Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36EF186/095B7A2A548011EE8C8F332D4AD9E6FC/1CB700DEEEB311EF85CD8CA4762E951A.roa
File: 1CB700DEEEB311EF85CD8CA4762E951A.roa (raw, json)
Hash identifier: dlQpbXV+M+CR6r4Rv8KhK/ei+gAGtGtpOibwubUcj9U=
Subject key identifier: E2:68:46:CC:AC:DF:D5:C5:B4:A3:72:27:3B:46:F0:AA:B2:B5:F8:B4
Certificate issuer: /CN=F36EF186AF/serialNumber=F377D4D428F9465B15449C6AFD4532C422446964
Certificate serial: 0233
Authority key identifier: F3:77:D4:D4:28:F9:46:5B:15:44:9C:6A:FD:45:32:C4:22:44:69:64
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/83fU1Cj5RlsVRJxq_UUyxCJEaWQ.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36EF186/095B7A2A548011EE8C8F332D4AD9E6FC/1CB700DEEEB311EF85CD8CA4762E951A.roa
Signing time: Wed 19 Feb 2025 11:17:32 +0000
ROA not before: Wed 19 Feb 2025 11:17:28 +0000
ROA not after: Wed 28 Feb 2035 11:17:28 +0000
asID: 328611
IP address blocks: 102.207.56.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36EF186/095B7A2A548011EE8C8F332D4AD9E6FC/83fU1Cj5RlsVRJxq_UUyxCJEaWQ.crl
rsync://rpki.afrinic.net/repository/member_repository/F36EF186/095B7A2A548011EE8C8F332D4AD9E6FC/83fU1Cj5RlsVRJxq_UUyxCJEaWQ.mft
rsync://rpki.afrinic.net/repository/afrinic/83fU1Cj5RlsVRJxq_UUyxCJEaWQ.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 11 Apr 2025 00:06:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 563 (0x233)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36EF186AF
Validity
Not Before: Feb 19 11:17:28 2025 GMT
Not After : Feb 28 11:17:28 2035 GMT
Subject: CN=67b5bdcc-75a3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:a5:22:cc:41:64:2f:d6:a1:0f:da:b9:f7:64:
54:c9:a5:0c:c0:a5:a1:2e:8c:58:e6:0b:2a:dd:56:
53:3c:0b:2d:f6:dc:f0:87:a6:76:8c:8c:72:15:f3:
02:be:7b:09:ec:25:df:d9:01:cb:4c:d0:3d:18:1b:
85:b4:c1:2c:51:60:91:11:61:aa:46:82:39:2f:68:
38:0e:9a:3c:c6:63:df:a6:c5:e3:54:fe:0a:71:1a:
f6:f0:61:cd:33:ad:ea:35:d3:25:7f:34:41:ab:44:
1d:5b:3b:0d:3a:ff:5e:60:33:45:db:d6:15:18:6a:
50:f6:36:b0:4b:4b:e7:45:2e:ce:dd:3f:17:dd:b6:
a3:11:3d:25:7c:88:38:ca:54:69:7e:30:ee:7b:54:
87:25:e3:45:b7:bf:05:70:c0:94:47:3f:56:d5:08:
9e:5d:37:c2:98:57:2d:09:05:0b:ed:4d:6b:9a:74:
73:42:cb:41:70:44:0a:98:c5:d7:2f:3a:f9:55:92:
47:22:d8:bb:5b:15:20:95:3f:94:9c:cb:d5:24:f7:
45:0c:de:38:88:e6:05:bd:90:78:a8:19:7b:a3:65:
d6:d5:b5:0d:d0:82:28:c8:5f:87:67:9c:94:d0:b7:
a3:2c:12:98:57:ca:b3:ba:d1:9e:4d:bf:8f:29:18:
cc:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:68:46:CC:AC:DF:D5:C5:B4:A3:72:27:3B:46:F0:AA:B2:B5:F8:B4
X509v3 Authority Key Identifier:
keyid:F3:77:D4:D4:28:F9:46:5B:15:44:9C:6A:FD:45:32:C4:22:44:69:64
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36EF186/095B7A2A548011EE8C8F332D4AD9E6FC/83fU1Cj5RlsVRJxq_UUyxCJEaWQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/83fU1Cj5RlsVRJxq_UUyxCJEaWQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36EF186/095B7A2A548011EE8C8F332D4AD9E6FC/1CB700DEEEB311EF85CD8CA4762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.207.56.0/22
Signature Algorithm: sha256WithRSAEncryption
01:4c:b9:52:83:9c:49:e0:49:dd:0d:13:ff:1a:86:d7:82:35:
39:bf:cf:1e:b5:34:d2:5e:a7:4b:23:4b:16:86:9b:fb:d5:6d:
e5:23:76:ba:7e:c0:e8:d7:45:9e:b8:3f:f5:3a:e1:1f:96:50:
b9:e4:44:84:85:fc:32:fd:23:5b:89:3c:40:29:05:c6:f8:07:
5c:3f:8b:e9:ea:ba:6d:29:fe:1b:57:8d:0b:7b:f5:bd:72:28:
c1:99:84:62:13:60:7b:8a:09:56:42:7e:93:95:68:21:95:34:
12:df:6d:ee:62:65:78:a3:c3:76:c4:22:1b:40:93:b2:b4:0e:
92:71:42:a2:62:82:a2:35:95:9b:92:19:8f:1c:d1:a1:f8:4a:
c8:84:3b:33:e5:7d:d9:3a:b9:42:90:f5:09:af:2f:ab:fb:c8:
c3:b2:4c:3b:be:4b:5f:fb:85:0f:2a:19:d8:3a:76:6e:5c:ef:
e7:f2:d3:dc:81:af:51:83:7a:7e:c4:f7:49:82:50:73:b9:80:
cb:9f:16:6c:9e:ab:7a:ce:9c:8c:e0:50:e4:ca:32:64:3c:da:
01:97:99:60:21:b2:0b:ab:98:60:b1:a6:c6:8d:98:ba:cd:22:
18:9e:40:82:56:a9:75:31:5d:a7:ec:af:ea:37:ac:1a:2a:08:
df:f6:a9:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 16:11:34 2025 by rpki-client