Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36C6E82/1F291064836D11EC8C0D5DD55A40D577/50AFFF0ADD5E11EF9528EA76762E951A.roa
File: 50AFFF0ADD5E11EF9528EA76762E951A.roa (raw, json)
Hash identifier: X/76grUx+yq5QwPbiP76boks2mvwi+U8qIBcIC9zkRk=
Subject key identifier: 3F:FA:90:0C:C0:EF:1A:0B:8B:B8:CA:5C:8D:CA:AA:3E:66:B1:B6:BD
Certificate issuer: /CN=F36C6E82AF/serialNumber=BE9E6AB26887E04D556E850C54A5E7F1324DBD9E
Certificate serial: 0466
Authority key identifier: BE:9E:6A:B2:68:87:E0:4D:55:6E:85:0C:54:A5:E7:F1:32:4D:BD:9E
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/vp5qsmiH4E1VboUMVKXn8TJNvZ4.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36C6E82/1F291064836D11EC8C0D5DD55A40D577/50AFFF0ADD5E11EF9528EA76762E951A.roa
Signing time: Tue 28 Jan 2025 09:57:42 +0000
ROA not before: Wed 29 Jan 2025 09:57:39 +0000
ROA not after: Sat 30 Jan 2027 09:57:39 +0000
asID: 37580
IP address blocks: 197.215.219.0/24 maxlen: 24
2c0f:4580::/32 maxlen: 128
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36C6E82/1F291064836D11EC8C0D5DD55A40D577/vp5qsmiH4E1VboUMVKXn8TJNvZ4.crl
rsync://rpki.afrinic.net/repository/member_repository/F36C6E82/1F291064836D11EC8C0D5DD55A40D577/vp5qsmiH4E1VboUMVKXn8TJNvZ4.mft
rsync://rpki.afrinic.net/repository/afrinic/vp5qsmiH4E1VboUMVKXn8TJNvZ4.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 06 Apr 2025 00:06:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1126 (0x466)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36C6E82AF
Validity
Not Before: Jan 29 09:57:39 2025 GMT
Not After : Jan 30 09:57:39 2027 GMT
Subject: CN=6798aa16-53f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:a5:c0:c3:0b:19:61:be:ab:33:c3:3e:5e:56:
ed:d7:87:5c:70:3f:bf:4e:a1:ad:a9:6e:53:f0:3f:
f9:40:8c:8b:e3:72:96:78:74:64:05:6e:3f:0f:06:
a7:ac:aa:96:fe:3c:7c:88:5b:98:d2:fd:01:99:e7:
b2:31:b4:ee:1c:71:5d:79:1c:c1:ec:fe:9d:c8:5f:
b4:91:31:0e:83:2d:14:b7:8e:46:ac:e1:e2:ac:6a:
31:a0:20:34:6f:f0:99:e9:8e:c9:7a:56:89:f3:5f:
15:c3:a6:3e:72:b6:7e:a0:8a:c9:ed:45:33:80:02:
68:0d:aa:cd:31:6b:73:a3:ed:1f:d2:b1:12:28:d7:
c5:56:33:12:58:e5:b9:8b:aa:68:eb:03:5d:d4:c3:
47:a1:23:47:52:5c:80:91:a3:0c:5b:5e:50:51:56:
dc:8c:c2:68:40:a0:2a:a7:30:39:95:97:f6:0f:78:
f7:d2:47:a1:6e:78:c9:d1:94:f3:91:50:36:49:80:
41:ff:d6:8f:82:9e:48:b9:be:42:a3:75:58:da:cd:
30:0b:a8:34:e4:96:3a:51:ba:42:d3:5e:61:8e:57:
7d:c3:a8:c8:52:db:3f:ae:ab:07:d2:3d:d5:7b:62:
f1:f6:ba:37:8a:ae:7a:2a:7f:90:90:13:7f:48:7a:
70:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:FA:90:0C:C0:EF:1A:0B:8B:B8:CA:5C:8D:CA:AA:3E:66:B1:B6:BD
X509v3 Authority Key Identifier:
keyid:BE:9E:6A:B2:68:87:E0:4D:55:6E:85:0C:54:A5:E7:F1:32:4D:BD:9E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36C6E82/1F291064836D11EC8C0D5DD55A40D577/vp5qsmiH4E1VboUMVKXn8TJNvZ4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/vp5qsmiH4E1VboUMVKXn8TJNvZ4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36C6E82/1F291064836D11EC8C0D5DD55A40D577/50AFFF0ADD5E11EF9528EA76762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
197.215.219.0/24
IPv6:
2c0f:4580::/32
Signature Algorithm: sha256WithRSAEncryption
7a:7f:7e:c9:bb:9f:10:a4:5d:95:6e:ec:9f:b4:db:ce:07:d3:
6b:5c:a6:42:7c:64:29:6b:6e:a5:b2:dc:74:65:5b:91:c5:17:
c0:69:32:b5:3b:3c:fa:c9:96:3d:79:1d:b4:d5:08:09:fd:8c:
e9:2a:57:c7:32:77:27:74:7a:2c:f8:15:03:eb:c8:c0:66:44:
38:b3:cf:04:20:c1:38:c9:6a:ce:30:d6:47:0d:21:bc:20:78:
14:53:8f:c7:ac:3d:d3:09:a3:77:ca:72:bd:d5:fc:46:a7:61:
05:4f:78:c8:38:43:62:c9:19:10:2c:88:d1:18:8d:03:b9:94:
1d:8d:49:19:69:d4:b6:05:5b:bb:c2:e9:4f:35:a8:26:ee:64:
88:45:62:89:9b:b9:4f:97:bf:5b:05:4a:bd:62:e3:3c:44:17:
8f:60:e8:4c:21:d4:e2:1e:63:b5:11:29:65:e0:71:fa:1a:b0:
36:e3:6f:47:ea:51:77:1f:77:75:c5:51:0a:f6:48:0f:88:f2:
57:4f:b8:70:fa:97:bf:4e:39:1a:ce:2f:83:51:6c:a2:fd:93:
2c:c4:f1:47:37:ab:7b:20:86:8d:ef:0e:4a:09:b1:54:60:0d:
85:ac:9e:68:03:20:52:37:c0:86:37:18:ba:04:38:57:9f:89:
de:56:6c:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 20:19:04 2025 by rpki-client