Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/5C1CD65A1A0411F08A5E402B6EB8BCC6.roa
File: 5C1CD65A1A0411F08A5E402B6EB8BCC6.roa (raw, json)
Hash identifier: tkw5MGAlkuj8vvlxSRGmh5GIl58ARe1gUP2ArS7ieRg=
Subject key identifier: CE:A3:F7:06:D8:C2:04:F1:9C:A0:1A:BB:AE:2E:60:CA:73:2F:A1:98
Certificate issuer: /CN=F363BA19AF/serialNumber=6AEA24B099C32B22E4E48BB9F26CF578BEF6BFF3
Certificate serial: 0914
Authority key identifier: 6A:EA:24:B0:99:C3:2B:22:E4:E4:8B:B9:F2:6C:F5:78:BE:F6:BF:F3
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/auoksJnDKyLk5Iu58mz1eL72v_M.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/5C1CD65A1A0411F08A5E402B6EB8BCC6.roa
Signing time: Tue 15 Apr 2025 14:17:28 +0000
ROA not before: Tue 15 Apr 2025 14:17:23 +0000
ROA not after: Wed 15 Apr 2026 14:17:23 +0000
asID: 18811
IP address blocks: 102.135.94.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/auoksJnDKyLk5Iu58mz1eL72v_M.crl
rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/auoksJnDKyLk5Iu58mz1eL72v_M.mft
rsync://rpki.afrinic.net/repository/afrinic/auoksJnDKyLk5Iu58mz1eL72v_M.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 27 Apr 2025 00:06:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2324 (0x914)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F363BA19AF, serialNumber=6AEA24B099C32B22E4E48BB9F26CF578BEF6BFF3
Validity
Not Before: Apr 15 14:17:23 2025 GMT
Not After : Apr 15 14:17:23 2026 GMT
Subject: CN=67fe6a78-9980
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:d7:2f:28:2e:36:0c:1f:30:0d:6c:25:34:e7:
45:5c:86:f8:2f:81:b2:73:fd:ba:50:ab:08:60:6b:
ce:bc:8a:aa:ef:74:21:50:9b:7f:6d:f5:d3:ef:51:
fb:fc:d4:a5:e8:e8:07:38:92:5a:9b:a3:55:5b:4e:
fe:c2:3c:a5:e5:49:1b:88:1e:dc:ee:66:de:ac:98:
f2:4f:cc:95:c8:8c:84:6a:a4:41:ea:6a:4d:ac:ae:
d8:2a:91:60:e1:11:d5:4d:da:84:1c:37:c7:76:80:
4c:c6:40:74:7e:07:47:f1:b1:00:15:13:24:85:02:
aa:42:46:0e:35:19:ac:11:b8:6d:04:36:1e:5b:ce:
97:d3:12:ed:e1:bf:a7:06:76:a2:4d:1e:02:40:ad:
f5:df:42:69:ca:1e:18:1f:8f:9f:37:ab:2d:bd:26:
93:de:ec:5d:ab:11:37:b8:f6:81:71:a1:b5:53:5d:
51:f2:64:35:a2:fc:00:94:89:6d:da:ca:c8:d9:7a:
77:4e:42:6a:38:d0:11:af:ce:44:8c:40:d0:e7:23:
bb:02:8e:b0:43:bd:0a:6a:ff:5a:85:c4:bb:15:a3:
e7:7d:45:38:5e:4b:f8:58:af:32:da:4f:54:cd:ad:
e1:12:bd:3d:f8:b8:68:a8:cf:4d:e0:00:6b:5f:c5:
2b:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:A3:F7:06:D8:C2:04:F1:9C:A0:1A:BB:AE:2E:60:CA:73:2F:A1:98
X509v3 Authority Key Identifier:
keyid:6A:EA:24:B0:99:C3:2B:22:E4:E4:8B:B9:F2:6C:F5:78:BE:F6:BF:F3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/auoksJnDKyLk5Iu58mz1eL72v_M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/auoksJnDKyLk5Iu58mz1eL72v_M.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/5C1CD65A1A0411F08A5E402B6EB8BCC6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.135.94.0/24
Signature Algorithm: sha256WithRSAEncryption
04:20:7b:06:1b:29:6c:3d:7d:b3:2a:b1:3c:4c:5e:b9:eb:99:
d2:c3:27:a9:1d:e4:26:d1:29:80:0e:f3:97:75:fb:18:05:fc:
1f:7c:b2:00:85:4b:af:dd:57:cc:37:76:76:3f:c7:82:3c:0a:
db:32:ef:49:f8:58:8a:89:47:2e:f0:a6:b3:e0:0d:6b:93:44:
40:d0:05:cc:18:cc:99:31:bd:9d:e2:1e:47:53:f4:70:8a:17:
73:c9:3c:48:8e:ac:0d:cc:ff:b7:c9:60:2f:b0:e4:ad:9b:c2:
66:d7:2c:9f:60:ba:dd:f7:28:c8:b0:2a:b2:72:fa:82:53:ed:
a9:ae:c6:3a:31:2d:9e:13:45:8e:e5:f3:25:25:7b:0f:f1:ec:
e7:4d:9f:e3:ae:2e:ca:6f:72:3f:09:08:31:73:3b:58:f7:0b:
87:b9:c9:7c:17:85:9e:e4:4d:68:64:d7:7d:a7:76:b2:4f:d2:
2c:7e:9a:a2:e5:60:71:de:4c:e8:f2:c3:0b:a9:53:e8:09:b1:
ea:0a:8e:67:40:5c:5b:90:55:a4:0b:cc:15:50:c7:c8:75:06:
fc:fc:39:6d:ea:72:48:d1:f6:ab:34:c8:d7:05:f8:4d:2a:83:
10:7e:9b:59:9c:f9:41:8e:2e:37:ea:d9:2a:19:9e:f6:11:18:
02:6a:78:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 06:03:07 2025 by rpki-client on console.sobornost.net