Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36DE42D/CC9AA0E641DA11EEB03EBE374AD9E6FC/CC9C343441E311EEA3DA33544AD9E6FC.roa
File: CC9C343441E311EEA3DA33544AD9E6FC.roa (raw, json)
Hash identifier: O2w06Y8bPWrlQlM0KiCR/CDJJh42Y1TIJDGWDlX/VL0=
Subject key identifier: 60:5D:FA:ED:3C:19:4F:15:EC:93:B2:8F:B9:A5:2B:23:FC:39:FF:85
Certificate issuer: /CN=F36DE42DRI/serialNumber=9D85DAD02FC177A40E9B907023706F3F97744DA0
Certificate serial: 02
Authority key identifier: 9D:85:DA:D0:2F:C1:77:A4:0E:9B:90:70:23:70:6F:3F:97:74:4D:A0
Authority info access: rsync://rpki.afrinic.net/repository/ripe/nYXa0C_Bd6QOm5BwI3BvP5d0TaA.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36DE42D/CC9AA0E641DA11EEB03EBE374AD9E6FC/CC9C343441E311EEA3DA33544AD9E6FC.roa
Signing time: Wed 23 Aug 2023 18:35:14 +0000
ROA not before: Wed 23 Aug 2023 18:35:11 +0000
ROA not after: Tue 23 Aug 2033 18:35:11 +0000
asID: 29614
IP address blocks: 80.87.64.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36DE42D/CC9AA0E641DA11EEB03EBE374AD9E6FC/nYXa0C_Bd6QOm5BwI3BvP5d0TaA.crl
rsync://rpki.afrinic.net/repository/member_repository/F36DE42D/CC9AA0E641DA11EEB03EBE374AD9E6FC/nYXa0C_Bd6QOm5BwI3BvP5d0TaA.mft
rsync://rpki.afrinic.net/repository/ripe/nYXa0C_Bd6QOm5BwI3BvP5d0TaA.cer
rsync://rpki.afrinic.net/repository/ripe/f3rBgIl5g-Kek3wKGHgDwHJ1VUU.crl
rsync://rpki.afrinic.net/repository/ripe/f3rBgIl5g-Kek3wKGHgDwHJ1VUU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/ripe-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:30:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2 (0x2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36DE42DRI/serialNumber=9D85DAD02FC177A40E9B907023706F3F97744DA0
Validity
Not Before: Aug 23 18:35:11 2023 GMT
Not After : Aug 23 18:35:11 2033 GMT
Subject: CN=64e65162-ffc1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:d9:dd:da:62:dc:f0:10:09:93:47:7b:78:d6:
86:01:51:6e:69:35:d0:07:4d:08:d8:b3:b1:ea:b5:
44:7b:a9:d6:9e:e4:be:ef:a6:a5:ea:74:42:db:8c:
e2:64:ba:e5:a1:3c:db:4a:f3:74:2d:61:c5:59:76:
37:f0:fd:5d:ab:c2:a4:74:f1:c1:23:5f:5a:95:6f:
c0:11:9a:7c:f3:16:c8:03:28:5c:ad:82:97:3b:07:
d4:18:7b:19:17:b0:c2:26:c0:da:45:ee:be:18:88:
0d:32:d5:5b:a9:dd:d0:65:47:0d:c7:7c:13:b7:8c:
01:f9:c1:8b:27:b0:cf:f5:0c:7f:19:15:81:0b:3e:
71:0d:19:99:5f:f5:c5:64:df:d1:84:76:a0:43:ae:
b0:0a:53:31:7c:29:1f:2e:d1:e8:9b:4c:14:71:ac:
30:81:1b:21:74:fe:ab:db:08:1b:26:83:0e:16:76:
d7:90:f0:97:31:f9:57:f1:db:8d:4e:4d:07:ad:38:
7f:15:1e:ca:89:c3:2a:ce:69:a8:0e:1f:f8:3d:95:
cf:34:8a:78:88:a7:4c:19:f7:8d:8f:fa:5d:36:78:
63:fd:3a:1f:8e:09:4f:7a:dc:3d:08:6f:99:30:0b:
de:f8:43:52:5c:d7:eb:ff:92:38:6f:60:35:28:94:
99:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:5D:FA:ED:3C:19:4F:15:EC:93:B2:8F:B9:A5:2B:23:FC:39:FF:85
X509v3 Authority Key Identifier:
keyid:9D:85:DA:D0:2F:C1:77:A4:0E:9B:90:70:23:70:6F:3F:97:74:4D:A0
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36DE42D/CC9AA0E641DA11EEB03EBE374AD9E6FC/nYXa0C_Bd6QOm5BwI3BvP5d0TaA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/ripe/nYXa0C_Bd6QOm5BwI3BvP5d0TaA.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36DE42D/CC9AA0E641DA11EEB03EBE374AD9E6FC/CC9C343441E311EEA3DA33544AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
80.87.64.0/19
Signature Algorithm: sha256WithRSAEncryption
5a:f7:48:2f:cd:8b:c1:d6:4a:06:83:df:24:9e:93:b9:0c:9b:
de:1e:56:bd:18:10:25:61:a1:52:fc:78:f6:11:9e:11:00:27:
b2:0a:ce:15:ae:98:11:18:fc:29:b2:95:74:be:5f:34:1f:3f:
8f:68:25:ee:28:5d:b2:f2:81:65:c7:c0:e0:f7:ab:d6:3d:14:
62:40:5e:15:62:e8:e9:be:94:1c:71:45:c5:b3:c8:6c:6f:f6:
27:a9:83:0d:c2:3c:6c:94:7a:b9:89:dc:cd:93:7c:fc:47:8a:
72:69:64:b0:ec:69:2d:5f:0a:3f:fd:97:2c:ef:a5:d9:3c:1f:
23:79:7a:6c:fa:39:ef:a0:af:59:72:2c:83:54:b7:0d:97:b8:
4e:20:11:0f:44:18:65:7b:80:66:6f:52:0a:42:d1:8f:0b:5c:
20:bd:88:9a:6d:5a:cf:a0:6c:8a:b1:df:46:6f:a3:38:bd:07:
47:c1:f4:c0:80:91:aa:40:19:49:01:c5:07:f8:0b:6e:a8:ba:
b8:43:fc:36:1e:67:f4:d4:5a:fc:69:ce:ee:bb:c1:5c:78:cd:
cb:c3:b2:76:82:46:e8:47:ef:81:00:27:f9:ac:d6:53:33:76:
a9:25:df:2e:5d:9e:db:a6:8a:5f:21:27:39:ec:6d:79:12:ba:
40:ce:01:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 03:52:59 2024 by rpki-client on console-fra.rpki-client.org