Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36D0F50/5EAAA6B8258F11EBB70B7C19F8AEA228/9874B62EB61B11EFB4FD8959762E951A.roa
File: 9874B62EB61B11EFB4FD8959762E951A.roa (raw, json)
Hash identifier: Tp1vQjpUplm6vkbm480bjMD8Tln5KOdDOhiL0aSrlvk=
Subject key identifier: 46:0D:57:9F:1E:C0:C1:9B:EE:C2:0E:7B:D7:96:1F:12:AE:D7:70:4E
Certificate issuer: /CN=F36D0F50AF/serialNumber=AE98A5FDAD2DC9F4FC1BE47F66857A8C47988102
Certificate serial: 0727
Authority key identifier: AE:98:A5:FD:AD:2D:C9:F4:FC:1B:E4:7F:66:85:7A:8C:47:98:81:02
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/rpil_a0tyfT8G-R_ZoV6jEeYgQI.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36D0F50/5EAAA6B8258F11EBB70B7C19F8AEA228/9874B62EB61B11EFB4FD8959762E951A.roa
Signing time: Mon 09 Dec 2024 10:51:51 +0000
ROA not before: Mon 09 Dec 2024 10:51:46 +0000
ROA not after: Sat 30 Jul 2033 10:51:46 +0000
asID: 37119
IP address blocks: 2c0f:f888:a060::/44 maxlen: 44
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36D0F50/5EAAA6B8258F11EBB70B7C19F8AEA228/rpil_a0tyfT8G-R_ZoV6jEeYgQI.crl
rsync://rpki.afrinic.net/repository/member_repository/F36D0F50/5EAAA6B8258F11EBB70B7C19F8AEA228/rpil_a0tyfT8G-R_ZoV6jEeYgQI.mft
rsync://rpki.afrinic.net/repository/afrinic/rpil_a0tyfT8G-R_ZoV6jEeYgQI.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 06 Apr 2025 00:06:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1831 (0x727)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36D0F50AF
Validity
Not Before: Dec 9 10:51:46 2024 GMT
Not After : Jul 30 10:51:46 2033 GMT
Subject: CN=6756cbc7-39e8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:28:fa:4d:1e:79:bf:f3:a7:cd:63:93:02:87:
09:c4:8a:ba:a5:9d:2b:d1:bb:5c:fa:14:fd:ff:56:
a0:d1:eb:dd:63:bc:35:d8:5a:1d:ac:42:5a:86:bb:
eb:be:a6:06:c9:a2:f2:3c:55:dd:76:04:24:30:db:
32:10:af:c1:9e:5a:31:01:c1:dc:9e:b8:00:a7:48:
b9:a5:6a:37:cd:02:ad:a1:b9:45:75:70:a7:42:a8:
3e:84:c5:ec:6e:ef:b3:3b:ad:7f:a5:88:46:89:ea:
68:be:57:bb:ff:ef:2d:98:7f:9f:8a:ba:57:9f:9f:
45:0f:1d:ea:9a:65:0f:17:99:61:9a:22:97:04:c2:
90:bb:e2:6f:99:d0:0c:da:31:19:78:47:bc:9d:16:
01:68:78:64:c9:5c:4e:10:a3:bb:df:50:7d:52:25:
52:36:df:c1:32:2c:93:af:aa:cb:8d:7d:8d:ac:3e:
6b:d5:5e:8b:79:b1:e0:4b:49:aa:cc:19:d0:7b:0f:
fc:8a:e4:a9:bd:a8:5b:c1:7e:6b:ff:79:0f:74:9e:
df:85:b9:77:bc:99:30:b5:5d:01:dc:1e:9a:53:13:
39:92:64:d1:e6:dd:1a:5b:47:fc:17:5e:e9:78:3b:
35:17:50:e6:1f:b6:6d:4d:d6:d0:e7:47:16:b2:38:
88:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:0D:57:9F:1E:C0:C1:9B:EE:C2:0E:7B:D7:96:1F:12:AE:D7:70:4E
X509v3 Authority Key Identifier:
keyid:AE:98:A5:FD:AD:2D:C9:F4:FC:1B:E4:7F:66:85:7A:8C:47:98:81:02
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36D0F50/5EAAA6B8258F11EBB70B7C19F8AEA228/rpil_a0tyfT8G-R_ZoV6jEeYgQI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/rpil_a0tyfT8G-R_ZoV6jEeYgQI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36D0F50/5EAAA6B8258F11EBB70B7C19F8AEA228/9874B62EB61B11EFB4FD8959762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2c0f:f888:a060::/44
Signature Algorithm: sha256WithRSAEncryption
0b:e3:2d:a8:29:3a:5b:00:32:41:61:76:56:f9:1b:f3:29:db:
45:8e:a6:2c:28:7b:ca:a7:05:70:c1:3b:03:59:97:aa:fe:25:
85:c1:56:df:2c:ab:51:b1:3e:31:65:01:b9:5b:b4:09:8c:ea:
fb:fd:ba:98:dc:55:f2:f0:9f:e5:1a:78:3a:e6:9b:2f:00:b0:
22:72:1e:37:50:83:e3:85:20:1d:63:3c:b7:66:f5:06:15:26:
09:8d:8f:48:4d:bb:fe:9c:d7:0c:21:e6:8b:86:b9:da:72:3f:
e6:a6:42:d0:b0:43:d5:b2:20:b7:70:c8:d7:11:0e:2e:5b:e9:
f7:18:ff:f5:46:62:22:74:81:48:5b:bc:39:44:67:e1:9d:b5:
04:34:3b:85:7d:82:09:c4:03:c2:df:e0:0b:b7:fc:ea:8c:fd:
68:1c:5d:09:b9:6a:1a:f3:ed:20:5f:36:0c:bf:b2:92:9e:5c:
9d:7e:dc:69:04:29:6e:c3:6a:e1:5a:3b:49:ba:b4:b6:e5:a3:
65:d5:b0:0f:24:7f:f7:5e:bc:6f:7b:de:6a:60:de:f3:f6:7f:
e3:7a:c1:be:a5:0d:b1:ef:13:1d:1f:40:87:08:48:37:2d:a8:
6f:b5:9a:6b:bc:87:b4:81:0f:f1:31:b9:4e:fe:1b:05:bd:08:
d0:a1:4e:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 00:35:31 2025 by rpki-client