Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36A8AA3/947078EC9E5211EEACE10A1AD25BE465/E2C1EE3A9E5311EEAAC0551CD25BE465.roa
File: E2C1EE3A9E5311EEAAC0551CD25BE465.roa (raw, json)
Hash identifier: a/6txB+MVfLWSEULkMJVclmn38cp7SIU8WSE2UEIKek=
Subject key identifier: 55:8E:10:86:6E:16:AD:4A:AC:ED:C9:7C:7A:4A:B0:AF:B6:D4:6A:1D
Certificate issuer: /CN=F36A8AA3AF/serialNumber=BDB1C832442A1706BF77FC4EC4371819BA3FC1A6
Certificate serial: 02
Authority key identifier: BD:B1:C8:32:44:2A:17:06:BF:77:FC:4E:C4:37:18:19:BA:3F:C1:A6
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/vbHIMkQqFwa_d_xOxDcYGbo_waY.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36A8AA3/947078EC9E5211EEACE10A1AD25BE465/E2C1EE3A9E5311EEAAC0551CD25BE465.roa
Signing time: Tue 19 Dec 2023 09:49:22 +0000
ROA not before: Tue 19 Dec 2023 09:49:18 +0000
ROA not after: Wed 31 Dec 2025 09:49:18 +0000
asID: 37484
IP address blocks: 197.155.32.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36A8AA3/947078EC9E5211EEACE10A1AD25BE465/vbHIMkQqFwa_d_xOxDcYGbo_waY.crl
rsync://rpki.afrinic.net/repository/member_repository/F36A8AA3/947078EC9E5211EEACE10A1AD25BE465/vbHIMkQqFwa_d_xOxDcYGbo_waY.mft
rsync://rpki.afrinic.net/repository/afrinic/vbHIMkQqFwa_d_xOxDcYGbo_waY.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 21 Feb 2025 02:50:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2 (0x2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36A8AA3AF
Validity
Not Before: Dec 19 09:49:18 2023 GMT
Not After : Dec 31 09:49:18 2025 GMT
Subject: CN=65816722-ab3b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:06:c9:43:64:09:ef:8e:ea:ce:56:49:41:1c:
f1:22:98:7d:55:5d:51:b0:d0:b7:32:17:7c:fc:07:
49:65:dd:49:a1:7e:c9:37:e2:db:94:b3:b2:a7:4b:
13:da:28:c6:fd:73:99:b5:17:4b:60:25:47:a6:0f:
d1:40:57:d2:fd:30:35:e5:02:ef:36:16:da:0b:3a:
82:56:92:47:f7:4a:13:0c:4a:78:ac:4a:83:97:a9:
90:c4:ed:27:c3:83:69:32:30:5f:55:2e:9e:bd:31:
93:0e:45:80:8c:15:99:56:52:74:f2:62:38:62:f8:
12:46:54:08:fa:96:4d:7b:81:97:3b:29:53:a9:1c:
4c:c3:a7:0a:40:c0:b9:c7:2f:84:11:69:86:bf:ed:
72:6f:fd:33:a1:3f:7f:76:af:5f:ba:64:53:4e:07:
e3:07:f5:31:37:70:92:37:be:0e:ea:a2:4e:7a:3c:
08:c3:27:44:aa:c7:b2:80:07:07:db:f9:09:c9:a0:
d4:93:22:d0:c6:82:c6:a9:0c:ae:a9:62:50:52:8a:
6b:3c:56:1d:4c:7a:00:c6:e3:10:b8:a2:84:37:13:
b6:5f:dc:de:b5:04:5c:87:15:d9:4c:c7:9b:e0:a0:
b8:1d:38:34:97:cf:81:2e:8b:5b:16:77:2b:42:70:
75:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:8E:10:86:6E:16:AD:4A:AC:ED:C9:7C:7A:4A:B0:AF:B6:D4:6A:1D
X509v3 Authority Key Identifier:
keyid:BD:B1:C8:32:44:2A:17:06:BF:77:FC:4E:C4:37:18:19:BA:3F:C1:A6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36A8AA3/947078EC9E5211EEACE10A1AD25BE465/vbHIMkQqFwa_d_xOxDcYGbo_waY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/vbHIMkQqFwa_d_xOxDcYGbo_waY.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36A8AA3/947078EC9E5211EEACE10A1AD25BE465/E2C1EE3A9E5311EEAAC0551CD25BE465.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
197.155.32.0/19
Signature Algorithm: sha256WithRSAEncryption
16:0a:e2:f4:1a:e9:93:d9:7d:5c:8c:ed:e3:8f:60:bf:3b:9e:
7e:cf:86:b0:d9:e7:90:25:dd:9a:78:77:4b:99:49:2a:17:59:
d1:3a:fe:94:5a:73:17:dd:b9:69:7d:c6:f4:a5:3f:8d:b3:7f:
7f:f8:9d:45:38:6e:c4:d4:ca:b2:9e:d6:72:b0:ba:3c:eb:60:
05:f1:76:b1:81:d2:51:bc:b7:6c:76:66:34:22:51:56:da:1b:
f2:fc:18:8f:10:b7:9c:72:b5:d6:70:99:10:03:89:15:1e:d8:
e1:fd:42:9c:4a:12:34:3f:8f:34:9f:30:c0:b0:72:1e:1b:b9:
71:0d:b0:6e:55:1b:1e:7d:3d:6c:6a:48:a4:b5:00:02:eb:df:
d5:f7:7f:7d:93:4f:44:82:e2:59:7c:e1:81:a8:e6:df:88:03:
aa:51:ea:60:93:85:0a:9c:04:f2:9b:b9:1b:ad:89:a9:55:6d:
6c:66:c1:13:b1:62:06:2f:66:e0:2b:82:3b:0b:7d:df:7f:13:
2c:44:21:6f:be:4d:1f:62:50:f4:11:37:95:43:69:c3:8c:9d:
76:d5:4f:03:09:a9:50:1f:66:83:95:0c:59:32:11:e9:0f:94:
8a:86:04:e3:fb:0d:94:58:3c:fd:b3:14:e8:27:2c:38:84:6c:
bc:11:23:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 20:43:52 2025 by rpki-client