Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/C4CFB194138411F08CF115B5762E951A.roa
File: C4CFB194138411F08CF115B5762E951A.roa (raw, json)
Hash identifier: 1zuT7sqsiqC6RUb9TDkiA+2tHMbhWLqRnCmvebH40HM=
Subject key identifier: A4:30:05:2B:3D:75:D1:AA:53:5B:E6:2C:5C:1D:90:3E:E8:2E:E5:F9
Certificate issuer: /CN=F363BA19AF/serialNumber=6AEA24B099C32B22E4E48BB9F26CF578BEF6BFF3
Certificate serial: 08D8
Authority key identifier: 6A:EA:24:B0:99:C3:2B:22:E4:E4:8B:B9:F2:6C:F5:78:BE:F6:BF:F3
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/auoksJnDKyLk5Iu58mz1eL72v_M.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/C4CFB194138411F08CF115B5762E951A.roa
Signing time: Mon 07 Apr 2025 07:49:01 +0000
ROA not before: Mon 07 Apr 2025 07:48:57 +0000
ROA not after: Tue 13 Jan 2026 07:48:57 +0000
asID: 329007
IP address blocks: 102.135.0.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/auoksJnDKyLk5Iu58mz1eL72v_M.crl
rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/auoksJnDKyLk5Iu58mz1eL72v_M.mft
rsync://rpki.afrinic.net/repository/afrinic/auoksJnDKyLk5Iu58mz1eL72v_M.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 27 Apr 2025 00:06:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2264 (0x8d8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F363BA19AF, serialNumber=6AEA24B099C32B22E4E48BB9F26CF578BEF6BFF3
Validity
Not Before: Apr 7 07:48:57 2025 GMT
Not After : Jan 13 07:48:57 2026 GMT
Subject: CN=67f3836d-88e9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:0b:54:9a:fd:42:77:f2:6d:b3:7a:b6:66:52:
a4:4c:87:3a:35:2a:96:2e:c7:22:0e:b8:bc:c1:60:
09:8c:b0:b1:76:4d:51:51:2f:35:64:6a:32:d7:92:
98:41:51:84:fb:d1:f6:58:ed:cf:65:5b:15:75:0c:
79:18:6f:c5:f2:46:4a:33:73:4a:5a:74:b5:50:d8:
b4:3f:c7:70:8e:e0:73:a2:e9:78:ee:c3:6c:32:2e:
9d:9f:a5:01:e0:8f:d9:14:d5:d2:4e:f1:7d:2c:ab:
cb:9d:59:e5:ea:b6:fd:c5:03:14:77:73:54:6d:04:
86:b5:bc:df:e6:4e:00:47:98:32:8f:32:da:52:51:
2c:f9:9b:ba:16:1b:8a:2a:f5:8d:0c:8c:9a:1c:df:
8e:d9:5b:13:cd:db:0b:bf:0c:d0:a5:44:51:7f:c0:
9e:ee:0e:0b:93:9e:c0:09:37:45:8e:90:21:6c:3b:
fc:f5:d0:de:f6:de:99:e1:08:77:94:b4:53:7b:d8:
aa:7a:be:d2:42:3e:3a:ed:15:51:50:a3:44:1a:53:
87:55:ee:4f:f9:69:30:2e:b7:1b:e2:31:2e:f0:46:
14:7e:ea:e7:76:92:81:34:a8:c0:72:85:3b:fe:f9:
ed:6b:35:46:7f:b1:81:89:52:d0:98:cf:d9:dc:f9:
16:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:30:05:2B:3D:75:D1:AA:53:5B:E6:2C:5C:1D:90:3E:E8:2E:E5:F9
X509v3 Authority Key Identifier:
keyid:6A:EA:24:B0:99:C3:2B:22:E4:E4:8B:B9:F2:6C:F5:78:BE:F6:BF:F3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/auoksJnDKyLk5Iu58mz1eL72v_M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/auoksJnDKyLk5Iu58mz1eL72v_M.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/C4CFB194138411F08CF115B5762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.135.0.0/24
Signature Algorithm: sha256WithRSAEncryption
c9:c0:ef:2d:ff:27:a6:b9:4c:e3:92:6c:93:8a:80:10:c1:06:
09:06:40:da:3b:71:15:7f:49:ec:6f:50:ae:bf:aa:0e:4a:db:
c7:d2:e7:87:98:40:61:e4:9b:3d:7e:c8:97:d9:7b:ad:7e:f1:
ad:49:03:55:f9:4b:4e:c3:03:3d:19:3c:a4:5a:c7:a9:80:d4:
b4:c1:01:0b:66:4e:5b:d4:32:c7:06:49:19:e1:bd:62:9e:e1:
34:8b:dd:30:98:18:9d:86:ca:82:4d:7e:20:19:54:1a:c6:1c:
17:5d:70:0a:08:f4:0a:74:37:bd:84:71:9b:9e:8a:66:ff:f6:
85:b0:c0:e7:61:41:f7:02:d1:e0:36:5d:ee:5f:e0:90:cf:95:
01:2c:a7:5b:ea:b9:2b:d3:db:00:04:52:0c:91:27:3a:e3:27:
2f:24:c7:bb:20:2b:28:27:d0:da:ba:80:92:d8:1b:a0:5a:c0:
ec:6e:52:98:1c:29:d2:b4:d8:26:98:32:58:ee:ee:08:0f:21:
9e:36:d9:be:47:cb:90:0b:98:43:db:66:d5:88:76:6f:bd:cb:
15:73:d8:a5:5e:0c:4b:14:b5:3d:b1:cf:1d:43:bb:0e:5a:1e:
57:17:40:a0:d4:af:20:4a:87:40:d1:3c:1c:75:55:12:a4:e7:
39:1c:14:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 06:03:07 2025 by rpki-client on console.sobornost.net