Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36AD16C/548B5C86E2F011EF87C35C80762E951A/ECDF0294E2F011EFA5448084762E951A.roa
File: ECDF0294E2F011EFA5448084762E951A.roa (raw, json)
Hash identifier: hXr3aIoe6pq1Sawze/LnuYeCtDMM5/NeWXc3edXkyp0=
Subject key identifier: EE:D8:C7:FF:7F:52:FB:A5:55:D3:64:95:4F:17:D1:86:CD:F4:F3:72
Certificate issuer: /CN=F36AD16CAF/serialNumber=D5404B046D6ECD6D74141BD3AE4927B8C607EE62
Certificate serial: 04
Authority key identifier: D5:40:4B:04:6D:6E:CD:6D:74:14:1B:D3:AE:49:27:B8:C6:07:EE:62
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/1UBLBG1uzW10FBvTrkknuMYH7mI.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36AD16C/548B5C86E2F011EF87C35C80762E951A/ECDF0294E2F011EFA5448084762E951A.roa
Signing time: Tue 04 Feb 2025 12:09:47 +0000
ROA not before: Tue 04 Feb 2025 12:09:43 +0000
ROA not after: Sun 04 Feb 2035 12:09:43 +0000
asID: 328548
IP address blocks: 102.213.116.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36AD16C/548B5C86E2F011EF87C35C80762E951A/1UBLBG1uzW10FBvTrkknuMYH7mI.crl
rsync://rpki.afrinic.net/repository/member_repository/F36AD16C/548B5C86E2F011EF87C35C80762E951A/1UBLBG1uzW10FBvTrkknuMYH7mI.mft
rsync://rpki.afrinic.net/repository/afrinic/1UBLBG1uzW10FBvTrkknuMYH7mI.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 06 Apr 2025 00:06:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4 (0x4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36AD16CAF
Validity
Not Before: Feb 4 12:09:43 2025 GMT
Not After : Feb 4 12:09:43 2035 GMT
Subject: CN=67a2038a-c48b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:e5:2d:db:8d:a9:3b:c4:82:94:a9:34:01:e5:
27:78:f4:ea:56:cd:a4:ad:15:be:2c:04:fd:16:f8:
39:7f:07:00:d8:c7:36:54:13:c6:b1:0c:d9:dc:9e:
2a:12:6a:db:03:25:da:08:a6:0f:4e:0b:a1:f7:38:
47:d4:36:32:69:8c:65:6b:c9:9c:5c:de:d1:cc:cb:
e2:71:cc:49:7e:6f:67:dc:a6:05:38:e4:a5:73:79:
55:99:77:c6:47:36:20:e8:c1:1f:9d:fe:21:36:72:
a6:92:14:3d:89:c9:27:63:ff:4e:12:76:a5:8f:6f:
06:70:80:69:13:3e:fd:c8:f5:8d:73:34:ac:d1:99:
f7:da:7a:b0:1e:b8:97:c7:55:e1:0f:ad:41:4e:a2:
23:d8:6d:2b:4b:50:ab:de:a1:c2:ef:e4:f1:db:68:
50:c9:a3:7b:6e:c3:db:ef:7d:72:cd:c8:cd:b8:6d:
8d:ec:85:7c:ab:92:90:88:7a:64:38:6f:da:cd:07:
e0:13:0c:40:4f:6d:e8:d5:32:98:2d:55:f7:5e:1d:
46:88:6c:f1:a5:75:85:61:b5:d5:dd:95:a1:ee:c5:
64:54:cf:14:fb:4e:b0:ea:ba:e7:fa:bb:78:04:cd:
29:25:3f:f9:41:ec:15:4b:a0:9f:e7:51:77:17:85:
94:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:D8:C7:FF:7F:52:FB:A5:55:D3:64:95:4F:17:D1:86:CD:F4:F3:72
X509v3 Authority Key Identifier:
keyid:D5:40:4B:04:6D:6E:CD:6D:74:14:1B:D3:AE:49:27:B8:C6:07:EE:62
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36AD16C/548B5C86E2F011EF87C35C80762E951A/1UBLBG1uzW10FBvTrkknuMYH7mI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/1UBLBG1uzW10FBvTrkknuMYH7mI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36AD16C/548B5C86E2F011EF87C35C80762E951A/ECDF0294E2F011EFA5448084762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.213.116.0/22
Signature Algorithm: sha256WithRSAEncryption
3a:77:c1:fb:d7:3c:c7:38:e7:ce:cd:ee:5b:b4:bd:70:d1:87:
cc:95:07:7a:99:22:03:67:38:73:3f:e2:b8:7c:e0:01:17:66:
f4:05:e9:7f:54:c2:b9:03:64:6e:a2:45:3b:84:3f:ed:08:6f:
c0:84:54:9c:be:cc:6c:bc:e6:e8:e8:42:95:01:18:74:88:55:
94:8c:62:cc:f3:ca:07:a4:78:fc:77:1c:09:79:2b:46:e9:e2:
b2:ca:bf:79:2a:61:82:ab:b9:17:14:f6:3f:cd:08:d7:89:cd:
59:57:75:cb:e1:69:27:64:1c:c9:69:ff:fb:22:49:8b:90:e9:
1a:57:86:86:91:43:79:94:0b:53:e0:5d:5c:1b:06:cc:bc:a1:
a0:68:d5:75:4a:44:f8:4e:ca:ff:ce:47:80:5c:37:22:21:10:
a9:f9:0c:12:93:4b:af:f3:7b:54:bb:45:91:69:d6:6f:22:5c:
40:fc:b3:c8:af:0b:e3:66:9f:a9:ba:cd:c1:d8:8e:0c:8b:e4:
ee:66:64:ca:9b:f0:32:08:3a:01:0f:b7:46:61:90:4f:24:aa:
63:8c:38:53:65:24:55:d9:f6:24:a9:c8:01:9a:af:c4:05:e0:
ca:75:a4:47:56:c7:56:a2:c7:df:e9:f7:11:b9:fb:48:ae:87:
50:ad:dc:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 10:31:38 2025 by rpki-client