Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F364712F/E9C4BAA2A0E811EB88958D10F8AEA228/4F98057C463A11EC8FC05E15D8A014CE.roa
File: 4F98057C463A11EC8FC05E15D8A014CE.roa (raw, json)
Hash identifier: xBs6Vj/OeiFnzOXPhSwdSucFxUDsg3Mh5ATS3BYbuQQ=
Subject key identifier: 31:22:B4:46:16:6F:4D:A4:DD:33:B7:F5:0B:F6:4B:0B:D7:3A:E8:59
Certificate issuer: /CN=F364712FAF/serialNumber=3D55C784EA17912F0E960A25C6CA920E1002300A
Certificate serial: FC
Authority key identifier: 3D:55:C7:84:EA:17:91:2F:0E:96:0A:25:C6:CA:92:0E:10:02:30:0A
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/PVXHhOoXkS8OlgolxsqSDhACMAo.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F364712F/E9C4BAA2A0E811EB88958D10F8AEA228/4F98057C463A11EC8FC05E15D8A014CE.roa
Signing time: Mon 15 Nov 2021 17:34:40 +0000
ROA not before: Mon 15 Nov 2021 17:34:36 +0000
ROA not after: Sat 15 Nov 2031 17:34:36 +0000
asID: 36994
IP address blocks: 105.244.0.0/16 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F364712F/E9C4BAA2A0E811EB88958D10F8AEA228/PVXHhOoXkS8OlgolxsqSDhACMAo.crl
rsync://rpki.afrinic.net/repository/member_repository/F364712F/E9C4BAA2A0E811EB88958D10F8AEA228/PVXHhOoXkS8OlgolxsqSDhACMAo.mft
rsync://rpki.afrinic.net/repository/afrinic/PVXHhOoXkS8OlgolxsqSDhACMAo.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 21 Feb 2025 01:42:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 252 (0xfc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F364712FAF
Validity
Not Before: Nov 15 17:34:36 2021 GMT
Not After : Nov 15 17:34:36 2031 GMT
Subject: CN=61929a30-4b9d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:8c:65:da:4e:b6:19:4c:89:01:c6:80:c2:35:
4e:10:c5:e3:65:67:17:ec:89:3c:3b:e4:aa:44:50:
a0:9b:a9:e2:74:84:d5:4c:70:8f:c6:1c:7f:7c:0d:
9e:5f:3c:12:24:9b:1f:b9:a2:1e:cc:75:d2:be:c4:
50:34:91:16:ba:8f:a6:70:bf:ee:17:d7:90:d1:d2:
6b:d1:ba:36:b6:11:e2:66:ad:98:70:e8:ff:81:56:
e2:e9:6a:a2:cd:6f:89:0f:8b:8d:15:52:f5:6f:d6:
3b:7e:55:58:16:33:e8:c9:bc:7f:01:09:57:a1:3d:
3e:b7:31:d7:2e:2e:ea:4f:98:32:83:3d:a3:fc:e8:
a0:a3:cc:60:fa:30:23:2e:3d:fd:28:31:c9:11:f5:
87:9f:ea:77:04:29:19:4e:0d:b3:24:99:f8:d3:88:
a9:b0:0c:3b:07:1f:f0:8f:a7:4f:a3:4b:ee:e6:17:
b4:8a:7a:f0:cd:30:e2:51:ee:62:53:3a:8e:ba:03:
a2:f1:94:64:bf:da:a3:8c:40:eb:cb:0f:69:e6:92:
ed:05:4f:9f:80:ca:c5:65:f8:a8:3f:c3:b9:b6:24:
b7:6c:2c:1f:99:92:ba:e6:b4:68:08:2e:b8:bf:f7:
08:d1:62:29:f9:be:14:19:9d:6e:ee:57:aa:70:93:
63:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:22:B4:46:16:6F:4D:A4:DD:33:B7:F5:0B:F6:4B:0B:D7:3A:E8:59
X509v3 Authority Key Identifier:
keyid:3D:55:C7:84:EA:17:91:2F:0E:96:0A:25:C6:CA:92:0E:10:02:30:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F364712F/E9C4BAA2A0E811EB88958D10F8AEA228/PVXHhOoXkS8OlgolxsqSDhACMAo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/PVXHhOoXkS8OlgolxsqSDhACMAo.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F364712F/E9C4BAA2A0E811EB88958D10F8AEA228/4F98057C463A11EC8FC05E15D8A014CE.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
105.244.0.0/16
Signature Algorithm: sha256WithRSAEncryption
02:b6:2d:4a:3b:00:f9:ad:6a:78:0b:d7:f4:26:06:17:c6:0d:
a1:0e:3d:a8:75:3e:b6:d8:eb:3c:6f:8d:22:62:34:b8:54:7a:
6c:32:b1:58:c6:19:b5:15:c4:5a:6f:c3:ea:92:ca:2c:84:59:
eb:a2:26:b8:e1:8d:e1:b4:60:da:20:e3:6b:f3:11:a1:ed:e4:
60:88:7d:1a:b1:53:50:70:c6:63:a1:e2:ef:d3:c1:63:58:cc:
4c:39:e0:dc:72:de:c9:36:0b:62:17:d9:04:76:49:62:9a:5e:
f5:c3:a3:5a:96:47:93:e4:a6:0e:36:94:3c:f1:41:7e:50:51:
7c:8f:31:8c:4d:60:f1:58:89:f9:e3:a3:5a:80:06:0c:cd:66:
ae:8b:9c:f1:12:ff:4c:af:aa:23:e3:60:a3:86:81:9f:6c:8f:
6b:f3:39:06:03:06:ee:15:c5:0f:0d:a9:4d:c5:6d:ab:cd:2c:
57:e5:35:68:c0:9a:52:14:0d:99:86:de:da:10:d3:27:12:89:
c5:d1:a4:21:e3:59:7c:17:7f:1a:c8:02:d8:06:aa:75:d1:ee:
e5:ee:8c:ac:87:26:9d:9d:47:ed:36:67:59:40:22:f5:c2:36:
2d:08:7b:81:a9:5c:b8:59:09:a3:6d:63:4d:9f:30:ee:34:1c:
aa:4c:f7:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 20:45:25 2025 by rpki-client