Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36BB12F/5C09C380A7E511EFB56A0C52762E951A/2AF19AACA99D11EF9770FA9D762E951A.roa
File: 2AF19AACA99D11EF9770FA9D762E951A.roa (raw, json)
Hash identifier: 8M8qeh2c4jU96jCRf8I7t2WItg43FZr+wCVd7xVx4+A=
Subject key identifier: 38:D1:DD:47:CD:D7:C0:83:4F:49:F8:58:73:BF:A4:24:DD:E8:EB:48
Certificate issuer: /CN=F36BB12FAF/serialNumber=1744BC20B7060579C93E4E2AA7E654289C2AF7CA
Certificate serial: 0D
Authority key identifier: 17:44:BC:20:B7:06:05:79:C9:3E:4E:2A:A7:E6:54:28:9C:2A:F7:CA
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/F0S8ILcGBXnJPk4qp-ZUKJwq98o.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36BB12F/5C09C380A7E511EFB56A0C52762E951A/2AF19AACA99D11EF9770FA9D762E951A.roa
Signing time: Sat 23 Nov 2024 13:16:37 +0000
ROA not before: Sat 23 Nov 2024 13:16:33 +0000
ROA not after: Sun 30 Nov 2036 13:16:33 +0000
asID: 37012
IP address blocks: 41.222.233.0/24 maxlen: 24
41.222.234.0/24 maxlen: 24
196.61.32.0/24 maxlen: 24
196.61.33.0/24 maxlen: 24
196.61.34.0/24 maxlen: 24
196.61.35.0/24 maxlen: 24
196.61.36.0/24 maxlen: 24
196.61.37.0/24 maxlen: 24
196.61.38.0/24 maxlen: 24
196.61.39.0/24 maxlen: 24
196.61.40.0/24 maxlen: 24
196.61.41.0/24 maxlen: 24
196.61.42.0/24 maxlen: 24
196.61.43.0/24 maxlen: 24
196.61.44.0/24 maxlen: 24
196.61.45.0/24 maxlen: 24
196.61.46.0/24 maxlen: 24
196.61.47.0/24 maxlen: 24
197.159.128.0/24 maxlen: 24
197.159.129.0/24 maxlen: 24
197.159.130.0/24 maxlen: 24
197.159.131.0/24 maxlen: 24
197.159.133.0/24 maxlen: 24
197.159.134.0/24 maxlen: 24
197.159.135.0/24 maxlen: 24
197.159.136.0/24 maxlen: 24
197.159.137.0/24 maxlen: 24
197.159.138.0/24 maxlen: 24
197.159.139.0/24 maxlen: 24
197.159.140.0/24 maxlen: 24
197.159.141.0/24 maxlen: 24
197.159.142.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36BB12F/5C09C380A7E511EFB56A0C52762E951A/F0S8ILcGBXnJPk4qp-ZUKJwq98o.crl
rsync://rpki.afrinic.net/repository/member_repository/F36BB12F/5C09C380A7E511EFB56A0C52762E951A/F0S8ILcGBXnJPk4qp-ZUKJwq98o.mft
rsync://rpki.afrinic.net/repository/afrinic/F0S8ILcGBXnJPk4qp-ZUKJwq98o.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 13 Apr 2025 00:12:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13 (0xd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36BB12FAF
Validity
Not Before: Nov 23 13:16:33 2024 GMT
Not After : Nov 30 13:16:33 2036 GMT
