Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F364814F/9E5E8DA4C2BD11EA85909E31F8AEA228/F1F4AD980D2111EE81F73A524AD9E6FC.roa
File: F1F4AD980D2111EE81F73A524AD9E6FC.roa (raw, json)
Hash identifier: eS94GId9nW6zfoC3yc0HpJOz/hROYaGVD5nOkDxOOHk=
Subject key identifier: B4:63:9B:52:D7:B5:07:D7:86:33:04:6B:01:F9:AA:9E:72:25:B2:CA
Certificate issuer: /CN=F364814FAF/serialNumber=ABF9960C85BCF8938D58337F8CB7C5EB4DC4B3AE
Certificate serial: 044D
Authority key identifier: AB:F9:96:0C:85:BC:F8:93:8D:58:33:7F:8C:B7:C5:EB:4D:C4:B3:AE
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/q_mWDIW8-JONWDN_jLfF603Es64.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F364814F/9E5E8DA4C2BD11EA85909E31F8AEA228/F1F4AD980D2111EE81F73A524AD9E6FC.roa
Signing time: Sat 17 Jun 2023 15:16:34 +0000
ROA not before: Sat 17 Jun 2023 15:16:30 +0000
ROA not after: Tue 16 Jun 2026 15:16:30 +0000
asID: 36940
IP address blocks: 2001:43f8:bb0::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F364814F/9E5E8DA4C2BD11EA85909E31F8AEA228/q_mWDIW8-JONWDN_jLfF603Es64.crl
rsync://rpki.afrinic.net/repository/member_repository/F364814F/9E5E8DA4C2BD11EA85909E31F8AEA228/q_mWDIW8-JONWDN_jLfF603Es64.mft
rsync://rpki.afrinic.net/repository/afrinic/q_mWDIW8-JONWDN_jLfF603Es64.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 21 Feb 2025 01:32:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1101 (0x44d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F364814FAF
Validity
Not Before: Jun 17 15:16:30 2023 GMT
Not After : Jun 16 15:16:30 2026 GMT
Subject: CN=648dce52-7289
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:3f:15:00:03:3f:87:ce:d0:6e:3f:40:bc:0b:
68:c1:53:61:f8:c8:f3:fd:2f:72:6d:13:d0:a9:24:
ad:2a:8d:5c:71:3c:f9:8c:ee:bc:19:88:db:6b:d4:
b3:23:1a:5a:7c:aa:a6:3d:9c:bd:83:50:c4:7d:be:
6c:fd:df:7b:ea:fd:f3:50:45:94:8b:a2:a8:56:2d:
ce:82:9a:8f:e7:7d:b1:9b:10:f5:be:6c:ff:13:f5:
ee:cf:ef:11:3c:bd:9f:2e:28:b7:de:33:b2:4b:4c:
bb:fd:0b:20:a9:ba:56:21:86:11:81:5e:3f:b1:2e:
28:b5:d6:5a:80:67:3f:06:e3:37:73:29:df:1e:eb:
29:81:fe:02:ac:37:5f:71:07:1c:7a:6f:20:37:7a:
8e:fa:c7:fb:7a:43:3d:e7:ee:3c:c4:57:6c:9f:41:
79:be:9e:bc:69:83:7f:44:4e:6a:29:b7:5e:0b:b6:
b8:1b:79:06:07:c2:98:6f:26:0e:cf:72:36:4f:f0:
ce:e4:ea:1d:f0:42:a7:d8:c5:67:96:f8:70:ed:fd:
7a:ee:8f:83:c4:10:15:04:26:6c:9f:b4:93:7e:03:
72:7f:93:f8:fd:ad:43:26:a3:e1:1f:fe:51:88:bb:
63:ae:9d:ba:2e:18:f8:7f:47:d9:a2:c1:04:34:a7:
6d:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:63:9B:52:D7:B5:07:D7:86:33:04:6B:01:F9:AA:9E:72:25:B2:CA
X509v3 Authority Key Identifier:
