Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36D0F50/5EAAA6B8258F11EBB70B7C19F8AEA228/F63B9D90B61B11EF9E00725B762E951A.roa
File: F63B9D90B61B11EF9E00725B762E951A.roa (raw, json)
Hash identifier: +OYk96iqOpTIls7gzOt+6XE32kwT7dZu0ezRtTbTgto=
Subject key identifier: 9D:60:87:47:2B:67:E0:E0:7F:8F:67:BD:83:DF:E3:35:0B:F0:4E:D1
Certificate issuer: /CN=F36D0F50AF/serialNumber=AE98A5FDAD2DC9F4FC1BE47F66857A8C47988102
Certificate serial: 0729
Authority key identifier: AE:98:A5:FD:AD:2D:C9:F4:FC:1B:E4:7F:66:85:7A:8C:47:98:81:02
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/rpil_a0tyfT8G-R_ZoV6jEeYgQI.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36D0F50/5EAAA6B8258F11EBB70B7C19F8AEA228/F63B9D90B61B11EF9E00725B762E951A.roa
Signing time: Mon 09 Dec 2024 10:54:28 +0000
ROA not before: Mon 09 Dec 2024 10:54:24 +0000
ROA not after: Sat 30 Jul 2033 10:54:24 +0000
asID: 37119
IP address blocks: 2c0f:f888:a070::/44 maxlen: 44
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36D0F50/5EAAA6B8258F11EBB70B7C19F8AEA228/rpil_a0tyfT8G-R_ZoV6jEeYgQI.crl
rsync://rpki.afrinic.net/repository/member_repository/F36D0F50/5EAAA6B8258F11EBB70B7C19F8AEA228/rpil_a0tyfT8G-R_ZoV6jEeYgQI.mft
rsync://rpki.afrinic.net/repository/afrinic/rpil_a0tyfT8G-R_ZoV6jEeYgQI.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 07 Apr 2025 00:06:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1833 (0x729)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36D0F50AF
Validity
Not Before: Dec 9 10:54:24 2024 GMT
Not After : Jul 30 10:54:24 2033 GMT
Subject: CN=6756cc64-1f6c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:ec:12:9d:7a:f3:45:93:93:f0:b1:e2:ec:75:
f4:e2:5c:40:12:3a:14:85:88:55:a2:b0:89:02:a9:
08:51:77:c3:23:47:38:80:af:d0:28:81:44:b2:34:
65:18:6b:a9:f7:4c:27:ea:d7:d6:34:d5:f3:b2:21:
8e:3d:38:1c:5c:84:6f:d3:05:a7:6d:e2:6c:db:27:
2a:61:14:2f:09:08:4a:24:b4:e1:af:53:e7:39:e1:
ed:91:b1:9b:01:c2:00:9a:73:9b:32:18:48:f1:56:
51:dc:81:88:ba:4e:f7:31:0d:53:9e:d5:9f:f5:a5:
58:bf:db:7e:d7:4e:ca:cc:d5:40:15:e5:68:b4:cb:
62:0b:af:43:b6:d8:ea:05:a8:37:bc:46:55:97:92:
e3:ef:97:8b:d4:fa:dd:7b:eb:26:f1:8d:e7:d6:9d:
60:7e:55:b0:91:1c:81:83:ae:b7:97:92:14:3c:61:
14:68:35:c8:bb:17:89:bf:58:07:78:70:c0:03:77:
8c:0b:61:ac:db:dd:b6:9c:3f:75:e2:23:ea:ca:51:
f6:b4:a3:d8:66:7e:f7:2f:01:97:51:57:ad:1b:05:
35:0d:cb:62:89:cc:ec:aa:10:a5:59:c4:80:94:8f:
20:2f:d2:82:bc:71:9d:73:e4:74:fb:0f:2d:7b:d6:
a2:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:60:87:47:2B:67:E0:E0:7F:8F:67:BD:83:DF:E3:35:0B:F0:4E:D1
X509v3 Authority Key Identifier:
keyid:AE:98:A5:FD:AD:2D:C9:F4:FC:1B:E4:7F:66:85:7A:8C:47:98:81:02
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36D0F50/5EAAA6B8258F11EBB70B7C19F8AEA228/rpil_a0tyfT8G-R_ZoV6jEeYgQI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/rpil_a0tyfT8G-R_ZoV6jEeYgQI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36D0F50/5EAAA6B8258F11EBB70B7C19F8AEA228/F63B9D90B61B11EF9E00725B762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2c0f:f888:a070::/44
Signature Algorithm: sha256WithRSAEncryption
8d:b2:bc:49:03:d1:f3:67:fd:61:94:f0:cd:64:c6:dc:58:91:
ac:54:f9:d9:52:ef:5b:31:f7:41:ed:73:63:3c:41:f6:9c:57:
bc:76:5e:23:6c:2c:55:9f:65:ed:46:51:e7:36:14:dd:14:05:
76:21:f9:c7:74:78:17:e7:b7:b8:b3:01:4a:ed:e9:6d:62:91:
3b:45:05:06:ad:64:3e:b5:92:e3:49:db:5a:ed:6e:ea:22:f3:
e3:17:ae:f3:c7:02:ca:0c:03:5e:7a:d9:8a:3b:09:a3:a0:12:
09:57:39:b7:11:b2:77:06:08:f3:5e:ea:6b:76:72:73:04:d7:
f2:12:55:c1:3a:a0:d2:ad:6e:ea:c7:f8:24:03:67:67:3a:33:
4c:26:00:80:5a:5c:27:b2:df:3c:36:d7:6c:bd:06:44:fb:bd:
f0:7b:70:76:9c:3d:32:22:4d:7d:49:06:50:e5:cf:67:78:0d:
39:97:7e:79:f8:4b:c9:3c:d0:47:8d:74:38:d2:20:44:14:44:
43:ae:93:c1:f0:4d:a7:b6:2d:c2:dd:a6:c4:bd:20:6e:a7:80:
58:eb:16:59:72:58:07:6e:1d:37:96:dc:b4:3c:37:a1:06:35:
46:a4:1d:12:1b:24:3b:a9:4c:86:59:52:9f:bb:10:8e:a2:e3:
6b:cf:ba:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 03:58:42 2025 by rpki-client