Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3614659/6656DE746DF811ECBCC210765A40D577/0091161A144C11F0801A51F76DB8BCC6.roa
File: 0091161A144C11F0801A51F76DB8BCC6.roa (raw, json)
Hash identifier: 9oNkMM3GJvaxowbYxronZzBOKB5XFOoDP/A6k15+A4M=
Subject key identifier: 98:7C:69:1A:36:76:E2:4F:F1:49:FE:26:1A:84:90:3C:23:2C:C7:CA
Certificate issuer: /CN=F3614659AF/serialNumber=60A0E5D1AC66C8AE3B7C9E6A8EF5BC04B8BBB88E
Certificate serial: 0649
Authority key identifier: 60:A0:E5:D1:AC:66:C8:AE:3B:7C:9E:6A:8E:F5:BC:04:B8:BB:B8:8E
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/YKDl0axmyK47fJ5qjvW8BLi7uI4.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3614659/6656DE746DF811ECBCC210765A40D577/0091161A144C11F0801A51F76DB8BCC6.roa
Signing time: Tue 08 Apr 2025 07:35:11 +0000
ROA not before: Tue 08 Apr 2025 07:35:06 +0000
ROA not after: Mon 08 Apr 2030 07:35:06 +0000
asID: 137235
IP address blocks: 102.216.80.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3614659/6656DE746DF811ECBCC210765A40D577/YKDl0axmyK47fJ5qjvW8BLi7uI4.crl
rsync://rpki.afrinic.net/repository/member_repository/F3614659/6656DE746DF811ECBCC210765A40D577/YKDl0axmyK47fJ5qjvW8BLi7uI4.mft
rsync://rpki.afrinic.net/repository/afrinic/YKDl0axmyK47fJ5qjvW8BLi7uI4.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 26 Apr 2025 00:06:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1609 (0x649)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3614659AF, serialNumber=60A0E5D1AC66C8AE3B7C9E6A8EF5BC04B8BBB88E
Validity
Not Before: Apr 8 07:35:06 2025 GMT
Not After : Apr 8 07:35:06 2030 GMT
Subject: CN=67f4d1af-a859
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:cd:ee:db:fc:7a:6d:7c:7a:ee:cf:4c:3b:b3:
7a:51:1a:77:df:83:e1:0e:64:e7:26:eb:18:df:af:
92:71:47:8d:13:00:bb:e1:b9:33:34:c3:64:93:87:
af:37:9f:4f:ca:b7:0a:87:3e:62:c7:68:71:6a:3a:
46:81:eb:b7:9e:2e:49:c5:7c:5c:04:ad:a6:83:be:
ff:d8:17:e4:37:4d:24:74:f0:be:0a:1b:bd:20:a5:
b6:3b:17:2a:ac:6d:cc:06:dc:bc:95:f8:b2:ad:b3:
4a:77:29:47:1f:d5:bb:87:ea:45:39:da:dc:8a:8a:
a3:d3:6c:f7:64:2c:06:50:36:d7:02:52:58:63:d6:
57:da:a0:81:73:e0:3c:1c:ed:73:11:61:c3:66:59:
a4:f8:64:f6:4e:fa:38:19:70:50:e6:07:ad:a3:57:
20:77:cc:86:00:ce:04:c2:3c:82:ce:ba:60:a5:12:
a5:36:c7:92:81:9c:0f:49:8f:92:ca:22:0e:05:fc:
a3:e7:11:77:95:36:76:a3:90:c8:ee:5e:17:8d:07:
39:6c:f8:a6:ec:f5:2a:1c:84:60:38:f4:e6:d8:25:
fd:17:b7:7a:de:4d:0c:bf:18:79:33:2a:c7:71:55:
8b:32:e6:be:4d:90:7c:59:6b:b6:bb:23:51:1e:69:
dc:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:7C:69:1A:36:76:E2:4F:F1:49:FE:26:1A:84:90:3C:23:2C:C7:CA
X509v3 Authority Key Identifier:
keyid:60:A0:E5:D1:AC:66:C8:AE:3B:7C:9E:6A:8E:F5:BC:04:B8:BB:B8:8E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3614659/6656DE746DF811ECBCC210765A40D577/YKDl0axmyK47fJ5qjvW8BLi7uI4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/YKDl0axmyK47fJ5qjvW8BLi7uI4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3614659/6656DE746DF811ECBCC210765A40D577/0091161A144C11F0801A51F76DB8BCC6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.216.80.0/24
Signature Algorithm: sha256WithRSAEncryption
a4:02:f2:d8:b4:0d:b1:34:d6:8c:14:0f:89:ce:4f:8b:3f:e9:
d6:4a:5c:b6:f8:06:7b:4c:c1:9c:ea:03:24:04:c8:bb:28:51:
92:93:f1:40:91:9f:fe:bb:06:c6:a7:67:34:f2:11:71:0d:9f:
2c:a3:ef:e1:63:a6:6f:35:a8:eb:b0:ae:4b:1d:22:0d:5e:93:
f3:62:95:e0:de:fc:7d:8a:39:b8:ef:d2:61:d5:7c:fb:77:9b:
88:6f:af:64:44:8e:c3:89:41:85:0a:e5:76:70:70:e0:fe:bf:
ee:89:c4:a3:7a:20:e7:eb:f2:6e:ca:45:b4:a9:bd:02:5c:fa:
9b:19:aa:0c:98:06:77:b6:be:0a:d2:4c:f4:4d:00:24:c4:1b:
1f:4b:d5:27:1c:8a:2e:3b:2d:2e:a8:19:98:79:cb:f3:37:e2:
d8:6e:a5:77:01:66:ea:c6:7d:8a:7f:2d:36:b8:54:ec:8d:40:
13:31:41:5c:18:01:78:97:44:e4:f4:cf:86:81:7f:04:1c:f9:
22:7a:c2:de:88:08:4b:99:35:54:8a:7c:fc:bc:f7:ed:3e:68:
07:9d:eb:b6:e9:5e:74:9a:c0:20:74:b1:76:c4:c5:f5:35:e1:
77:4e:3f:19:6d:b7:18:1b:87:ef:6d:73:11:35:e1:f6:31:bc:
a4:a5:8a:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 24 06:51:46 2025 by rpki-client on console.sobornost.net