File: 64B007102F0A11EEBEDD6F754AD9E6FC.roa (raw, json)
Hash identifier: 8pizYDJo0sxijjRZbR4ceMNQO078FmWGu4gRDPfBg8A=
Subject key identifier: D7:A6:52:85:2D:FC:22:BF:E9:54:5F:3C:51:A3:D1:98:19:21:10:4A
Certificate issuer: /CN=F36D0F50AF/serialNumber=AE98A5FDAD2DC9F4FC1BE47F66857A8C47988102
Certificate serial: 050A
Authority key identifier: AE:98:A5:FD:AD:2D:C9:F4:FC:1B:E4:7F:66:85:7A:8C:47:98:81:02
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/rpil_a0tyfT8G-R_ZoV6jEeYgQI.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36D0F50/5EAAA6B8258F11EBB70B7C19F8AEA228/64B007102F0A11EEBEDD6F754AD9E6FC.roa
Signing time: Sun 30 Jul 2023 18:53:38 +0000
ROA not before: Sun 30 Jul 2023 18:53:34 +0000
ROA not after: Sat 30 Jul 2033 18:53:34 +0000
asID: 37119
IP address blocks: 2c0f:f888:dffe::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36D0F50/5EAAA6B8258F11EBB70B7C19F8AEA228/rpil_a0tyfT8G-R_ZoV6jEeYgQI.crl
rsync://rpki.afrinic.net/repository/member_repository/F36D0F50/5EAAA6B8258F11EBB70B7C19F8AEA228/rpil_a0tyfT8G-R_ZoV6jEeYgQI.mft
rsync://rpki.afrinic.net/repository/afrinic/rpil_a0tyfT8G-R_ZoV6jEeYgQI.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1290 (0x50a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36D0F50AF/serialNumber=AE98A5FDAD2DC9F4FC1BE47F66857A8C47988102
Validity
Not Before: Jul 30 18:53:34 2023 GMT
Not After : Jul 30 18:53:34 2033 GMT
Subject: CN=64c6b1b2-a1e3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:f2:21:53:6b:1c:d3:54:e5:92:76:88:e3:1a:
fa:90:5e:13:ff:89:3f:db:fe:e8:4d:92:1b:fb:4d:
a0:2c:4f:d7:10:bd:d0:18:08:cf:81:a3:c1:05:d2:
e2:0a:b3:f1:0d:97:3f:a7:3a:16:af:23:15:44:90:
d4:2c:c7:33:ad:04:41:0b:07:fa:62:77:06:43:89:
f4:b6:dc:9f:3e:74:34:0d:cd:8c:bf:98:af:5f:51:
3c:b1:42:73:2c:3a:dc:06:af:9c:8a:3a:b9:38:d1:
c9:40:d4:86:b8:85:ce:9f:e4:8c:39:e8:bb:a7:18:
16:23:ab:ab:ff:c2:91:d5:0c:93:a1:aa:ee:27:53:
bb:e1:87:75:b7:07:0c:97:b8:8a:b7:df:29:65:62:
e7:8d:ba:69:7a:0e:68:40:f6:98:ba:c9:ed:9e:7f:
12:9e:75:22:df:c4:a9:4b:94:3b:61:4d:fd:42:72:
b8:62:fe:29:b7:2e:5f:ef:58:4c:03:f8:8b:84:07:
45:62:f5:be:1d:78:e5:ef:c6:e1:7f:e1:58:84:f6:
22:6a:2d:ea:16:3c:28:c5:57:0b:86:b0:08:21:15:
d2:1d:dc:af:15:74:c2:18:30:93:a6:f5:d9:a8:29:
38:81:ca:49:c1:35:cf:f0:30:78:0a:0a:8f:6e:cc:
17:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:A6:52:85:2D:FC:22:BF:E9:54:5F:3C:51:A3:D1:98:19:21:10:4A
X509v3 Authority Key Identifier:
keyid:AE:98:A5:FD:AD:2D:C9:F4:FC:1B:E4:7F:66:85:7A:8C:47:98:81:02
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36D0F50/5EAAA6B8258F11EBB70B7C19F8AEA228/rpil_a0tyfT8G-R_ZoV6jEeYgQI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/rpil_a0tyfT8G-R_ZoV6jEeYgQI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36D0F50/5EAAA6B8258F11EBB70B7C19F8AEA228/64B007102F0A11EEBEDD6F754AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2c0f:f888:dffe::/48
