Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36F7F21/355D737EE70011EC9C84D7B9F1222468/504C6FECEA3811EC884DB1F5F1222468.roa
File: 504C6FECEA3811EC884DB1F5F1222468.roa (raw, json)
Hash identifier: 2dT5xvQBi0tE9GzEX5D2/RqrdvgMzSxkzDaBAFZ3JCY=
Subject key identifier: 6C:7F:C1:55:66:0C:0C:04:7E:99:6A:80:5B:19:E1:DF:28:8D:5B:00
Certificate issuer: /CN=F36F7F21AF/serialNumber=52997871235F60CD715A7710FFD6E2EA4C88D29A
Certificate serial: 12
Authority key identifier: 52:99:78:71:23:5F:60:CD:71:5A:77:10:FF:D6:E2:EA:4C:88:D2:9A
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/Upl4cSNfYM1xWncQ_9bi6kyI0po.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36F7F21/355D737EE70011EC9C84D7B9F1222468/504C6FECEA3811EC884DB1F5F1222468.roa
Signing time: Sun 12 Jun 2022 10:13:33 +0000
ROA not before: Sun 12 Jun 2022 10:13:29 +0000
ROA not after: Thu 12 Jun 2025 10:13:29 +0000
asID: 328155
IP address blocks: 154.65.80.0/21 maxlen: 24
2c0f:f610::/32 maxlen: 64
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36F7F21/355D737EE70011EC9C84D7B9F1222468/Upl4cSNfYM1xWncQ_9bi6kyI0po.crl
rsync://rpki.afrinic.net/repository/member_repository/F36F7F21/355D737EE70011EC9C84D7B9F1222468/Upl4cSNfYM1xWncQ_9bi6kyI0po.mft
rsync://rpki.afrinic.net/repository/afrinic/Upl4cSNfYM1xWncQ_9bi6kyI0po.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 21 Feb 2025 02:08:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18 (0x12)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36F7F21AF
Validity
Not Before: Jun 12 10:13:29 2022 GMT
Not After : Jun 12 10:13:29 2025 GMT
Subject: CN=62a5bc4d-a64b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:63:0f:48:8c:67:2c:6d:aa:cb:ea:df:d6:bd:
a1:39:b6:ba:58:10:24:cb:e1:69:52:fc:86:53:5e:
d9:c3:4f:bd:eb:06:3d:02:15:63:7f:62:99:5c:4a:
cf:f7:d4:61:a6:a7:fd:79:75:34:cd:26:9f:53:20:
15:36:ce:de:af:40:2b:e8:e4:c0:92:3f:55:c4:b4:
50:ba:42:9c:bd:7e:fe:88:41:19:56:09:a1:99:8d:
60:25:bc:49:4c:07:6d:69:2b:fb:1e:3d:eb:7f:6e:
4e:57:f3:0a:c8:16:bc:67:a0:55:70:2e:95:b6:4a:
f5:77:8a:8c:80:28:64:78:6c:23:48:c3:45:c6:99:
92:bb:ba:e4:5a:62:2c:83:9d:43:e7:65:65:cc:7f:
e0:b4:45:1e:43:62:6e:2e:dd:13:ef:18:a2:93:53:
f9:ee:16:fa:d3:6f:c8:8b:6e:f4:f4:b1:b4:9f:ba:
bc:e7:53:b5:6e:fa:ab:4e:3a:c8:4a:57:56:f7:46:
aa:2e:20:c5:ba:c8:79:d6:bb:f2:49:08:b6:da:6e:
46:79:27:ca:78:55:61:3e:b9:a5:46:57:8f:fa:6b:
ef:fe:cc:89:99:ee:f9:78:fd:23:1e:b1:32:05:9b:
40:f5:9e:86:f4:29:65:4e:a5:0c:50:33:07:1d:f2:
e3:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:7F:C1:55:66:0C:0C:04:7E:99:6A:80:5B:19:E1:DF:28:8D:5B:00
X509v3 Authority Key Identifier:
keyid:52:99:78:71:23:5F:60:CD:71:5A:77:10:FF:D6:E2:EA:4C:88:D2:9A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36F7F21/355D737EE70011EC9C84D7B9F1222468/Upl4cSNfYM1xWncQ_9bi6kyI0po.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/Upl4cSNfYM1xWncQ_9bi6kyI0po.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36F7F21/355D737EE70011EC9C84D7B9F1222468/504C6FECEA3811EC884DB1F5F1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.65.80.0/21
