Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36D0F50/5EAAA6B8258F11EBB70B7C19F8AEA228/351CE064B63A11EFB3686C96762E951A.roa
File: 351CE064B63A11EFB3686C96762E951A.roa (raw, json)
Hash identifier: yLejtvsVge/GzFk1+iy4Yqst9eI9m5Oo3iVmJ/MPobI=
Subject key identifier: EC:DB:DF:F7:78:10:A3:9F:A2:BF:63:BA:B8:8D:CA:15:C4:90:A1:7D
Certificate issuer: /CN=F36D0F50AF/serialNumber=AE98A5FDAD2DC9F4FC1BE47F66857A8C47988102
Certificate serial: 0741
Authority key identifier: AE:98:A5:FD:AD:2D:C9:F4:FC:1B:E4:7F:66:85:7A:8C:47:98:81:02
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/rpil_a0tyfT8G-R_ZoV6jEeYgQI.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36D0F50/5EAAA6B8258F11EBB70B7C19F8AEA228/351CE064B63A11EFB3686C96762E951A.roa
Signing time: Mon 09 Dec 2024 14:30:59 +0000
ROA not before: Mon 09 Dec 2024 14:30:55 +0000
ROA not after: Sat 30 Jul 2033 14:30:55 +0000
asID: 37119
IP address blocks: 2c0f:f888:a830::/44 maxlen: 44
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36D0F50/5EAAA6B8258F11EBB70B7C19F8AEA228/rpil_a0tyfT8G-R_ZoV6jEeYgQI.crl
rsync://rpki.afrinic.net/repository/member_repository/F36D0F50/5EAAA6B8258F11EBB70B7C19F8AEA228/rpil_a0tyfT8G-R_ZoV6jEeYgQI.mft
rsync://rpki.afrinic.net/repository/afrinic/rpil_a0tyfT8G-R_ZoV6jEeYgQI.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 12 Apr 2025 00:06:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1857 (0x741)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36D0F50AF
Validity
Not Before: Dec 9 14:30:55 2024 GMT
Not After : Jul 30 14:30:55 2033 GMT
Subject: CN=6756ff23-9e49
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:58:38:49:b7:6b:32:38:73:b4:98:a1:f6:fd:
f3:83:bc:e2:1d:45:95:eb:ed:c0:10:df:0f:a3:9f:
ee:f3:86:d9:9c:14:4d:e2:ca:73:c5:f1:1f:6d:4e:
eb:14:bf:4b:0b:9c:4c:5c:94:89:e1:42:81:4d:fb:
dd:44:41:eb:23:0f:74:da:79:26:23:1f:37:fb:c8:
e5:4a:66:b0:43:82:42:04:23:88:cb:52:f3:ae:74:
28:f7:e6:fb:44:ef:59:63:49:f5:5b:fb:8d:d4:f3:
65:0b:4b:1c:10:0f:9f:3e:aa:e3:e5:14:ce:13:71:
d7:3f:7a:96:5c:5b:d1:7f:b2:be:43:f4:d8:c3:ab:
55:e2:b2:e6:e6:53:b5:79:c6:f1:71:69:ac:6e:d1:
0d:77:ed:65:b4:a5:f4:63:93:4e:b4:91:75:aa:5b:
4c:8d:13:f1:a6:89:23:b7:63:2b:1b:18:76:dc:c3:
b3:b0:7b:05:70:52:19:f0:8d:8f:cb:11:23:b0:6e:
de:36:54:ad:36:ce:a3:a1:7d:44:92:0c:63:41:dc:
6b:1a:04:a5:20:25:d0:21:a5:22:6c:32:e0:54:55:
bc:db:6d:b7:08:94:85:2f:2f:e4:a1:55:31:73:75:
a7:c6:e6:ef:5d:df:2f:10:61:55:3b:b1:3c:22:bc:
9c:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:DB:DF:F7:78:10:A3:9F:A2:BF:63:BA:B8:8D:CA:15:C4:90:A1:7D
X509v3 Authority Key Identifier:
keyid:AE:98:A5:FD:AD:2D:C9:F4:FC:1B:E4:7F:66:85:7A:8C:47:98:81:02
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36D0F50/5EAAA6B8258F11EBB70B7C19F8AEA228/rpil_a0tyfT8G-R_ZoV6jEeYgQI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/rpil_a0tyfT8G-R_ZoV6jEeYgQI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36D0F50/5EAAA6B8258F11EBB70B7C19F8AEA228/351CE064B63A11EFB3686C96762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2c0f:f888:a830::/44
Signature Algorithm: sha256WithRSAEncryption
b4:b8:d0:7f:d8:ad:14:ed:59:54:dc:d4:71:94:0a:71:dd:21:
92:48:bb:4f:e3:e3:0a:3e:08:f1:13:44:cf:a9:ef:a7:c8:7b:
c4:e6:96:bb:8a:e6:f7:28:fc:b7:cc:e9:ff:47:31:e6:09:f6:
53:84:b7:43:7d:09:20:0d:02:78:6a:fd:df:07:49:2f:86:da:
8d:9c:e1:5d:38:47:f3:94:61:7b:bb:1b:7f:97:49:5d:d5:82:
8b:f3:35:42:ff:03:d8:02:e9:02:52:2d:56:b6:5f:a5:6c:9f:
7f:21:60:ee:e3:c0:05:39:8e:c9:5f:a8:e9:a1:04:e1:cb:2b:
52:00:f3:c6:a9:83:0f:d5:c9:11:68:92:4f:ec:60:67:bf:83:
42:b7:4c:88:86:cf:d9:45:4e:6f:47:44:04:62:3b:fa:61:42:
e2:87:6e:4a:62:fc:86:76:52:15:ba:58:c2:40:01:09:df:09:
d0:d3:8e:47:bf:cd:59:40:44:41:5f:0d:bc:e1:ac:e1:47:2b:
25:40:53:9b:5d:63:62:65:eb:06:b0:ec:ec:69:f7:70:7e:8b:
8b:f9:92:39:dd:00:f5:0e:59:46:66:6f:14:65:41:f1:ef:15:
77:62:67:98:63:76:d5:7d:8b:ab:a0:ba:b5:2b:47:f8:4e:5e:
65:c5:38:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 10 13:30:53 2025 by rpki-client