Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36F8B97/E559EB4C370411EC9F5EF526D8A014CE/5813D9640FB411F0A6B56DA0762E951A.roa
File: 5813D9640FB411F0A6B56DA0762E951A.roa (raw, json)
Hash identifier: 2Q+hoGwNUDdoOl21mzLdpEGQumgusRGF7qozk0hKNmw=
Subject key identifier: 2B:2C:06:38:18:A1:1F:A7:2E:7E:21:50:BE:45:79:72:4B:55:69:93
Certificate issuer: /CN=F36F8B97AF/serialNumber=429F70A01A2B5922FEEB4BF0C83D73C5F574F25D
Certificate serial: 0510
Authority key identifier: 42:9F:70:A0:1A:2B:59:22:FE:EB:4B:F0:C8:3D:73:C5:F5:74:F2:5D
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/Qp9woBorWSL-60vwyD1zxfV08l0.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36F8B97/E559EB4C370411EC9F5EF526D8A014CE/5813D9640FB411F0A6B56DA0762E951A.roa
Signing time: Wed 02 Apr 2025 11:19:29 +0000
ROA not before: Wed 02 Apr 2025 11:19:26 +0000
ROA not after: Sun 01 Apr 2035 11:19:26 +0000
asID: 37235
IP address blocks: 2c0f:f1e0::/32 maxlen: 48
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36F8B97/E559EB4C370411EC9F5EF526D8A014CE/Qp9woBorWSL-60vwyD1zxfV08l0.crl
rsync://rpki.afrinic.net/repository/member_repository/F36F8B97/E559EB4C370411EC9F5EF526D8A014CE/Qp9woBorWSL-60vwyD1zxfV08l0.mft
rsync://rpki.afrinic.net/repository/afrinic/Qp9woBorWSL-60vwyD1zxfV08l0.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 29 Apr 2025 00:06:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1296 (0x510)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36F8B97AF, serialNumber=429F70A01A2B5922FEEB4BF0C83D73C5F574F25D
Validity
Not Before: Apr 2 11:19:26 2025 GMT
Not After : Apr 1 11:19:26 2035 GMT
Subject: CN=67ed1d41-cd9b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:df:5e:84:1b:65:fc:93:fd:a2:94:00:9e:23:
27:65:a6:36:27:88:65:84:75:d5:67:71:c3:36:81:
0d:b1:7e:75:ce:7c:e6:c6:5d:e5:cd:20:a1:6c:4e:
d1:a7:60:d9:5b:50:a4:c4:55:2f:83:1d:22:49:19:
93:1a:75:52:92:7d:bb:a0:cf:84:09:cc:72:6a:48:
cd:4f:2f:23:b6:78:56:31:69:20:2f:c0:7b:a6:e7:
f2:7a:7f:d2:fc:aa:ab:50:65:b5:20:68:a4:56:21:
44:a8:8c:bf:34:2f:65:a1:2a:f9:74:1c:d0:da:cb:
b7:d8:8b:58:3c:da:2e:dc:8c:13:55:b7:5e:cf:d5:
9b:be:ba:0b:de:37:e1:48:ca:07:3a:fc:ca:b2:4b:
5c:f8:fc:f7:21:92:33:74:3e:b8:59:ee:17:53:b2:
69:3a:43:da:00:34:b1:dd:5f:6b:41:2e:82:7e:1b:
de:95:13:5a:e8:92:51:68:36:4e:a8:7c:81:a1:1a:
27:b9:25:5b:25:d7:1b:3d:32:22:ff:0a:dd:d4:d7:
5b:89:1a:06:b1:04:28:23:4d:fc:6d:e7:95:0b:c5:
32:29:2f:f7:40:b7:bc:7a:9b:6d:62:69:34:eb:99:
2e:11:ff:09:30:ff:ff:5e:a0:ed:4a:85:51:8e:0a:
6b:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:2C:06:38:18:A1:1F:A7:2E:7E:21:50:BE:45:79:72:4B:55:69:93
X509v3 Authority Key Identifier:
