Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/AF774DB41C1911F0ACD7DA76DAE4EC9C.roa
File: AF774DB41C1911F0ACD7DA76DAE4EC9C.roa (raw, json)
Hash identifier: X8Y+PZOMJLhShsSS8ihNh1gpie2TYIWjywIjX1DwdGY=
Subject key identifier: F3:52:C7:EA:8D:8C:45:D3:0F:6D:46:25:35:92:DA:C4:29:B5:25:C3
Certificate issuer: /CN=F363BA19AF/serialNumber=6AEA24B099C32B22E4E48BB9F26CF578BEF6BFF3
Certificate serial: 0922
Authority key identifier: 6A:EA:24:B0:99:C3:2B:22:E4:E4:8B:B9:F2:6C:F5:78:BE:F6:BF:F3
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/auoksJnDKyLk5Iu58mz1eL72v_M.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/AF774DB41C1911F0ACD7DA76DAE4EC9C.roa
Signing time: Fri 18 Apr 2025 05:55:10 +0000
ROA not before: Fri 18 Apr 2025 05:55:04 +0000
ROA not after: Sat 18 Apr 2026 05:55:04 +0000
asID: 18811
IP address blocks: 102.135.72.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/auoksJnDKyLk5Iu58mz1eL72v_M.crl
rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/auoksJnDKyLk5Iu58mz1eL72v_M.mft
rsync://rpki.afrinic.net/repository/afrinic/auoksJnDKyLk5Iu58mz1eL72v_M.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 27 Apr 2025 00:06:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2338 (0x922)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F363BA19AF, serialNumber=6AEA24B099C32B22E4E48BB9F26CF578BEF6BFF3
Validity
Not Before: Apr 18 05:55:04 2025 GMT
Not After : Apr 18 05:55:04 2026 GMT
Subject: CN=6801e93d-4535
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:8d:86:40:e3:cc:4b:e8:9a:f6:fc:ab:da:87:
7e:51:5a:22:20:43:a5:2a:82:9d:43:98:b6:93:74:
d4:a3:ae:39:14:6d:7f:6d:d6:c5:d7:de:3e:04:c0:
f2:32:f6:91:3c:dd:36:c8:b3:2c:2c:e2:af:f0:fd:
9f:ba:6d:e4:e6:32:89:de:96:ac:94:dd:46:be:ed:
b2:ff:8b:a9:26:0b:c0:f1:1e:cd:c7:0b:5d:c9:4a:
67:b5:b8:e9:3d:69:19:ce:1a:a1:5e:82:d5:0a:27:
24:cd:96:69:c7:83:8d:7a:4f:3f:45:d1:0e:3b:e7:
7a:ec:0b:66:8f:87:c1:59:21:3d:1f:f5:a2:03:eb:
4d:95:ab:8f:73:31:f7:80:bc:6b:36:8a:a0:56:de:
90:e1:c2:68:ab:30:d2:d2:4f:ea:9a:cb:44:a2:31:
48:6d:5c:96:2e:46:a1:da:51:5f:e7:f0:1c:b0:5f:
e8:e2:0f:80:22:ea:95:4c:07:8c:0b:9b:2b:b1:98:
2f:34:31:67:b9:fb:a8:c0:74:f5:bd:cd:b2:5a:6d:
b4:0e:b6:3e:4c:34:4c:8d:92:02:30:ac:bf:3b:49:
4e:c1:72:36:ae:47:c6:78:f1:f2:66:85:0c:8f:fe:
d7:b0:50:54:cf:57:27:78:d4:a9:f2:db:76:74:ca:
4f:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:52:C7:EA:8D:8C:45:D3:0F:6D:46:25:35:92:DA:C4:29:B5:25:C3
X509v3 Authority Key Identifier:
keyid:6A:EA:24:B0:99:C3:2B:22:E4:E4:8B:B9:F2:6C:F5:78:BE:F6:BF:F3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/auoksJnDKyLk5Iu58mz1eL72v_M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/auoksJnDKyLk5Iu58mz1eL72v_M.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/AF774DB41C1911F0ACD7DA76DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.135.72.0/24
Signature Algorithm: sha256WithRSAEncryption
c4:85:a1:50:da:c3:7b:7b:cf:e4:f0:95:45:79:1c:8c:56:59:
51:d2:3a:29:35:21:c9:10:73:b4:1e:e3:ab:43:96:91:7e:31:
05:c8:78:2a:b3:f5:e9:8e:3d:a1:3d:4f:c2:ae:aa:88:6b:a9:
08:3a:14:93:60:7e:09:90:5f:19:de:7c:61:4e:c8:cc:44:07:
42:3c:6e:59:df:7d:84:da:d0:7f:90:f3:a1:c5:9e:87:85:66:
b3:67:98:5e:2f:4a:a9:d0:6f:c5:ad:b2:92:c4:b1:20:e6:cf:
8e:ff:85:3c:78:a8:6d:d6:8a:22:3d:97:1c:6b:2c:49:5f:66:
3a:a8:31:1d:17:60:58:17:7f:98:b6:3c:d5:6a:bc:79:98:03:
85:a2:68:87:5f:2f:22:c1:13:ff:f3:85:a7:99:0e:5c:62:f2:
ce:a3:a8:47:89:c8:11:05:2d:aa:9e:68:4f:ea:2d:17:7f:41:
a6:25:7a:9b:12:05:83:5b:5f:75:09:7c:93:d3:8a:0f:11:0b:
dc:86:ec:63:c6:5b:51:ad:0c:fc:1b:40:07:82:bb:c2:e8:f4:
a2:64:ca:59:00:e9:69:40:75:26:da:2a:f8:37:5f:c7:ad:15:
8d:1f:f2:b1:41:f8:4b:cc:84:90:86:6d:8c:9c:c2:a0:c7:73:
4f:93:27:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 06:03:07 2025 by rpki-client on console.sobornost.net