Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36B583C/5DF79C7C971511ED99F847B8F1222468/014D9F22138611F08CEB12BD762E951A.roa
File: 014D9F22138611F08CEB12BD762E951A.roa (raw, json)
Hash identifier: 3WBCc9Mw2euZmXqLJL3f0+GBqig/a8uYef5+QkHenxY=
Subject key identifier: F5:E3:DB:1D:D3:2B:3C:DC:30:04:57:EE:3C:29:50:92:14:A1:37:2C
Certificate issuer: /CN=F36B583CAF/serialNumber=293E5CFF530308B7F0F6B89E13F70C64F5E1099A
Certificate serial: 037D
Authority key identifier: 29:3E:5C:FF:53:03:08:B7:F0:F6:B8:9E:13:F7:0C:64:F5:E1:09:9A
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/KT5c_1MDCLfw9rieE_cMZPXhCZo.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36B583C/5DF79C7C971511ED99F847B8F1222468/014D9F22138611F08CEB12BD762E951A.roa
Signing time: Mon 07 Apr 2025 07:57:52 +0000
ROA not before: Mon 07 Apr 2025 07:57:48 +0000
ROA not after: Tue 31 Mar 2026 07:57:48 +0000
asID: 37558
IP address blocks: 197.215.128.0/19 maxlen: 24
2c0f:3200::/32 maxlen: 48
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36B583C/5DF79C7C971511ED99F847B8F1222468/KT5c_1MDCLfw9rieE_cMZPXhCZo.crl
rsync://rpki.afrinic.net/repository/member_repository/F36B583C/5DF79C7C971511ED99F847B8F1222468/KT5c_1MDCLfw9rieE_cMZPXhCZo.mft
rsync://rpki.afrinic.net/repository/afrinic/KT5c_1MDCLfw9rieE_cMZPXhCZo.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 30 Apr 2025 00:06:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 893 (0x37d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36B583CAF, serialNumber=293E5CFF530308B7F0F6B89E13F70C64F5E1099A
Validity
Not Before: Apr 7 07:57:48 2025 GMT
Not After : Mar 31 07:57:48 2026 GMT
Subject: CN=67f38580-73ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:8f:84:19:be:38:c7:01:1d:c0:45:23:48:22:
b1:19:7f:70:5e:c1:d9:c8:f2:bb:e2:47:53:6e:32:
30:9b:f7:5c:7b:bc:53:b1:81:3b:7e:34:88:78:6c:
c9:f6:50:75:ec:02:2b:85:92:42:48:40:ca:19:4f:
dc:10:ce:64:86:b2:d4:3c:97:06:2a:7c:9b:09:ae:
da:31:ac:2c:62:db:ea:8d:9d:02:47:35:38:57:b5:
14:46:46:76:fb:10:4f:7f:66:c1:80:df:3a:da:c2:
ea:7c:93:f7:f3:52:40:47:61:32:b7:cd:f7:94:be:
b9:e6:f5:d3:06:90:2a:3c:df:03:72:e1:fe:12:c4:
9b:a3:59:9c:bd:5d:3e:83:b5:f6:20:c6:d6:74:ba:
52:82:16:69:72:ab:07:4f:4e:38:a2:46:a0:0a:a0:
6a:37:90:b5:b3:4b:92:7d:5a:89:0c:c6:b7:48:98:
d4:99:76:8b:44:6b:6a:37:9a:d8:d1:f0:42:e4:91:
b3:5c:c2:ce:c5:09:fc:05:22:ad:15:6b:6c:f1:ca:
9a:3b:cd:63:1b:d5:22:63:95:ef:13:0a:fc:10:87:
d7:29:10:14:97:43:f5:aa:b0:41:ac:9b:5b:39:90:
f2:1e:f3:b3:98:a8:4d:85:1c:52:43:19:e0:23:4d:
e0:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:E3:DB:1D:D3:2B:3C:DC:30:04:57:EE:3C:29:50:92:14:A1:37:2C
X509v3 Authority Key Identifier:
keyid:29:3E:5C:FF:53:03:08:B7:F0:F6:B8:9E:13:F7:0C:64:F5:E1:09:9A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36B583C/5DF79C7C971511ED99F847B8F1222468/KT5c_1MDCLfw9rieE_cMZPXhCZo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/KT5c_1MDCLfw9rieE_cMZPXhCZo.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36B583C/5DF79C7C971511ED99F847B8F1222468/014D9F22138611F08CEB12BD762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
197.215.128.0/19
IPv6:
2c0f:3200::/32
Signature Algorithm: sha256WithRSAEncryption
94:71:b5:dc:a3:6b:85:62:33:47:6f:48:18:92:fa:9d:2c:49:
2a:1c:01:a4:1c:d3:11:62:cc:6a:c8:5e:90:e5:18:18:4b:e2:
28:87:45:a0:5c:93:b5:a1:dd:27:62:7c:80:1b:65:70:3a:81:
20:1f:93:ca:31:bf:bd:e5:a0:d1:f4:3b:05:98:00:84:2e:e9:
eb:a5:1e:16:c2:69:4e:ff:5e:38:a1:43:02:01:ef:cb:17:e3:
53:f1:4d:8a:77:1a:b5:e3:b6:0e:05:32:35:31:e0:47:c0:e2:
66:e5:9a:16:a1:ad:ce:4f:bc:c4:e8:12:61:ea:33:a4:9f:b3:
9e:b9:c7:37:87:d2:6f:60:fd:6f:6c:b3:22:91:a9:63:37:ed:
0f:ac:09:43:0b:a1:d6:10:e2:30:ee:b4:74:c4:ae:ea:ab:b9:
9e:f3:9e:f7:c5:2f:72:f4:d7:df:95:ee:5b:07:67:b4:56:6f:
d4:5d:96:83:67:b9:59:ce:c4:79:63:ad:35:19:c2:1f:e5:eb:
a8:86:31:ac:f2:e9:c8:76:08:43:c0:c3:17:76:90:c5:12:b3:
72:f1:fb:82:67:ed:f0:6b:34:14:6a:5c:d7:58:da:eb:19:63:
e5:10:69:76:21:7d:47:ab:c2:ab:8b:e7:d0:74:ae:13:89:59:
d4:bd:b5:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 06:06:20 2025 by rpki-client on console.sobornost.net