keyid:42:9F:70:A0:1A:2B:59:22:FE:EB:4B:F0:C8:3D:73:C5:F5:74:F2:5D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36F8B97/E559EB4C370411EC9F5EF526D8A014CE/Qp9woBorWSL-60vwyD1zxfV08l0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/Qp9woBorWSL-60vwyD1zxfV08l0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36F8B97/E559EB4C370411EC9F5EF526D8A014CE/5813D9640FB411F0A6B56DA0762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2c0f:f1e0::/32
Signature Algorithm: sha256WithRSAEncryption
00:ab:8b:91:9a:3f:7b:4f:45:d8:4b:0e:51:06:40:e5:ca:56:
52:40:0d:8d:dc:c2:fd:ff:a2:bc:8b:72:cf:b3:fb:d5:cd:b0:
63:43:6a:a6:b1:a4:fa:66:2d:37:70:54:f2:8e:6a:f5:c4:6c:
7d:bb:da:64:a5:51:09:19:60:c9:e9:4a:98:36:f4:bb:56:de:
4f:90:06:6f:e1:53:5f:81:27:9b:68:40:b9:a3:47:79:1b:65:
7b:cd:b3:34:fb:ed:48:bf:3b:05:e7:5d:d1:db:db:01:35:c3:
98:4e:f6:b1:ff:45:28:5b:94:ee:ca:19:9a:0b:e2:1d:af:ef:
2b:27:4a:be:ed:e2:c5:90:53:a3:c0:27:f1:7e:77:a3:4a:6c:
44:a9:fb:75:b5:fa:a7:c6:a4:6c:d1:ce:ec:6c:2f:47:1d:ab:
25:24:c9:b8:db:2f:ed:44:9d:17:b3:29:cd:b4:dd:d9:c5:98:
6a:1e:55:92:32:c7:ed:3b:aa:5c:e0:87:b0:f9:c1:ba:2f:8f:
b2:e0:2e:89:67:e5:68:31:4e:20:96:74:bb:c9:19:02:f8:1c:
9c:e8:43:c8:6f:a6:74:ff:ac:20:84:3a:7e:9b:ba:59:d9:0e:
e9:50:2e:61:be:31:db:fc:c2:65:6f:de:52:f6:12:7d:e3:68:
b4:bb:69:d9
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICBRAwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
RjhCOTdBRjExMC8GA1UEBRMoNDI5RjcwQTAxQTJCNTkyMkZFRUI0QkYwQzgzRDcz
QzVGNTc0RjI1RDAeFw0yNTA0MDIxMTE5MjZaFw0zNTA0MDExMTE5MjZaMBgxFjAU
BgNVBAMTDTY3ZWQxZDQxLWNkOWIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQC/316EG2X8k/2ilACeIydlpjYniGWEddVnccM2gQ2xfnXOfObGXeXNIKFs
TtGnYNlbUKTEVS+DHSJJGZMadVKSfbugz4QJzHJqSM1PLyO2eFYxaSAvwHum5/J6
f9L8qqtQZbUgaKRWIUSojL80L2WhKvl0HNDay7fYi1g82i7cjBNVt17P1Zu+ugve
N+FIygc6/MqyS1z4/PchkjN0PrhZ7hdTsmk6Q9oANLHdX2tBLoJ+G96VE1roklFo
Nk6ofIGhGie5JVsl1xs9MiL/Ct3U11uJGgaxBCgjTfxt55ULxTIpL/dAt7x6m21i
aTTrmS4R/wkw//9eoO1KhVGOCmsZAgMBAAGjggKmMIICojAdBgNVHQ4EFgQUKywG
OBihH6cufiFQvkV5cktVaZMwHwYDVR0jBBgwFoAUQp9woBorWSL+60vwyD1zxfV0
8l0wDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNkY4Qjk3L0U1NTlFQjRDMzcwNDExRUM5RjVFRjUyNkQ4QTAxNENFL1FwOXdv
Qm9yV1NMLTYwdnd5RDF6eGZWMDhsMC5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL1FwOXdvQm9yV1NMLTYwdnd5RDF6eGZWMDhsMC5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNkY4Qjk3L0U1NTlFQjRDMzcwNDExRUM5RjVFRjUyNkQ4
QTAxNENFLzU4MTNEOTY0MEZCNDExRjBBNkI1NkRBMDc2MkU5NTFBLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAsD/HgMA0GCSqGSIb3DQEB
CwUAA4IBAQAAq4uRmj97T0XYSw5RBkDlylZSQA2N3ML9/6K8i3LPs/vVzbBjQ2qm
saT6Zi03cFTyjmr1xGx9u9pkpVEJGWDJ6UqYNvS7Vt5PkAZv4VNfgSebaEC5o0d5
G2V7zbM0++1IvzsF513R29sBNcOYTvax/0UoW5TuyhmaC+Idr+8rJ0q+7eLFkFOj
wCfxfnejSmxEqft1tfqnxqRs0c7sbC9HHaslJMm42y/tRJ0XsynNtN3ZxZhqHlWS
MsftO6pc4Iew+cG6L4+y4C6JZ+VoMU4glnS7yRkC+Byc6EPIb6Z0/6wghDp+m7pZ
2Q7pUC5hvjHb/MJlb95S9hJ942i0u2nZ
-----END CERTIFICATE-----
Generated at Sun Apr 27 05:40:59 2025 by rpki-client on console.sobornost.net