IPv6:
2c0f:f610::/32
Signature Algorithm: sha256WithRSAEncryption
bf:0b:2b:1a:59:e9:ba:96:42:04:85:4f:b8:68:29:85:ea:7b:
f7:bf:00:e2:27:eb:d0:b9:4e:06:c8:93:20:9a:08:46:12:c8:
3e:6b:0e:69:61:e3:46:60:dc:8f:d2:6b:a7:33:b6:ce:d6:2e:
87:87:63:af:53:09:1e:6a:da:f9:83:ec:1d:e2:18:3d:8d:36:
91:9d:1b:32:f1:b9:1a:59:0b:3c:5a:30:3d:92:70:bd:a5:0f:
b9:09:a1:1e:bf:ff:79:bc:a5:f0:26:e7:3b:79:f9:16:70:7a:
0c:bc:90:f0:b6:11:10:a7:c4:7a:95:3c:c6:67:84:70:21:aa:
1a:55:d0:1e:b2:fd:3c:45:61:61:11:38:d5:d4:34:1d:36:15:
ca:f4:47:bc:d7:16:2f:68:c2:43:cf:87:2b:99:22:1d:cd:5f:
a6:67:81:f6:1a:f1:7a:ba:e2:e3:fa:f3:f9:ca:75:3c:e4:09:
4a:4f:74:57:1c:ee:ed:b0:bb:7e:a1:a1:a1:e6:2f:01:c9:24:
c7:f1:4d:6c:50:ad:fe:c2:02:74:79:71:66:d5:cc:48:c7:4b:
aa:f5:91:e6:7e:3f:fe:85:11:0b:78:80:61:08:e4:30:23:a1:
dd:d8:23:69:1a:c5:57:a5:44:72:0f:c6:47:bf:f8:e4:72:c8:
e6:05:04:37
-----BEGIN CERTIFICATE-----
MIIFkTCCBHmgAwIBAgIBEjANBgkqhkiG9w0BAQsFADBIMRMwEQYDVQQDDApGMzZG
N0YyMUFGMTEwLwYDVQQFEyg1Mjk5Nzg3MTIzNUY2MENENzE1QTc3MTBGRkQ2RTJF
QTRDODhEMjlBMB4XDTIyMDYxMjEwMTMyOVoXDTI1MDYxMjEwMTMyOVowGDEWMBQG
A1UEAwwNNjJhNWJjNGQtYTY0YjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBAMVjD0iMZyxtqsvq39a9oTm2ulgQJMvhaVL8hlNe2cNPvesGPQIVY39imVxK
z/fUYaan/Xl1NM0mn1MgFTbO3q9AK+jkwJI/VcS0ULpCnL1+/ohBGVYJoZmNYCW8
SUwHbWkr+x49639uTlfzCsgWvGegVXAulbZK9XeKjIAoZHhsI0jDRcaZkru65Fpi
LIOdQ+dlZcx/4LRFHkNibi7dE+8YopNT+e4W+tNvyItu9PSxtJ+6vOdTtW76q046
yEpXVvdGqi4gxbrIeda78kkIttpuRnknynhVYT65pUZXj/pr7/7MiZnu+Xj9Ix6x
MgWbQPWehvQpZU6lDFAzBx3y4w0CAwEAAaOCArQwggKwMB0GA1UdDgQWBBRsf8FV
ZgwMBH6ZaoBbGeHfKI1bADAfBgNVHSMEGDAWgBRSmXhxI19gzXFadxD/1uLqTIjS
mjAOBgNVHQ8BAf8EBAMCB4AwgZUGA1UdHwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6
Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVyX3JlcG9zaXRvcnkv
RjM2RjdGMjEvMzU1RDczN0VFNzAwMTFFQzlDODREN0I5RjEyMjI0NjgvVXBsNGNT
TmZZTTF4V25jUV85Ymk2a3lJMHBvLmNybDBnBggrBgEFBQcBAQRbMFkwVwYIKwYB
BQUHMAKGS3JzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L2Fmcmlu
aWMvVXBsNGNTTmZZTTF4V25jUV85Ymk2a3lJMHBvLmNlcjBPBgNVHSABAf8ERTBD
MEEGCCsGAQUFBw4CMDUwMwYIKwYBBQUHAgEWJ2h0dHBzOi8vcnBraS5hZnJpbmlj
Lm5ldC9wb2xpY3kvQ1BTLnBkZjCB2wYIKwYBBQUHAQsEgc4wgcswgZEGCCsGAQUF
BzALhoGEcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVy
X3JlcG9zaXRvcnkvRjM2RjdGMjEvMzU1RDczN0VFNzAwMTFFQzlDODREN0I5RjEy
MjI0NjgvNTA0QzZGRUNFQTM4MTFFQzg4NERCMUY1RjEyMjI0Njgucm9hMDUGCCsG
AQUFBzANhilodHRwczovL3JyZHAuYWZyaW5pYy5uZXQvbm90aWZpY2F0aW9uLnht
bDAuBggrBgEFBQcBBwEB/wQfMB0wDAQCAAEwBgMEA5pBUDANBAIAAjAHAwUALA/2
EDANBgkqhkiG9w0BAQsFAAOCAQEAvwsrGlnpupZCBIVPuGgphep7978A4ifr0LlO
BsiTIJoIRhLIPmsOaWHjRmDcj9JrpzO2ztYuh4djr1MJHmra+YPsHeIYPY02kZ0b
MvG5GlkLPFowPZJwvaUPuQmhHr//ebyl8CbnO3n5FnB6DLyQ8LYREKfEepU8xmeE
cCGqGlXQHrL9PEVhYRE41dQ0HTYVyvRHvNcWL2jCQ8+HK5kiHc1fpmeB9hrxerri
4/rz+cp1POQJSk90Vxzu7bC7fqGhoeYvAckkx/FNbFCt/sICdHlxZtXMSMdLqvWR
5n4//oURC3iAYQjkMCOh3dgjaRrFV6VEcg/GR7/45HLI5gUENw==
-----END CERTIFICATE-----
Generated at Wed Feb 19 20:42:13 2025 by rpki-client