Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36D0F50/5EAAA6B8258F11EBB70B7C19F8AEA228/A306912CB63C11EFB6D029A5762E951A.roa
File: A306912CB63C11EFB6D029A5762E951A.roa (raw, json)
Hash identifier: 33DelgLsH42AAaR/QZ8/Kr24EkbHFUdI15WHolF64SI=
Subject key identifier: 36:EB:00:33:C4:B7:92:F5:9E:38:F2:F6:EC:A9:AF:5D:17:E3:51:D5
Certificate issuer: /CN=F36D0F50AF/serialNumber=AE98A5FDAD2DC9F4FC1BE47F66857A8C47988102
Certificate serial: 0757
Authority key identifier: AE:98:A5:FD:AD:2D:C9:F4:FC:1B:E4:7F:66:85:7A:8C:47:98:81:02
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/rpil_a0tyfT8G-R_ZoV6jEeYgQI.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36D0F50/5EAAA6B8258F11EBB70B7C19F8AEA228/A306912CB63C11EFB6D029A5762E951A.roa
Signing time: Mon 09 Dec 2024 14:48:22 +0000
ROA not before: Mon 09 Dec 2024 14:48:18 +0000
ROA not after: Sat 30 Jul 2033 14:48:18 +0000
asID: 37119
IP address blocks: 2c0f:f888:a9a0::/44 maxlen: 44
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36D0F50/5EAAA6B8258F11EBB70B7C19F8AEA228/rpil_a0tyfT8G-R_ZoV6jEeYgQI.crl
rsync://rpki.afrinic.net/repository/member_repository/F36D0F50/5EAAA6B8258F11EBB70B7C19F8AEA228/rpil_a0tyfT8G-R_ZoV6jEeYgQI.mft
rsync://rpki.afrinic.net/repository/afrinic/rpil_a0tyfT8G-R_ZoV6jEeYgQI.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 06 Apr 2025 01:34:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1879 (0x757)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36D0F50AF
Validity
Not Before: Dec 9 14:48:18 2024 GMT
Not After : Jul 30 14:48:18 2033 GMT
Subject: CN=67570336-670a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:74:40:18:1d:84:e5:60:3d:6e:90:c4:e3:08:
61:15:ef:64:0e:53:49:14:ca:96:51:b9:f4:22:09:
eb:3e:fb:0c:a5:f2:11:e9:35:4c:26:b1:9d:29:2e:
4c:c3:86:65:b9:0f:a9:6e:a8:c9:82:c7:72:e4:4b:
ec:a5:c0:0a:bf:c1:4e:59:ac:99:c3:48:1f:b6:e3:
a8:3f:b5:53:d8:49:67:36:28:17:84:8e:9e:4a:32:
46:8d:1c:17:de:66:b2:69:c0:49:8c:ea:99:f4:6d:
0d:ec:61:c5:3b:0a:09:62:d5:dc:0d:8f:0a:8f:2a:
0d:a1:d6:fe:71:3a:fb:f5:ff:e2:85:f5:57:15:11:
73:8b:3c:a4:f4:66:db:86:4b:52:f1:d2:c9:04:fc:
e5:46:37:1e:e3:46:08:e2:1b:98:bd:fb:d5:5e:75:
4c:7d:07:bb:23:4e:8f:34:d6:38:9f:df:d7:da:38:
ca:20:25:ae:f0:76:fa:e3:fb:ba:24:92:85:dc:9d:
68:35:1f:89:ed:b8:79:75:2f:88:54:c6:6e:92:08:
61:3e:da:90:a8:d9:cd:72:ea:63:09:09:5d:bb:31:
bd:35:90:90:91:25:c0:a5:c4:78:9c:e2:e4:0f:11:
fc:f0:77:a7:c2:f5:74:3c:92:5c:cd:96:4e:9e:57:
c7:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:EB:00:33:C4:B7:92:F5:9E:38:F2:F6:EC:A9:AF:5D:17:E3:51:D5
X509v3 Authority Key Identifier:
keyid:AE:98:A5:FD:AD:2D:C9:F4:FC:1B:E4:7F:66:85:7A:8C:47:98:81:02
