Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/04373F0619E211F0899675CA6DB8BCC6.roa
File: 04373F0619E211F0899675CA6DB8BCC6.roa (raw, json)
Hash identifier: e8lmzGoMArYenVNPL/JP6ThVIQVvIlRtud8E/pjIlHM=
Subject key identifier: 00:2B:61:49:FE:F0:25:76:5D:02:E7:B6:4D:B3:94:00:EE:63:7A:27
Certificate issuer: /CN=F363BA19AF/serialNumber=6AEA24B099C32B22E4E48BB9F26CF578BEF6BFF3
Certificate serial: 090A
Authority key identifier: 6A:EA:24:B0:99:C3:2B:22:E4:E4:8B:B9:F2:6C:F5:78:BE:F6:BF:F3
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/auoksJnDKyLk5Iu58mz1eL72v_M.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/04373F0619E211F0899675CA6DB8BCC6.roa
Signing time: Tue 15 Apr 2025 10:11:38 +0000
ROA not before: Tue 15 Apr 2025 10:11:33 +0000
ROA not after: Tue 13 Jan 2026 10:11:33 +0000
asID: 18811
IP address blocks: 102.135.80.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/auoksJnDKyLk5Iu58mz1eL72v_M.crl
rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/auoksJnDKyLk5Iu58mz1eL72v_M.mft
rsync://rpki.afrinic.net/repository/afrinic/auoksJnDKyLk5Iu58mz1eL72v_M.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 27 Apr 2025 00:06:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2314 (0x90a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F363BA19AF, serialNumber=6AEA24B099C32B22E4E48BB9F26CF578BEF6BFF3
Validity
Not Before: Apr 15 10:11:33 2025 GMT
Not After : Jan 13 10:11:33 2026 GMT
Subject: CN=67fe30d9-ae73
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:69:d0:25:a1:86:13:6b:12:9d:85:25:ec:6c:
fd:93:75:fc:77:bb:be:7d:eb:e3:e6:8a:cb:45:9b:
33:69:e4:fb:e8:35:24:2d:d9:f2:2e:fa:1b:01:50:
84:29:ae:8c:4a:d6:d7:f0:9f:99:07:74:c9:bb:ae:
ea:8b:1b:b8:3e:b3:f8:45:a7:d3:2e:4a:90:7c:96:
ad:95:9a:4f:d4:f2:12:79:af:79:fb:c2:49:3e:92:
b8:cd:0b:35:12:63:af:6a:1b:dd:65:0f:b2:d5:81:
30:fa:61:00:bc:54:ba:2f:be:a2:0f:7b:2e:02:61:
9e:ab:4a:59:a5:bd:08:42:a8:0a:3d:7c:b2:de:b2:
2b:ce:de:a4:c7:d9:48:6b:fa:f0:3a:cf:d5:f7:ba:
4e:9f:37:5a:51:2d:f3:2d:9f:d0:40:20:34:c2:af:
ea:b1:d6:bf:ff:ee:a7:d4:9e:11:39:12:63:0d:13:
56:86:08:73:52:44:c6:f9:b3:81:53:58:d8:d4:d3:
b5:f9:b1:33:5d:40:16:7f:c4:96:41:f9:d3:0f:a5:
fc:38:ed:4b:bf:47:8a:4e:92:7d:d4:a1:92:c1:67:
65:40:a9:5e:8a:0b:c1:cc:97:a5:87:22:cc:90:64:
d3:cb:c0:5b:35:e8:9c:ec:67:16:87:2f:56:aa:da:
7b:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:2B:61:49:FE:F0:25:76:5D:02:E7:B6:4D:B3:94:00:EE:63:7A:27
X509v3 Authority Key Identifier:
keyid:6A:EA:24:B0:99:C3:2B:22:E4:E4:8B:B9:F2:6C:F5:78:BE:F6:BF:F3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/auoksJnDKyLk5Iu58mz1eL72v_M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/auoksJnDKyLk5Iu58mz1eL72v_M.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/04373F0619E211F0899675CA6DB8BCC6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.135.80.0/24
Signature Algorithm: sha256WithRSAEncryption
5c:d8:1d:cd:66:06:85:36:6b:08:fc:16:c3:91:b2:bd:cf:bd:
6e:ba:d6:a2:e9:78:e8:22:26:df:34:83:06:5f:9e:74:64:4f:
cb:35:11:f6:7f:ca:67:cc:70:8a:58:d7:37:c8:7e:49:64:75:
8e:0d:b5:82:a3:97:25:bc:70:dd:9b:32:d6:8a:76:01:ea:ec:
c2:6f:91:45:77:9d:b8:a7:91:77:ac:0f:1e:d6:25:47:bb:78:
4f:eb:e8:4d:ba:32:27:46:b3:9f:04:df:a8:3b:23:b1:43:bd:
4f:d7:7c:ed:2e:5d:a9:08:63:1a:23:91:38:33:14:d5:c2:de:
a7:cb:25:4a:6d:fc:0f:0c:0b:4e:f8:83:a8:c1:04:6c:6c:0e:
70:fd:6c:9f:04:29:84:9f:59:38:de:55:b1:8e:57:e8:23:5b:
15:3a:3d:f5:e6:bb:92:e4:13:ab:62:cc:6a:fe:60:f1:46:50:
f7:7c:e1:2f:58:33:6b:6d:5c:45:d4:c5:7d:d6:b5:78:8b:51:
30:be:29:a3:c2:82:60:2a:a7:a6:13:c6:2f:ee:82:64:c5:7e:
4f:54:74:a4:b4:93:81:43:29:a7:8f:09:9a:57:b9:ca:ae:f9:
70:5a:0b:ac:33:12:45:10:20:e8:33:8c:51:e8:d9:f1:a0:ee:
e8:e0:77:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 06:03:07 2025 by rpki-client on console.sobornost.net