Subject: CN=6741d5b5-45e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:fb:33:8f:fe:8a:31:96:86:47:ff:cd:83:0f:
73:db:9b:cc:a8:a1:f0:05:5a:eb:0c:6d:1e:90:a1:
5e:7f:fe:d8:70:58:65:1e:ca:ed:e4:68:b7:4b:0d:
9a:72:63:91:aa:f0:1d:8e:c4:da:c6:33:a8:61:45:
5c:6a:89:4d:8f:2f:8e:72:06:dd:f4:1b:16:72:63:
e1:aa:1d:63:fd:61:0b:67:a1:92:05:97:6e:24:06:
d3:70:d6:47:e8:9a:25:d0:66:94:a2:e5:e1:88:c4:
9b:18:5f:51:13:fe:15:74:47:2b:1e:a1:af:fa:5d:
26:07:4f:75:0d:a1:c8:8c:fa:a1:47:a6:b9:66:81:
3d:0a:54:b2:fd:c6:d8:a8:83:d2:52:cc:71:38:56:
09:29:9f:ed:24:ae:ac:bd:52:78:ad:21:37:fb:f0:
71:33:a5:db:c9:75:46:70:c4:58:c7:65:be:f8:b4:
da:3f:99:a7:4f:b0:c1:09:50:ba:a0:08:40:b6:9b:
ee:ff:dd:0a:20:12:53:f0:3f:2a:28:df:c8:e5:54:
8e:03:09:48:b1:7e:ac:44:49:d6:e5:c3:fc:75:1a:
4f:b4:ea:65:d7:e1:23:9b:84:89:e4:7b:6b:8a:14:
ff:ec:5c:41:6f:15:65:37:db:6d:73:17:51:b9:15:
21:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:D1:DD:47:CD:D7:C0:83:4F:49:F8:58:73:BF:A4:24:DD:E8:EB:48
X509v3 Authority Key Identifier:
keyid:17:44:BC:20:B7:06:05:79:C9:3E:4E:2A:A7:E6:54:28:9C:2A:F7:CA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36BB12F/5C09C380A7E511EFB56A0C52762E951A/F0S8ILcGBXnJPk4qp-ZUKJwq98o.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/F0S8ILcGBXnJPk4qp-ZUKJwq98o.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36BB12F/5C09C380A7E511EFB56A0C52762E951A/2AF19AACA99D11EF9770FA9D762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.222.233.0-41.222.234.255
196.61.32.0/20
197.159.128.0/22
197.159.133.0-197.159.142.255
Signature Algorithm: sha256WithRSAEncryption
2d:da:a7:cb:e7:27:f8:b7:c3:6c:f8:f5:22:75:29:53:19:2e:
fc:cb:7a:8a:bd:c4:36:ff:2f:11:75:73:0e:f2:a6:f8:62:d1:
d4:6c:1f:36:c5:62:d6:0b:b6:a0:e8:6e:cb:d9:11:f9:e5:5a:
c1:4c:49:0d:c6:1e:2c:15:f1:89:66:9e:d0:c8:99:5e:81:a4:
48:2c:70:21:71:b1:10:01:2f:d3:b2:d6:17:b7:b7:6e:76:51:
85:1c:9a:3d:9d:9d:53:f2:c8:88:21:3e:e9:bc:a3:37:88:31:
4e:b4:19:b6:b2:69:67:90:6a:fc:7c:42:68:46:75:40:36:80:
33:4e:cc:53:69:c0:93:c0:3c:86:c0:dc:09:6a:3f:39:28:ae:
35:d9:fd:b5:5c:e3:d1:fc:bf:34:46:cb:2e:5c:4d:84:8c:9d:
3b:86:41:05:5f:47:11:ce:ad:0d:e9:d5:19:31:1a:78:05:3d:
0b:2e:92:8e:ab:20:d7:79:dc:e6:cc:cf:4c:f8:2f:51:cf:91:
76:30:bc:2f:ee:33:62:17:e6:f5:78:da:54:5c:92:79:c7:49:
eb:9f:6e:22:bd:9f:fa:b2:43:22:db:57:5e:d7:63:b6:bc:c0:
fa:b9:32:a4:fc:ac:79:b8:56:86:10:2f:9e:a5:f2:ac:4c:29:
99:30:2e:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 11 19:36:44 2025 by rpki-client