Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36A854F/5E87C042B73411EDA8D4CCA4F1222468/9394FD62B21511EFBC825D8E762E951A.roa
File: 9394FD62B21511EFBC825D8E762E951A.roa (raw, json)
Hash identifier: lu1oced98iyT24G4vw7hwl0wpa8JR56UCd+rbr6ylXY=
Subject key identifier: 67:6D:0B:8D:D8:9F:32:E1:B2:BF:2B:4B:7A:D7:76:1E:FB:2C:4F:2D
Certificate issuer: /CN=F36A854FAF/serialNumber=8BE4035BEBC9C83428B5A27BE85BAC966D76E5CB
Certificate serial: 02A9
Authority key identifier: 8B:E4:03:5B:EB:C9:C8:34:28:B5:A2:7B:E8:5B:AC:96:6D:76:E5:CB
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/i-QDW-vJyDQotaJ76Fuslm125cs.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36A854F/5E87C042B73411EDA8D4CCA4F1222468/9394FD62B21511EFBC825D8E762E951A.roa
Signing time: Wed 04 Dec 2024 07:58:41 +0000
ROA not before: Wed 04 Dec 2024 07:58:38 +0000
ROA not after: Fri 04 Dec 2026 07:58:38 +0000
asID: 37143
IP address blocks: 2c0f:fb88::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36A854F/5E87C042B73411EDA8D4CCA4F1222468/i-QDW-vJyDQotaJ76Fuslm125cs.crl
rsync://rpki.afrinic.net/repository/member_repository/F36A854F/5E87C042B73411EDA8D4CCA4F1222468/i-QDW-vJyDQotaJ76Fuslm125cs.mft
rsync://rpki.afrinic.net/repository/afrinic/i-QDW-vJyDQotaJ76Fuslm125cs.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 11 Apr 2025 00:06:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 681 (0x2a9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36A854FAF
Validity
Not Before: Dec 4 07:58:38 2024 GMT
Not After : Dec 4 07:58:38 2026 GMT
Subject: CN=67500bb1-9cfc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:72:7c:f4:c0:06:13:3b:86:1f:52:2c:1b:6f:
29:92:97:b2:e9:f5:a1:27:09:59:b3:bd:aa:ba:75:
3a:90:5d:e8:76:17:d2:37:e8:03:85:1b:db:e4:23:
fa:3a:3b:35:04:91:31:c8:db:91:98:94:bf:50:44:
00:ac:49:35:ff:22:c6:ab:a9:f7:f8:5a:39:da:09:
7a:be:85:b6:ff:25:89:d8:ca:d4:67:63:cc:9f:24:
f6:a7:4f:70:3d:45:ba:13:15:b1:42:06:25:ff:cc:
a2:a8:36:c2:4d:3f:c3:e3:fa:e2:9a:cb:85:fb:0b:
17:54:d7:f7:ad:cd:c5:7d:a4:6b:30:02:9b:f1:95:
89:7b:0e:70:97:1c:37:76:24:ad:cf:b4:ac:3c:f2:
ed:25:6d:e8:c6:33:00:fb:48:15:e6:9f:97:87:c3:
70:9b:47:d5:69:9c:07:bc:07:b7:d6:bb:9d:5f:6f:
24:b8:50:38:a3:76:15:ff:c1:89:a3:81:4d:31:c8:
e7:d2:9f:1c:74:bc:b2:6b:50:9f:a7:7d:73:8d:8f:
79:a3:94:d0:3b:8d:4e:bc:32:89:1f:2b:36:ec:99:
6f:f4:5f:e1:86:0c:54:01:bd:8e:a8:90:4f:4f:c3:
d8:7b:aa:48:44:3e:7a:60:af:89:95:c9:2d:54:b7:
ad:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:6D:0B:8D:D8:9F:32:E1:B2:BF:2B:4B:7A:D7:76:1E:FB:2C:4F:2D
X509v3 Authority Key Identifier:
keyid:8B:E4:03:5B:EB:C9:C8:34:28:B5:A2:7B:E8:5B:AC:96:6D:76:E5:CB
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36A854F/5E87C042B73411EDA8D4CCA4F1222468/i-QDW-vJyDQotaJ76Fuslm125cs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/i-QDW-vJyDQotaJ76Fuslm125cs.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36A854F/5E87C042B73411EDA8D4CCA4F1222468/9394FD62B21511EFBC825D8E762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2c0f:fb88::/32
Signature Algorithm: sha256WithRSAEncryption
3c:f7:fc:2a:85:41:c2:5d:71:27:b7:15:d9:e1:6c:a5:ba:24:
61:cd:54:75:a0:21:87:a2:7d:28:d8:8f:24:94:92:a9:38:c6:
8d:4d:15:6f:7e:d4:7c:eb:7c:ee:b7:48:93:92:4c:c8:67:9f:
78:1e:e4:87:39:11:26:be:c2:2a:01:29:37:13:10:44:97:96:
5a:03:01:24:3c:db:5b:22:bb:84:56:d3:5a:fc:fc:06:5d:3b:
dc:9b:93:8a:22:38:6a:1a:32:de:8a:de:a3:f7:1c:99:d7:05:
af:9d:fe:20:45:ab:e6:ae:2e:16:8b:e2:e8:14:47:c9:45:42:
91:bc:cc:82:51:e6:2a:ed:72:d7:55:e0:af:2f:59:b5:37:5b:
d9:32:a7:89:5f:dc:6e:6b:7a:1e:1b:ca:23:32:b1:13:fb:86:
69:f6:6c:89:9d:04:78:28:ca:ee:ed:e5:17:ef:86:00:19:96:
0e:85:3a:e6:9a:a6:b2:6b:a7:1f:29:18:76:a8:23:26:cc:c6:
b6:6d:c7:a4:3f:a3:39:ae:c5:97:da:52:12:57:5a:40:3d:58:
0c:4e:08:c4:36:3a:9e:c2:b4:3f:8b:5c:1b:7d:00:b1:6d:db:
8b:a9:36:b0:16:54:b4:f4:1d:96:0e:a0:bf:4b:41:db:ba:8f:
de:40:e5:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 17:59:49 2025 by rpki-client