Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36BC80A/472EF5B2E75C11EC9D7F90D8F1222468/3F01599AAA4511EEB18C019C775412E6.roa
File: 3F01599AAA4511EEB18C019C775412E6.roa (raw, json)
Hash identifier: xuksImk9clm+yhzS5080Q5PjZJcy4MzP48gyczG5O/I=
Subject key identifier: E5:7B:A0:1C:9D:64:FD:64:17:DA:94:3C:B5:37:B7:E9:7F:8D:C8:05
Certificate issuer: /CN=F36BC80AAF/serialNumber=8C8F8CE2AD55B9366BEC6EDF492CD9C1498E0664
Certificate serial: 026D
Authority key identifier: 8C:8F:8C:E2:AD:55:B9:36:6B:EC:6E:DF:49:2C:D9:C1:49:8E:06:64
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/jI-M4q1VuTZr7G7fSSzZwUmOBmQ.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36BC80A/472EF5B2E75C11EC9D7F90D8F1222468/3F01599AAA4511EEB18C019C775412E6.roa
Signing time: Wed 03 Jan 2024 14:34:48 +0000
ROA not before: Wed 03 Jan 2024 14:34:45 +0000
ROA not after: Sun 31 Dec 2034 14:34:45 +0000
asID: 33785
IP address blocks: 41.77.136.0/24 maxlen: 24
41.77.137.0/24 maxlen: 24
41.77.138.0/24 maxlen: 24
41.77.139.0/24 maxlen: 24
41.77.140.0/24 maxlen: 24
41.77.141.0/24 maxlen: 24
41.215.240.0/24 maxlen: 24
41.215.241.0/24 maxlen: 24
41.215.242.0/24 maxlen: 24
41.223.52.0/24 maxlen: 24
41.223.53.0/24 maxlen: 24
41.223.54.0/24 maxlen: 24
196.46.188.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36BC80A/472EF5B2E75C11EC9D7F90D8F1222468/jI-M4q1VuTZr7G7fSSzZwUmOBmQ.crl
rsync://rpki.afrinic.net/repository/member_repository/F36BC80A/472EF5B2E75C11EC9D7F90D8F1222468/jI-M4q1VuTZr7G7fSSzZwUmOBmQ.mft
rsync://rpki.afrinic.net/repository/afrinic/jI-M4q1VuTZr7G7fSSzZwUmOBmQ.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 21 Feb 2025 02:08:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 621 (0x26d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36BC80AAF
Validity
Not Before: Jan 3 14:34:45 2024 GMT
Not After : Dec 31 14:34:45 2034 GMT
Subject: CN=65957088-b845
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:38:06:30:ee:fa:31:c5:a0:04:60:02:18:cd:
fe:c5:1f:78:67:b8:52:96:0e:61:43:67:2b:68:9f:
35:b1:03:00:73:36:a8:68:94:42:34:81:94:b9:f5:
d6:13:bc:2c:56:7c:46:6e:45:a1:b8:8a:1f:c7:8d:
6e:ee:48:f5:fd:b4:24:1d:11:f8:dd:4e:50:bd:24:
11:b6:31:4b:50:ec:9b:52:81:a4:28:7a:28:8b:b5:
34:95:fe:06:f0:57:85:8f:20:76:5a:6d:9d:29:5b:
65:1f:dc:db:86:53:6f:0e:2a:44:4c:92:bc:0d:6a:
2e:d8:9a:ce:e8:6a:3b:74:e1:38:ec:7c:07:bf:8b:
46:5b:d3:42:fb:67:50:39:85:83:8b:74:e1:64:f8:
58:82:36:bc:cb:b6:3f:2f:64:a1:15:61:3e:b5:6a:
a5:90:2a:88:c3:a3:6b:25:f9:8a:ac:e4:f2:98:c4:
8d:8c:0c:60:d6:20:2f:b6:95:ef:b6:88:72:08:de:
8f:26:d1:11:47:fa:f6:e6:53:b9:f2:7f:46:74:1d:
c6:26:29:20:ce:a3:0e:2b:6e:7d:18:a9:02:b5:2a:
79:ce:08:2e:06:c4:0b:db:16:03:0d:8e:fa:f6:b1:
61:a7:90:fa:61:59:66:1c:52:f9:92:1f:4d:bd:ef:
39:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:7B:A0:1C:9D:64:FD:64:17:DA:94:3C:B5:37:B7:E9:7F:8D:C8:05
X509v3 Authority Key Identifier:
keyid:8C:8F:8C:E2:AD:55:B9:36:6B:EC:6E:DF:49:2C:D9:C1:49:8E:06:64
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36BC80A/472EF5B2E75C11EC9D7F90D8F1222468/jI-M4q1VuTZr7G7fSSzZwUmOBmQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/jI-M4q1VuTZr7G7fSSzZwUmOBmQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36BC80A/472EF5B2E75C11EC9D7F90D8F1222468/3F01599AAA4511EEB18C019C775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.77.136.0-41.77.141.255
41.215.240.0-41.215.242.255
41.223.52.0-41.223.54.255
196.46.188.0/22
Signature Algorithm: sha256WithRSAEncryption
3b:4b:e4:0a:98:15:6f:56:a6:01:0b:c3:51:0f:7f:09:02:8b:
4b:fc:7b:32:70:83:34:7f:30:3e:23:ec:3a:45:59:76:5c:b1:
59:c1:dd:9a:56:cc:80:02:54:d0:3d:4c:6e:ac:ff:da:55:1e:
11:7c:15:51:11:af:12:4c:c0:1a:5b:44:5a:1f:cb:95:70:e5:
05:fa:eb:40:b0:96:20:98:03:f3:51:53:a6:06:7a:85:07:b6:
9d:d2:69:13:e6:30:59:48:9b:bf:7e:a0:19:b5:b3:5e:bc:7e:
de:6b:df:19:8d:d7:ef:80:74:e1:9d:20:4c:0e:25:b9:1e:41:
58:93:46:a7:5a:48:de:c6:4e:58:86:c6:30:33:bc:da:2e:95:
3f:e9:86:1f:ee:70:b3:8f:0d:af:30:0f:a7:c6:61:04:a9:8c:
49:eb:7f:4e:07:a5:3f:e7:d8:48:0f:18:a9:48:48:2f:c5:36:
12:47:2f:ef:dd:bd:5a:4e:c2:c6:dc:1a:29:a5:f0:2f:62:90:
4e:cb:b8:73:9d:12:df:68:70:5d:4d:22:3c:5a:d8:09:74:58:
3f:b9:e6:e2:2d:a7:73:29:66:8b:eb:06:2a:69:f2:6e:19:27:
6c:8f:de:8e:97:e6:de:74:13:b4:a0:b5:31:f8:36:50:d5:e8:
c5:3a:e3:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 20:41:01 2025 by rpki-client