keyid:AB:F9:96:0C:85:BC:F8:93:8D:58:33:7F:8C:B7:C5:EB:4D:C4:B3:AE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F364814F/9E5E8DA4C2BD11EA85909E31F8AEA228/q_mWDIW8-JONWDN_jLfF603Es64.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/q_mWDIW8-JONWDN_jLfF603Es64.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F364814F/9E5E8DA4C2BD11EA85909E31F8AEA228/F1F4AD980D2111EE81F73A524AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:43f8:bb0::/48
Signature Algorithm: sha256WithRSAEncryption
8e:2f:53:47:57:f6:8b:69:86:7c:79:be:fa:c6:00:09:27:cc:
93:ed:20:64:e1:66:62:fc:b0:55:b7:bd:8f:62:4b:97:cb:f9:
ae:91:fe:f7:f0:b6:fd:f9:6c:a0:1d:32:b6:41:81:91:e9:7e:
e8:66:69:1c:e1:e6:01:02:4b:ec:29:66:c4:65:a3:80:13:5f:
78:a1:e1:1e:51:37:56:5c:c4:08:5f:5d:81:d4:4d:bc:fd:78:
1d:1e:ae:2e:8e:48:97:e8:14:39:3f:1c:f4:5d:9d:60:73:7f:
ca:e1:87:5a:c3:11:b0:97:f2:d4:3c:00:b5:2a:55:77:56:07:
ee:5d:da:03:fd:b6:17:e7:f6:44:55:eb:b9:4a:e1:e5:8d:52:
ee:1b:0d:5b:07:f9:42:33:69:7e:6a:44:f9:3d:a3:25:42:9f:
e0:81:0f:71:4a:56:89:fa:a6:b3:db:6a:4d:12:aa:4e:cf:11:
b1:15:29:3a:91:2c:59:62:b0:85:99:f2:c6:6f:51:ea:9e:e3:
03:7f:b8:4e:21:1d:ef:54:7b:42:8e:57:5c:14:a9:df:9b:4c:
39:57:86:b0:ae:d7:00:60:d9:5c:17:0f:62:c8:ca:48:6a:b3:
2c:f0:b2:b9:62:4f:83:1e:01:87:a4:57:1e:bf:e2:37:9e:c4:
bd:5d:b0:ef
-----BEGIN CERTIFICATE-----
MIIFhjCCBG6gAwIBAgICBE0wDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
NDgxNEZBRjExMC8GA1UEBRMoQUJGOTk2MEM4NUJDRjg5MzhENTgzMzdGOENCN0M1
RUI0REM0QjNBRTAeFw0yMzA2MTcxNTE2MzBaFw0yNjA2MTYxNTE2MzBaMBgxFjAU
BgNVBAMTDTY0OGRjZTUyLTcyODkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQClPxUAAz+HztBuP0C8C2jBU2H4yPP9L3JtE9CpJK0qjVxxPPmM7rwZiNtr
1LMjGlp8qqY9nL2DUMR9vmz933vq/fNQRZSLoqhWLc6Cmo/nfbGbEPW+bP8T9e7P
7xE8vZ8uKLfeM7JLTLv9CyCpulYhhhGBXj+xLii11lqAZz8G4zdzKd8e6ymB/gKs
N19xBxx6byA3eo76x/t6Qz3n7jzEV2yfQXm+nrxpg39ETmopt14LtrgbeQYHwphv
Jg7PcjZP8M7k6h3wQqfYxWeW+HDt/Xruj4PEEBUEJmyftJN+A3J/k/j9rUMmo+Ef
/lGIu2OunbouGPh/R9miwQQ0p215AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUtGOb
Ute1B9eGMwRrAfmqnnIlssowHwYDVR0jBBgwFoAUq/mWDIW8+JONWDN/jLfF603E
s64wDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjQ4MTRGLzlFNUU4REE0QzJCRDExRUE4NTkwOUUzMUY4QUVBMjI4L3FfbVdE
SVc4LUpPTldETl9qTGZGNjAzRXM2NC5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL3FfbVdESVc4LUpPTldETl9qTGZGNjAzRXM2NC5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjQ4MTRGLzlFNUU4REE0QzJCRDExRUE4NTkwOUUzMUY4
QUVBMjI4L0YxRjRBRDk4MEQyMTExRUU4MUY3M0E1MjRBRDlFNkZDLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAgAUP4C7AwDQYJKoZIhvcN
AQELBQADggEBAI4vU0dX9otphnx5vvrGAAknzJPtIGThZmL8sFW3vY9iS5fL+a6R
/vfwtv35bKAdMrZBgZHpfuhmaRzh5gECS+wpZsRlo4ATX3ih4R5RN1ZcxAhfXYHU
Tbz9eB0eri6OSJfoFDk/HPRdnWBzf8rhh1rDEbCX8tQ8ALUqVXdWB+5d2gP9thfn
9kRV67lK4eWNUu4bDVsH+UIzaX5qRPk9oyVCn+CBD3FKVon6prPbak0Sqk7PEbEV
KTqRLFlisIWZ8sZvUeqe4wN/uE4hHe9Ue0KOV1wUqd+bTDlXhrCu1wBg2VwXD2LI
ykhqsyzwsrliT4MeAYekVx6/4jeexL1dsO8=
-----END CERTIFICATE-----
Generated at Wed Feb 19 20:42:25 2025 by rpki-client