Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/455A2A10E87F11EEACF0914D775412E6.roa
File: 455A2A10E87F11EEACF0914D775412E6.roa (raw, json)
Hash identifier: 7oroS0kZRCMAeIt8Jw4atsu5yydAMWcjqW9BpuBEZS8=
Subject key identifier: 05:34:3A:B9:42:E8:01:ED:75:FD:AE:90:A3:95:95:C4:4B:45:5A:AB
Certificate issuer: /CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Certificate serial: 1014
Authority key identifier: 48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/455A2A10E87F11EEACF0914D775412E6.roa
Signing time: Fri 22 Mar 2024 19:06:22 +0000
ROA not before: Fri 22 Mar 2024 19:06:18 +0000
ROA not after: Sat 27 Mar 2027 19:06:18 +0000
asID: 61317
IP address blocks: 196.251.248.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.mft
rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 18 Feb 2025 00:06:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4116 (0x1014)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36C58D6AF
Validity
Not Before: Mar 22 19:06:18 2024 GMT
Not After : Mar 27 19:06:18 2027 GMT
Subject: CN=65fdd6ae-e3c1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:45:d6:c8:76:12:d1:07:ef:6e:75:bb:58:f2:
20:36:8e:8b:7c:25:0e:01:2b:41:fd:4f:e5:67:3b:
a7:a9:32:3d:60:3e:ad:b9:33:03:d8:22:73:f3:5e:
40:4d:fa:27:fe:fc:b6:39:0a:14:77:13:90:e6:37:
41:4c:e9:46:97:ea:68:f6:fe:32:c8:97:7d:f1:1f:
b6:24:72:35:3d:48:23:00:9b:fd:b0:f6:36:92:b6:
cd:6d:00:5d:9c:65:e0:c2:f3:98:17:a8:b3:29:81:
9b:e3:ea:dd:d7:07:82:95:88:da:b2:6b:5e:5c:d5:
fe:6f:59:b6:17:d4:4f:aa:fb:24:8e:76:93:ae:82:
f8:71:2a:d6:85:d6:85:75:33:4b:1f:8a:0a:97:bb:
10:35:50:f5:e6:09:86:ba:f0:53:32:fb:20:57:df:
b0:a2:8e:73:c9:06:93:c9:9e:d5:70:9a:f4:26:02:
ce:a2:36:e9:75:86:4d:c4:b1:81:91:b5:97:53:ce:
17:f4:f5:e2:32:b9:d2:7f:46:0b:ee:d1:97:13:03:
37:0d:f9:c0:ca:91:4a:a1:56:49:af:6f:52:a4:d4:
1a:e7:69:d2:69:02:fd:05:de:5f:72:66:ef:82:56:
61:bc:1f:93:9c:b5:3d:06:b7:0d:35:92:da:e2:c2:
8f:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:34:3A:B9:42:E8:01:ED:75:FD:AE:90:A3:95:95:C4:4B:45:5A:AB
X509v3 Authority Key Identifier:
keyid:48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/455A2A10E87F11EEACF0914D775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
196.251.248.0/24
Signature Algorithm: sha256WithRSAEncryption
96:37:c9:24:a5:51:80:0c:e5:de:5f:ba:2f:33:56:ac:08:f2:
3d:e0:d4:70:03:bb:ad:93:63:97:9f:5f:01:38:1f:8e:50:b8:
51:20:57:4a:28:1d:9d:30:00:67:1b:91:bf:00:f9:f4:fa:8a:
95:b0:79:24:5a:1f:97:9a:60:79:21:d4:00:52:f9:02:ae:2b:
4e:d0:6b:4c:5b:ed:b3:4e:9c:87:dc:c8:03:22:15:c6:1a:d5:
33:7b:bd:88:2c:a9:ec:72:26:79:ce:c1:bc:52:06:7d:b0:d9:
a9:e5:01:3b:01:52:cd:16:b9:c1:54:d0:2b:f9:10:e6:e5:91:
b9:d7:cc:97:3d:f4:69:53:3c:e1:96:84:04:e8:1d:75:28:11:
0b:07:24:fa:3a:12:2a:c6:97:0b:43:51:5e:64:c6:98:0e:e3:
ea:91:21:1f:ae:7c:8c:f6:eb:71:d7:3c:05:73:5a:3b:9c:f0:
4e:26:9b:c1:07:23:42:22:80:d6:0c:dd:9a:c1:df:2a:0e:78:
ad:c0:b7:5b:39:d2:19:d0:19:60:71:b2:b0:1e:1a:84:bd:b7:
54:36:cd:78:e3:03:4a:9f:e4:e8:23:25:9a:12:ea:dc:44:09:
ab:70:73:f5:e2:75:16:cd:06:c3:fb:d9:63:8b:3d:c1:bd:3e:
a5:47:c0:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 15:30:24 2025 by rpki-client