Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F362C18C/45883290ABD111EBB1A6715EF8AEA228/D3DBADAC194511F0AC2D38AF6DB8BCC6.roa
File: D3DBADAC194511F0AC2D38AF6DB8BCC6.roa (raw, json)
Hash identifier: b+guuATRQ31iveSTEtU4E1TvQM8oUbuHRcgdWFllgsc=
Subject key identifier: 76:A6:03:C9:8B:7D:E2:8F:E0:56:48:94:09:72:80:05:DC:11:13:E3
Certificate issuer: /CN=F362C18CAF/serialNumber=63E0BB6B3433CD5D71A42B0169BDB01E20E4557F
Certificate serial: 0600
Authority key identifier: 63:E0:BB:6B:34:33:CD:5D:71:A4:2B:01:69:BD:B0:1E:20:E4:55:7F
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/Y-C7azQzzV1xpCsBab2wHiDkVX8.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F362C18C/45883290ABD111EBB1A6715EF8AEA228/D3DBADAC194511F0AC2D38AF6DB8BCC6.roa
Signing time: Mon 14 Apr 2025 15:33:35 +0000
ROA not before: Mon 14 Apr 2025 15:33:30 +0000
ROA not after: Mon 30 Jun 2025 15:33:30 +0000
asID: 43260
IP address blocks: 102.218.102.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F362C18C/45883290ABD111EBB1A6715EF8AEA228/Y-C7azQzzV1xpCsBab2wHiDkVX8.crl
rsync://rpki.afrinic.net/repository/member_repository/F362C18C/45883290ABD111EBB1A6715EF8AEA228/Y-C7azQzzV1xpCsBab2wHiDkVX8.mft
rsync://rpki.afrinic.net/repository/afrinic/Y-C7azQzzV1xpCsBab2wHiDkVX8.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 30 Apr 2025 00:06:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1536 (0x600)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F362C18CAF, serialNumber=63E0BB6B3433CD5D71A42B0169BDB01E20E4557F
Validity
Not Before: Apr 14 15:33:30 2025 GMT
Not After : Jun 30 15:33:30 2025 GMT
Subject: CN=67fd2acf-151d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:36:7c:94:88:d3:0d:9e:50:42:e1:5d:07:74:
8c:87:e8:81:3f:0d:12:30:88:6e:bc:53:d4:70:4e:
a6:71:e2:23:03:c3:a7:16:46:e8:ce:c7:96:2f:78:
e8:2b:87:c6:4a:28:97:5d:81:bd:a2:0f:9d:c2:ed:
8f:5d:05:50:99:ca:50:a8:ca:1e:b4:7a:19:f1:bd:
7d:80:9e:de:e1:b4:f8:08:0b:f9:6b:0a:28:5b:31:
62:38:23:bc:78:4c:c7:60:48:2d:41:b4:57:05:7d:
ce:a3:12:98:82:9e:f3:3c:f0:08:81:59:3a:e4:02:
81:0f:16:02:16:d1:c7:0c:7d:86:92:2f:1c:bf:0f:
23:44:b8:ca:ea:c6:a8:78:78:ba:1b:64:83:90:c1:
ec:c3:51:f5:99:06:0c:49:85:30:cd:5d:a4:ec:fa:
b3:36:14:8f:5e:9e:04:94:aa:56:ef:25:14:83:ee:
36:19:ec:0d:d3:49:7c:36:1f:d3:99:2f:e6:06:2c:
e1:df:2e:cc:0c:a3:e6:a9:fa:5f:86:63:e6:b2:ec:
bd:f6:c0:47:be:50:8a:c4:24:a5:b0:16:35:92:d5:
ab:d8:b6:bd:ba:a3:37:b8:30:b1:6e:e3:ac:c8:0f:
51:68:27:ea:ee:ce:7a:19:b4:84:e7:de:48:0d:13:
70:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:A6:03:C9:8B:7D:E2:8F:E0:56:48:94:09:72:80:05:DC:11:13:E3
X509v3 Authority Key Identifier:
keyid:63:E0:BB:6B:34:33:CD:5D:71:A4:2B:01:69:BD:B0:1E:20:E4:55:7F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F362C18C/45883290ABD111EBB1A6715EF8AEA228/Y-C7azQzzV1xpCsBab2wHiDkVX8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/Y-C7azQzzV1xpCsBab2wHiDkVX8.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F362C18C/45883290ABD111EBB1A6715EF8AEA228/D3DBADAC194511F0AC2D38AF6DB8BCC6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.218.102.0/24
Signature Algorithm: sha256WithRSAEncryption
8a:2e:aa:26:46:a3:a4:3f:e4:ba:c1:59:9a:8c:74:fd:3f:3e:
fd:31:3d:5d:25:0e:b9:fe:2b:21:6c:bd:ef:ac:5e:1c:ce:61:
d5:dc:13:41:17:ae:2d:9c:a8:2d:23:ad:1e:28:69:22:49:b9:
9b:04:eb:4e:37:fb:f3:c4:6f:c2:01:84:28:6d:a0:98:8f:13:
14:4c:65:92:c4:93:b8:eb:a3:7e:66:77:62:38:04:a6:7e:58:
bd:08:a2:69:45:34:a8:0d:3a:4d:8c:d5:e6:9d:26:54:b8:57:
db:90:d9:80:19:ec:98:b9:b2:72:98:98:e7:16:5f:59:c4:8f:
a7:07:75:59:a0:9e:bf:dd:5a:c2:7d:fe:bf:3c:a7:e8:ad:e7:
a5:a0:14:46:b9:13:76:6f:9f:d4:64:7d:2a:ce:e7:6e:d2:0b:
22:b9:3c:3f:e2:d5:07:e7:0d:a0:44:b8:68:ad:60:a8:40:72:
87:cd:98:51:a5:20:14:74:cd:67:4f:3b:9f:cc:93:e2:ec:42:
9b:38:9e:fa:fc:ad:4a:3d:1a:d8:9c:67:3d:b8:6b:33:a1:be:
93:ed:4d:97:60:3c:af:e1:ca:be:5f:80:ce:2b:94:ac:e4:ab:
40:c2:a2:42:c8:f2:42:05:d5:23:43:43:e0:87:39:2e:6c:c5:
c4:2e:d4:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 06:02:27 2025 by rpki-client on console.sobornost.net