Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36F0628/F0CCBE7CFBA011EBAB786C49D8A014CE/35BED484D8C011EFB6BFB04B762E951A.roa
File: 35BED484D8C011EFB6BFB04B762E951A.roa (raw, json)
Hash identifier: oDvQs4f0WaWrVqYQFzpm5ZbnNud9b5El6CV6+hbaiT8=
Subject key identifier: C4:2E:AC:1E:72:A9:BE:FF:D9:7C:45:28:AF:30:40:22:45:80:DB:B7
Certificate issuer: /CN=F36F0628AF/serialNumber=8605D7599A0402F70EC2F258D6C16BD2E4E8D1FE
Certificate serial: 0591
Authority key identifier: 86:05:D7:59:9A:04:02:F7:0E:C2:F2:58:D6:C1:6B:D2:E4:E8:D1:FE
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/hgXXWZoEAvcOwvJY1sFr0uTo0f4.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36F0628/F0CCBE7CFBA011EBAB786C49D8A014CE/35BED484D8C011EFB6BFB04B762E951A.roa
Signing time: Wed 22 Jan 2025 12:55:52 +0000
ROA not before: Wed 22 Jan 2025 12:55:48 +0000
ROA not after: Tue 22 Jul 2025 12:55:48 +0000
asID: 209854
IP address blocks: 196.44.118.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36F0628/F0CCBE7CFBA011EBAB786C49D8A014CE/hgXXWZoEAvcOwvJY1sFr0uTo0f4.crl
rsync://rpki.afrinic.net/repository/member_repository/F36F0628/F0CCBE7CFBA011EBAB786C49D8A014CE/hgXXWZoEAvcOwvJY1sFr0uTo0f4.mft
rsync://rpki.afrinic.net/repository/afrinic/hgXXWZoEAvcOwvJY1sFr0uTo0f4.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 06 Apr 2025 00:06:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1425 (0x591)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36F0628AF
Validity
Not Before: Jan 22 12:55:48 2025 GMT
Not After : Jul 22 12:55:48 2025 GMT
Subject: CN=6790ead8-1807
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:f9:82:05:2b:8b:ef:73:84:c8:85:15:02:c4:
b7:e1:18:28:e9:68:12:45:65:c4:ec:96:41:1f:87:
c6:f7:48:d8:21:e9:ed:cf:8b:e0:67:f2:22:02:2c:
0d:26:21:53:ee:c6:05:86:cd:ef:e5:fb:34:83:4c:
ea:11:92:19:05:43:4b:41:e6:99:8d:b8:20:10:68:
79:aa:5e:44:10:17:b5:cb:56:1e:41:bb:1e:d6:90:
60:6b:be:f7:db:8d:3a:c0:77:2a:91:0d:2f:50:3c:
e0:55:ef:20:9e:da:1b:9c:06:8b:2e:77:37:51:f0:
e8:cd:44:5c:05:08:7a:20:6a:a2:16:71:11:14:d1:
eb:36:22:4f:5f:6f:2c:2a:16:4d:79:8e:ec:1a:17:
e2:58:a9:d6:74:59:69:fc:79:0e:67:20:b7:bf:8f:
9d:05:86:7c:98:fc:9b:91:9b:18:15:6c:c4:d6:ed:
2b:43:28:81:7d:79:4a:de:21:66:20:39:a5:a4:cc:
47:7c:b6:ce:1b:51:97:92:c6:56:20:87:ca:c6:b5:
da:37:d2:69:d5:d7:2e:01:62:1a:12:b7:ae:bb:0d:
29:63:34:c3:98:56:d0:16:d1:91:9f:7a:96:4d:d0:
df:57:3a:6b:7e:a2:d2:9b:8c:89:fb:ab:6b:1c:32:
ca:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:2E:AC:1E:72:A9:BE:FF:D9:7C:45:28:AF:30:40:22:45:80:DB:B7
X509v3 Authority Key Identifier:
keyid:86:05:D7:59:9A:04:02:F7:0E:C2:F2:58:D6:C1:6B:D2:E4:E8:D1:FE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36F0628/F0CCBE7CFBA011EBAB786C49D8A014CE/hgXXWZoEAvcOwvJY1sFr0uTo0f4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/hgXXWZoEAvcOwvJY1sFr0uTo0f4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36F0628/F0CCBE7CFBA011EBAB786C49D8A014CE/35BED484D8C011EFB6BFB04B762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
196.44.118.0/24
Signature Algorithm: sha256WithRSAEncryption
98:f6:3d:de:63:ef:9c:67:7f:53:eb:3c:bb:bf:5b:e3:8e:71:
f0:0c:1e:ec:21:93:b5:84:e6:7c:10:f1:0c:b8:24:71:f0:78:
ae:13:d4:96:a1:59:50:2a:7a:b9:17:88:29:90:7b:2f:11:df:
67:ac:3a:e6:e5:ca:66:ff:6f:42:62:12:cc:0a:f2:9c:85:70:
36:97:0e:75:4c:b5:4d:f5:a0:7a:63:56:12:49:da:e3:17:98:
b6:84:53:de:46:ba:31:e2:e2:1e:a5:b7:ce:37:63:a2:aa:78:
9e:29:ff:6f:45:f4:8e:62:bb:95:df:17:56:70:6e:08:9f:2a:
1b:f8:ef:dc:bd:a7:da:64:0e:fb:68:e2:12:a9:e0:d7:28:59:
9f:79:99:3e:2c:ed:44:89:39:e2:84:b0:c7:35:ef:bf:99:f7:
fc:6b:5a:2d:e8:7e:fe:a4:1a:d2:e3:67:19:1e:31:f2:0d:f0:
f5:57:6f:22:bb:03:05:83:66:d9:ac:34:b3:48:d8:ff:f2:ae:
75:20:d5:02:ca:fa:3b:3d:bb:a6:5a:c6:0d:8c:e4:83:be:f3:
e1:2e:41:15:4d:5c:62:80:dc:56:a1:75:a8:3b:0b:f7:0c:74:
ea:a1:f1:9b:fa:69:ac:f2:e1:57:a9:f6:fc:1c:47:49:4b:d2:
be:62:12:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 20:04:56 2025 by rpki-client