Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36CC035/71F69968715811ED8B19339FF1222468/1CCE2C1EF81311EFB753FE76762E951A.roa
File: 1CCE2C1EF81311EFB753FE76762E951A.roa (raw, json)
Hash identifier: s6VENZXD1xBLDNkwrezGHkWnpkVaPcwUtHMwOrh8cVE=
Subject key identifier: 03:5E:F8:AD:1E:77:7B:CC:59:4D:AB:62:CB:3B:51:95:51:84:83:12
Certificate issuer: /CN=F36CC035AF/serialNumber=E3B07BB9D0957749FFE48C7E7325A9E11B416AB9
Certificate serial: 0367
Authority key identifier: E3:B0:7B:B9:D0:95:77:49:FF:E4:8C:7E:73:25:A9:E1:1B:41:6A:B9
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/47B7udCVd0n_5Ix-cyWp4RtBark.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36CC035/71F69968715811ED8B19339FF1222468/1CCE2C1EF81311EFB753FE76762E951A.roa
Signing time: Mon 03 Mar 2025 09:37:24 +0000
ROA not before: Mon 03 Mar 2025 09:37:20 +0000
ROA not after: Sat 31 Mar 2035 09:37:20 +0000
asID: 198949
IP address blocks: 41.63.192.0/18 maxlen: 24
2c0f:f778::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36CC035/71F69968715811ED8B19339FF1222468/47B7udCVd0n_5Ix-cyWp4RtBark.crl
rsync://rpki.afrinic.net/repository/member_repository/F36CC035/71F69968715811ED8B19339FF1222468/47B7udCVd0n_5Ix-cyWp4RtBark.mft
rsync://rpki.afrinic.net/repository/afrinic/47B7udCVd0n_5Ix-cyWp4RtBark.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 06 Apr 2025 00:06:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 871 (0x367)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36CC035AF
Validity
Not Before: Mar 3 09:37:20 2025 GMT
Not After : Mar 31 09:37:20 2035 GMT
Subject: CN=67c57854-c25d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:8c:d4:7b:8b:93:5a:b6:c8:be:d9:2e:00:18:
36:24:29:42:18:2a:08:8b:66:c1:ee:f9:5c:bf:61:
3f:4a:8e:83:f7:e9:a5:af:7b:0e:07:b8:9f:73:2c:
9e:9c:72:d9:82:d1:22:94:29:5c:0f:65:f5:d2:ad:
c1:25:e2:3e:52:8e:86:48:27:c8:86:85:78:d0:17:
17:1d:b6:f3:c7:ab:08:4e:71:9b:dc:24:ec:3a:c8:
7a:ad:7d:76:1b:d2:81:0b:86:80:e1:fd:e1:bd:14:
eb:8b:5c:22:c7:19:80:dc:7f:ad:64:57:87:ef:9f:
d6:71:d6:b1:f7:7c:8d:18:ed:8d:d8:c6:a2:50:9c:
46:34:93:7c:c9:2e:15:4b:c7:6d:5e:04:a7:6a:07:
55:bc:1a:40:85:06:b9:79:21:f5:46:9d:7c:64:ea:
fe:da:67:97:7a:02:a2:fd:2b:29:ee:ed:85:98:3f:
e8:79:a9:93:1b:f8:aa:0b:0f:ec:3e:7d:71:e7:df:
31:7c:07:de:02:60:30:91:db:aa:4b:8c:66:f5:9f:
b0:63:17:73:4a:17:b3:78:b5:a9:b6:b0:41:8e:43:
b0:fe:87:5b:e9:9f:30:8b:79:f2:d9:b5:3b:18:ea:
e7:b1:88:f2:4f:d1:8b:6e:6c:f9:6d:86:bf:8a:97:
ea:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:5E:F8:AD:1E:77:7B:CC:59:4D:AB:62:CB:3B:51:95:51:84:83:12
X509v3 Authority Key Identifier:
keyid:E3:B0:7B:B9:D0:95:77:49:FF:E4:8C:7E:73:25:A9:E1:1B:41:6A:B9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36CC035/71F69968715811ED8B19339FF1222468/47B7udCVd0n_5Ix-cyWp4RtBark.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/47B7udCVd0n_5Ix-cyWp4RtBark.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36CC035/71F69968715811ED8B19339FF1222468/1CCE2C1EF81311EFB753FE76762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.63.192.0/18
