Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36D0F50/5EAAA6B8258F11EBB70B7C19F8AEA228/B54BDC38B61A11EFB3951455762E951A.roa
File: B54BDC38B61A11EFB3951455762E951A.roa (raw, json)
Hash identifier: sSE9uZ+/AY78LjlWI670MTpS5YqkBnZsyEEL7huKbUk=
Subject key identifier: 6D:7C:38:13:C6:DC:F3:B7:7A:C6:92:07:28:8F:55:B0:72:AB:03:E7
Certificate issuer: /CN=F36D0F50AF/serialNumber=AE98A5FDAD2DC9F4FC1BE47F66857A8C47988102
Certificate serial: 0721
Authority key identifier: AE:98:A5:FD:AD:2D:C9:F4:FC:1B:E4:7F:66:85:7A:8C:47:98:81:02
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/rpil_a0tyfT8G-R_ZoV6jEeYgQI.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36D0F50/5EAAA6B8258F11EBB70B7C19F8AEA228/B54BDC38B61A11EFB3951455762E951A.roa
Signing time: Mon 09 Dec 2024 10:45:30 +0000
ROA not before: Mon 09 Dec 2024 10:45:24 +0000
ROA not after: Sat 30 Jul 2033 10:45:24 +0000
asID: 37119
IP address blocks: 2c0f:f888:a030::/44 maxlen: 44
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36D0F50/5EAAA6B8258F11EBB70B7C19F8AEA228/rpil_a0tyfT8G-R_ZoV6jEeYgQI.crl
rsync://rpki.afrinic.net/repository/member_repository/F36D0F50/5EAAA6B8258F11EBB70B7C19F8AEA228/rpil_a0tyfT8G-R_ZoV6jEeYgQI.mft
rsync://rpki.afrinic.net/repository/afrinic/rpil_a0tyfT8G-R_ZoV6jEeYgQI.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 05 Apr 2025 01:31:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1825 (0x721)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36D0F50AF
Validity
Not Before: Dec 9 10:45:24 2024 GMT
Not After : Jul 30 10:45:24 2033 GMT
Subject: CN=6756ca4a-46b2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:61:70:74:1e:7e:a5:dc:01:00:97:69:10:60:
5c:6a:73:bf:e3:2f:18:88:bc:39:0c:89:72:84:e7:
5c:76:1f:27:16:d5:8b:a0:60:38:78:15:4f:25:15:
3a:76:38:1e:9d:ba:6e:55:13:52:1c:3b:e3:28:b3:
bb:3a:46:03:19:12:b3:24:5a:af:de:94:a4:cc:12:
5f:69:18:fc:15:52:4f:17:ed:9d:2a:5c:f0:21:e7:
d2:a7:8f:c2:55:6b:ac:16:37:44:df:c6:64:b2:62:
f3:5c:2d:44:9f:1f:74:d8:7b:b1:4d:c1:ca:75:c5:
4d:d5:82:d0:c7:77:2d:fe:7c:b5:73:f7:3d:f1:1b:
7f:b1:bc:04:38:23:9d:ae:85:ea:76:56:64:25:31:
0e:01:e8:ef:3d:d1:ee:38:cf:be:25:24:4f:74:1a:
a2:8e:83:0e:e0:76:17:6d:f1:97:3f:e6:b2:53:ea:
fb:83:1d:5d:25:f5:12:fc:d1:82:51:98:d4:ff:7d:
6a:81:ea:94:be:90:8c:23:e9:70:24:d6:47:9d:10:
af:a1:59:1a:3f:73:fc:b7:cd:f3:48:33:fc:ab:d3:
f8:92:1b:d6:e7:4e:8d:88:1c:51:34:76:32:25:5e:
f7:6e:b6:02:b3:55:1e:aa:86:ef:4b:d1:d2:7b:8f:
b8:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:7C:38:13:C6:DC:F3:B7:7A:C6:92:07:28:8F:55:B0:72:AB:03:E7
X509v3 Authority Key Identifier:
keyid:AE:98:A5:FD:AD:2D:C9:F4:FC:1B:E4:7F:66:85:7A:8C:47:98:81:02
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36D0F50/5EAAA6B8258F11EBB70B7C19F8AEA228/rpil_a0tyfT8G-R_ZoV6jEeYgQI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/rpil_a0tyfT8G-R_ZoV6jEeYgQI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36D0F50/5EAAA6B8258F11EBB70B7C19F8AEA228/B54BDC38B61A11EFB3951455762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2c0f:f888:a030::/44
Signature Algorithm: sha256WithRSAEncryption
71:46:97:20:03:cb:c4:56:cc:af:99:b6:9f:e7:d6:33:9e:46:
fb:0b:7f:67:52:6d:3d:6f:a6:d2:9a:bc:81:03:9f:27:8d:0a:
1f:c6:a6:f5:52:b4:68:7c:f4:1f:12:31:ee:5d:a2:c5:f3:28:
ba:b5:48:f5:03:47:6b:c0:cc:6b:e0:67:e5:e0:2f:b8:35:28:
c6:a1:e7:82:44:43:d5:6b:f7:d3:13:a1:03:aa:ca:6e:a1:cc:
f1:37:80:34:14:41:8d:6d:34:a1:57:71:8a:ec:80:dd:1a:29:
b7:5a:dc:9a:1b:3b:10:12:9c:12:eb:e0:df:f8:68:5c:8d:ef:
cd:29:b5:4d:ab:d6:88:d0:f0:67:5b:21:f4:11:08:88:83:65:
a5:5f:47:46:9d:9e:3e:20:97:13:0c:f4:15:1b:46:60:aa:b4:
92:e7:6b:8a:20:e5:99:8e:ec:01:18:c9:b3:22:e8:a6:a5:77:
98:36:87:43:dd:c7:98:71:34:c6:85:8c:e0:87:8e:b9:63:ab:
27:d4:50:10:31:a6:d9:e3:a1:2c:ee:25:4a:62:66:7f:82:6b:
77:13:35:a0:d3:1a:af:ec:6a:27:86:8a:91:f0:e8:94:a7:02:
0f:e5:3d:76:1f:19:d1:ff:8e:2f:da:68:0d:7a:47:73:40:fc:
80:8a:e6:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 01:43:39 2025 by rpki-client