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36D0F50/5EAAA6B8258F11EBB70B7C19F8AEA228/rpil_a0tyfT8G-R_ZoV6jEeYgQI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/rpil_a0tyfT8G-R_ZoV6jEeYgQI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36D0F50/5EAAA6B8258F11EBB70B7C19F8AEA228/A306912CB63C11EFB6D029A5762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2c0f:f888:a9a0::/44
Signature Algorithm: sha256WithRSAEncryption
76:18:bc:7b:9b:8e:f1:92:15:b7:0f:2c:86:2f:5a:18:fb:b5:
2e:8c:f0:ce:0e:03:14:43:c2:52:cb:0f:2f:26:55:7b:0d:2b:
f8:92:e7:f7:2a:ab:4d:5f:84:c4:73:ba:ed:23:b6:e4:f6:de:
3b:98:55:65:cc:ea:e3:38:4b:d6:8e:5c:59:0d:09:08:3d:94:
5e:c7:6b:8a:af:56:b2:f5:a4:9d:57:6f:00:3f:d3:e9:77:96:
bb:27:a7:03:47:7f:25:d3:4a:fb:37:b1:79:b8:14:b7:e7:df:
2f:b6:5e:c1:f5:78:72:b6:0f:3a:d0:4f:c4:19:c2:de:a3:46:
c7:16:e5:be:0c:f9:c9:26:17:7e:0f:db:31:7b:99:fa:11:9b:
05:d8:45:6d:45:42:3a:36:f2:fc:10:8e:46:bc:b0:3d:9f:6e:
e2:3e:d4:95:39:48:41:cb:c0:47:01:8a:4e:d4:10:72:80:2f:
01:96:94:3b:73:f0:a7:4a:a1:51:8d:4e:54:ce:0b:db:0a:e1:
70:df:33:91:50:96:c1:44:98:6f:0f:e6:06:19:b9:3f:57:bd:
4c:d1:d5:c2:af:ef:f2:d5:ba:d2:8a:75:e9:b2:e2:3f:f6:25:
32:87:26:2e:8b:23:60:07:96:90:d0:11:ac:60:ec:65:21:f8:
0d:66:68:0b
-----BEGIN CERTIFICATE-----
MIIFhjCCBG6gAwIBAgICB1cwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
RDBGNTBBRjExMC8GA1UEBRMoQUU5OEE1RkRBRDJEQzlGNEZDMUJFNDdGNjY4NTdB
OEM0Nzk4ODEwMjAeFw0yNDEyMDkxNDQ4MThaFw0zMzA3MzAxNDQ4MThaMBgxFjAU
BgNVBAMTDTY3NTcwMzM2LTY3MGEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDEdEAYHYTlYD1ukMTjCGEV72QOU0kUypZRufQiCes++wyl8hHpNUwmsZ0p
LkzDhmW5D6luqMmCx3LkS+ylwAq/wU5ZrJnDSB+246g/tVPYSWc2KBeEjp5KMkaN
HBfeZrJpwEmM6pn0bQ3sYcU7Cgli1dwNjwqPKg2h1v5xOvv1/+KF9VcVEXOLPKT0
ZtuGS1Lx0skE/OVGNx7jRgjiG5i9+9VedUx9B7sjTo801jif39faOMogJa7wdvrj
+7okkoXcnWg1H4ntuHl1L4hUxm6SCGE+2pCo2c1y6mMJCV27Mb01kJCRJcClxHic
4uQPEfzwd6fC9XQ8klzNlk6eV8dxAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUNusA
M8S3kvWeOPL27KmvXRfjUdUwHwYDVR0jBBgwFoAUrpil/a0tyfT8G+R/ZoV6jEeY
gQIwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNkQwRjUwLzVFQUFBNkI4MjU4RjExRUJCNzBCN0MxOUY4QUVBMjI4L3JwaWxf
YTB0eWZUOEctUl9ab1Y2akVlWWdRSS5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL3JwaWxfYTB0eWZUOEctUl9ab1Y2akVlWWdRSS5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNkQwRjUwLzVFQUFBNkI4MjU4RjExRUJCNzBCN0MxOUY4
QUVBMjI4L0EzMDY5MTJDQjYzQzExRUZCNkQwMjlBNTc2MkU5NTFBLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwQsD/iIqaAwDQYJKoZIhvcN
AQELBQADggEBAHYYvHubjvGSFbcPLIYvWhj7tS6M8M4OAxRDwlLLDy8mVXsNK/iS
5/cqq01fhMRzuu0jtuT23juYVWXM6uM4S9aOXFkNCQg9lF7Ha4qvVrL1pJ1XbwA/
0+l3lrsnpwNHfyXTSvs3sXm4FLfn3y+2XsH1eHK2DzrQT8QZwt6jRscW5b4M+ckm
F34P2zF7mfoRmwXYRW1FQjo28vwQjka8sD2fbuI+1JU5SEHLwEcBik7UEHKALwGW
lDtz8KdKoVGNTlTOC9sK4XDfM5FQlsFEmG8P5gYZuT9XvUzR1cKv7/LVutKKdemy
4j/2JTKHJi6LI2AHlpDQEaxg7GUh+A1maAs=
-----END CERTIFICATE-----
Generated at Sat Apr 5 02:59:38 2025 by rpki-client