IPv6:
2c0f:f778::/32
Signature Algorithm: sha256WithRSAEncryption
24:86:b5:2a:89:d8:35:c1:e8:c8:be:f3:9b:f5:d1:c9:97:75:
49:20:fb:8f:02:d2:79:10:1e:74:07:f5:be:37:53:f5:ff:62:
a4:fc:e7:33:10:d5:4d:35:c2:5c:3f:58:08:87:f7:ec:9c:aa:
ed:52:48:a8:f6:24:cb:34:6e:4a:0b:24:4a:4a:68:30:26:6f:
7f:dd:56:8c:8e:60:a7:70:49:45:91:5b:06:42:15:15:b8:73:
af:97:86:9f:f9:a4:a0:af:25:15:48:51:39:95:14:84:55:2d:
4d:7a:aa:37:d4:3e:d3:b9:95:f2:43:49:30:ae:6f:3c:f8:95:
d0:e8:43:ac:a7:a2:e1:38:13:8a:34:31:12:b8:0c:bd:c0:ad:
32:e3:26:d6:6a:94:29:78:08:34:b2:ef:44:1c:ae:48:5a:47:
d9:86:a6:89:f9:7d:25:1e:c2:d8:d9:4e:13:13:7c:3a:35:24:
13:c3:33:3f:1b:a9:55:37:41:5f:59:52:f6:59:ef:a4:db:be:
9c:d0:25:ce:82:60:e2:2f:21:bf:e5:81:7a:c5:f5:dd:9d:59:
69:60:61:02:34:c1:e3:35:ac:d2:b9:b3:4d:22:12:c4:b7:87:
65:f8:28:57:d0:6c:e2:d8:d2:34:b7:73:4e:39:b7:95:9f:2c:
9c:1f:1e:43
-----BEGIN CERTIFICATE-----
MIIFkjCCBHqgAwIBAgICA2cwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
Q0MwMzVBRjExMC8GA1UEBRMoRTNCMDdCQjlEMDk1Nzc0OUZGRTQ4QzdFNzMyNUE5
RTExQjQxNkFCOTAeFw0yNTAzMDMwOTM3MjBaFw0zNTAzMzEwOTM3MjBaMBgxFjAU
BgNVBAMTDTY3YzU3ODU0LWMyNWQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQC/jNR7i5Natsi+2S4AGDYkKUIYKgiLZsHu+Vy/YT9KjoP36aWvew4HuJ9z
LJ6cctmC0SKUKVwPZfXSrcEl4j5SjoZIJ8iGhXjQFxcdtvPHqwhOcZvcJOw6yHqt
fXYb0oELhoDh/eG9FOuLXCLHGYDcf61kV4fvn9Zx1rH3fI0Y7Y3YxqJQnEY0k3zJ
LhVLx21eBKdqB1W8GkCFBrl5IfVGnXxk6v7aZ5d6AqL9Kynu7YWYP+h5qZMb+KoL
D+w+fXHn3zF8B94CYDCR26pLjGb1n7BjF3NKF7N4tam2sEGOQ7D+h1vpnzCLefLZ
tTsY6uexiPJP0YtubPlthr+Kl+r7AgMBAAGjggK0MIICsDAdBgNVHQ4EFgQUA174
rR53e8xZTatiyztRlVGEgxIwHwYDVR0jBBgwFoAU47B7udCVd0n/5Ix+cyWp4RtB
arkwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNkNDMDM1LzcxRjY5OTY4NzE1ODExRUQ4QjE5MzM5RkYxMjIyNDY4LzQ3Qjd1
ZENWZDBuXzVJeC1jeVdwNFJ0QmFyay5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljLzQ3Qjd1ZENWZDBuXzVJeC1jeVdwNFJ0QmFyay5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNkNDMDM1LzcxRjY5OTY4NzE1ODExRUQ4QjE5MzM5RkYx
MjIyNDY4LzFDQ0UyQzFFRjgxMzExRUZCNzUzRkU3Njc2MkU5NTFBLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwLgYIKwYBBQUHAQcBAf8EHzAdMAwEAgABMAYDBAYpP8AwDQQCAAIwBwMFACwP
93gwDQYJKoZIhvcNAQELBQADggEBACSGtSqJ2DXB6Mi+85v10cmXdUkg+48C0nkQ
HnQH9b43U/X/YqT85zMQ1U01wlw/WAiH9+ycqu1SSKj2JMs0bkoLJEpKaDAmb3/d
VoyOYKdwSUWRWwZCFRW4c6+Xhp/5pKCvJRVIUTmVFIRVLU16qjfUPtO5lfJDSTCu
bzz4ldDoQ6ynouE4E4o0MRK4DL3ArTLjJtZqlCl4CDSy70QcrkhaR9mGpon5fSUe
wtjZThMTfDo1JBPDMz8bqVU3QV9ZUvZZ76TbvpzQJc6CYOIvIb/lgXrF9d2dWWlg
YQI0weM1rNK5s00iEsS3h2X4KFfQbOLY0jS3c045t5WfLJwfHkM=
-----END CERTIFICATE-----
Generated at Fri Apr 4 10:59:56 2025 by rpki-client