Signature Algorithm: sha256WithRSAEncryption
14:4c:f8:b2:fe:01:ad:e5:c8:d5:81:3e:b4:97:a5:fa:41:60:
ff:f8:9a:07:9d:16:ba:b6:1e:75:49:2b:27:94:a6:c8:84:5d:
3b:b7:7d:84:70:e9:68:dc:d3:0a:8a:47:28:19:ed:15:00:39:
cd:d1:36:a5:e4:53:59:64:78:ea:10:b0:da:18:ab:ad:1d:92:
82:8b:af:5a:10:ce:6a:9d:82:f9:59:a1:46:2c:60:e7:c3:0e:
55:b1:97:84:34:53:a1:3e:aa:17:00:da:95:6f:bd:94:e3:d4:
7b:11:31:27:97:bf:de:ab:87:82:f4:bc:fc:08:ef:b0:0a:62:
d6:0f:f5:fe:8a:b9:f9:a4:e9:09:a7:1f:dd:79:d6:3b:28:42:
a3:3f:d9:8a:19:f5:69:de:64:94:ab:31:32:da:d0:cd:34:db:
ac:3a:34:c1:a4:47:cb:17:69:f2:b5:93:35:b1:8e:d0:7c:0d:
53:db:4c:f0:89:8f:06:4e:e6:aa:ca:7b:d3:c4:85:7a:81:6d:
18:e2:e8:08:2e:e2:72:28:67:7e:3f:7f:54:0c:21:19:e3:19:
42:98:7b:06:79:88:23:20:01:67:86:9c:a2:f6:63:33:03:c1:
d7:e9:83:c6:e5:37:38:19:0d:f4:6e:16:e2:63:9b:db:fd:ed:
e6:30:79:a0
-----BEGIN CERTIFICATE-----
MIIFhjCCBG6gAwIBAgICBQowDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
RDBGNTBBRjExMC8GA1UEBRMoQUU5OEE1RkRBRDJEQzlGNEZDMUJFNDdGNjY4NTdB
OEM0Nzk4ODEwMjAeFw0yMzA3MzAxODUzMzRaFw0zMzA3MzAxODUzMzRaMBgxFjAU
BgNVBAMTDTY0YzZiMWIyLWExZTMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDG8iFTaxzTVOWSdojjGvqQXhP/iT/b/uhNkhv7TaAsT9cQvdAYCM+Bo8EF
0uIKs/ENlz+nOhavIxVEkNQsxzOtBEELB/pidwZDifS23J8+dDQNzYy/mK9fUTyx
QnMsOtwGr5yKOrk40clA1Ia4hc6f5Iw56LunGBYjq6v/wpHVDJOhqu4nU7vhh3W3
BwyXuIq33yllYueNuml6DmhA9pi6ye2efxKedSLfxKlLlDthTf1Ccrhi/im3Ll/v
WEwD+IuEB0Vi9b4deOXvxuF/4ViE9iJqLeoWPCjFVwuGsAghFdId3K8VdMIYMJOm
9dmoKTiByknBNc/wMHgKCo9uzBfpAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU16ZS
hS38Ir/pVF88UaPRmBkhEEowHwYDVR0jBBgwFoAUrpil/a0tyfT8G+R/ZoV6jEeY
gQIwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNkQwRjUwLzVFQUFBNkI4MjU4RjExRUJCNzBCN0MxOUY4QUVBMjI4L3JwaWxf
YTB0eWZUOEctUl9ab1Y2akVlWWdRSS5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL3JwaWxfYTB0eWZUOEctUl9ab1Y2akVlWWdRSS5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNkQwRjUwLzVFQUFBNkI4MjU4RjExRUJCNzBCN0MxOUY4
QUVBMjI4LzY0QjAwNzEwMkYwQTExRUVCRURENkY3NTRBRDlFNkZDLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAsD/iI3/4wDQYJKoZIhvcN
AQELBQADggEBABRM+LL+Aa3lyNWBPrSXpfpBYP/4mgedFrq2HnVJKyeUpsiEXTu3
fYRw6Wjc0wqKRygZ7RUAOc3RNqXkU1lkeOoQsNoYq60dkoKLr1oQzmqdgvlZoUYs
YOfDDlWxl4Q0U6E+qhcA2pVvvZTj1HsRMSeXv96rh4L0vPwI77AKYtYP9f6Kufmk
6QmnH9151jsoQqM/2YoZ9WneZJSrMTLa0M0026w6NMGkR8sXafK1kzWxjtB8DVPb
TPCJjwZO5qrKe9PEhXqBbRji6Agu4nIoZ34/f1QMIRnjGUKYewZ5iCMgAWeGnKL2
YzMDwdfpg8blNzgZDfRuFuJjm9v97eYweaA=
-----END CERTIFICATE-----
Generated at Fri Nov 22 02:10:18 2024 by rpki-client on console-fra.rpki-client.org