Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36D0F50/5EAAA6B8258F11EBB70B7C19F8AEA228/B0176C34B63B11EF8B2A089F762E951A.roa
File: B0176C34B63B11EF8B2A089F762E951A.roa (raw, json)
Hash identifier: HzxRLhwDny393Ld7RhZXM1tL1h4c/r1j+SMhsOtzTi4=
Subject key identifier: 6C:71:84:48:21:CE:0A:48:2C:A0:88:9D:38:DD:75:86:AC:52:CC:2D
Certificate issuer: /CN=F36D0F50AF/serialNumber=AE98A5FDAD2DC9F4FC1BE47F66857A8C47988102
Certificate serial: 074F
Authority key identifier: AE:98:A5:FD:AD:2D:C9:F4:FC:1B:E4:7F:66:85:7A:8C:47:98:81:02
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/rpil_a0tyfT8G-R_ZoV6jEeYgQI.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36D0F50/5EAAA6B8258F11EBB70B7C19F8AEA228/B0176C34B63B11EF8B2A089F762E951A.roa
Signing time: Mon 09 Dec 2024 14:41:35 +0000
ROA not before: Mon 09 Dec 2024 14:41:31 +0000
ROA not after: Sat 30 Jul 2033 14:41:31 +0000
asID: 37119
IP address blocks: 2c0f:f888:a920::/44 maxlen: 44
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36D0F50/5EAAA6B8258F11EBB70B7C19F8AEA228/rpil_a0tyfT8G-R_ZoV6jEeYgQI.crl
rsync://rpki.afrinic.net/repository/member_repository/F36D0F50/5EAAA6B8258F11EBB70B7C19F8AEA228/rpil_a0tyfT8G-R_ZoV6jEeYgQI.mft
rsync://rpki.afrinic.net/repository/afrinic/rpil_a0tyfT8G-R_ZoV6jEeYgQI.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 06 Apr 2025 01:34:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1871 (0x74f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36D0F50AF
Validity
Not Before: Dec 9 14:41:31 2024 GMT
Not After : Jul 30 14:41:31 2033 GMT
Subject: CN=6757019e-eda2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:f5:48:c9:9c:58:bb:82:c9:fe:94:8b:7c:9d:
a7:83:d4:87:93:09:ad:61:9b:19:2f:73:d5:7b:c7:
d2:29:31:b0:fc:b9:ec:c9:d1:e5:81:57:68:82:e5:
38:35:6d:c3:40:25:6a:44:96:e7:7c:b6:50:52:1f:
52:8e:e0:b1:50:e1:2a:8c:27:dc:db:8e:9e:4d:ab:
4f:69:d9:1c:b1:73:b2:f8:f1:e3:24:41:92:bb:5e:
67:51:fd:15:d7:f6:dc:d5:cc:08:81:3f:1a:ec:ac:
c9:f0:75:da:74:96:38:3d:ea:75:f3:96:ce:7a:38:
dd:82:96:16:c8:e8:76:85:f2:c8:77:5d:b1:3d:59:
03:8d:4e:1a:e2:ef:26:86:3b:31:42:35:a5:d7:7d:
45:02:a0:e3:37:86:b0:fc:87:6a:2b:80:bb:78:2c:
9b:5d:b5:38:27:21:78:30:39:b0:95:74:28:85:9f:
6b:80:64:5c:0f:56:ce:bc:4e:6e:05:66:55:b9:77:
2d:25:31:2a:a9:0c:7d:65:ec:b9:a6:70:bf:98:55:
23:48:a9:3d:d8:3e:13:af:a1:cd:b1:f9:7f:df:f1:
2a:11:13:fa:d0:25:0d:e2:4e:c0:f5:3a:95:cd:6e:
ab:65:27:54:54:6d:5d:fa:38:8b:c3:c8:09:be:5a:
6f:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:71:84:48:21:CE:0A:48:2C:A0:88:9D:38:DD:75:86:AC:52:CC:2D
X509v3 Authority Key Identifier:
keyid:AE:98:A5:FD:AD:2D:C9:F4:FC:1B:E4:7F:66:85:7A:8C:47:98:81:02
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36D0F50/5EAAA6B8258F11EBB70B7C19F8AEA228/rpil_a0tyfT8G-R_ZoV6jEeYgQI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/rpil_a0tyfT8G-R_ZoV6jEeYgQI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36D0F50/5EAAA6B8258F11EBB70B7C19F8AEA228/B0176C34B63B11EF8B2A089F762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2c0f:f888:a920::/44
Signature Algorithm: sha256WithRSAEncryption
b2:18:81:71:b5:83:07:ca:18:e4:0f:75:13:c9:54:38:c4:6b:
f5:70:57:11:f5:1f:c8:d5:b9:47:84:21:8c:79:c7:e8:86:12:
6b:9b:e5:bc:a2:6e:e5:03:35:19:c0:9a:45:44:ec:6c:99:98:
31:02:5e:92:81:08:49:e4:90:3e:dc:e2:1c:d4:d7:84:03:78:
62:e2:04:bb:c6:2e:f0:b9:27:e8:7b:e8:0d:2a:b3:4d:f5:c8:
81:6e:ba:f5:8a:66:ce:20:0a:3d:6e:a9:78:3d:68:5d:57:ab:
a5:54:82:25:38:50:72:a4:b4:75:2e:a8:1b:37:e9:f4:46:6d:
7c:08:57:a6:9b:4c:a0:09:c4:7d:bb:32:b9:5f:b8:57:2e:0b:
e6:15:be:e5:bd:c3:8d:b2:19:b4:b9:f0:46:23:2c:ba:fe:41:
90:d8:c0:bc:a4:f1:78:a8:dd:72:f8:0a:6e:7e:1c:db:4a:a6:
43:4d:1e:7a:ed:89:fc:30:1d:f2:40:c2:32:ba:9e:e6:53:10:
f1:f0:3f:da:dd:50:98:44:47:cc:e3:17:2c:ec:46:b4:f1:c2:
2b:78:79:82:79:fd:b7:d6:ce:70:46:00:46:ba:d7:63:93:42:
f7:3f:b2:2a:6b:ef:5e:1f:5d:29:8c:81:ba:b3:33:a8:b7:54:
d3:30:69:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 01:53:11 2025 by rpki-client