Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/D602690820F311F0AF63ACEADAE4EC9C.roa
File: D602690820F311F0AF63ACEADAE4EC9C.roa (raw, json)
Hash identifier: p9sE9vUvW8BK2fLan2D1sUWbKA/3y9j4sHBq8+ASOhc=
Subject key identifier: 1E:84:20:80:85:16:CD:F9:1B:23:B2:15:30:90:88:49:74:F2:94:58
Certificate issuer: /CN=F363BA19AF/serialNumber=6AEA24B099C32B22E4E48BB9F26CF578BEF6BFF3
Certificate serial: 0966
Authority key identifier: 6A:EA:24:B0:99:C3:2B:22:E4:E4:8B:B9:F2:6C:F5:78:BE:F6:BF:F3
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/auoksJnDKyLk5Iu58mz1eL72v_M.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/D602690820F311F0AF63ACEADAE4EC9C.roa
Signing time: Thu 24 Apr 2025 10:06:49 +0000
ROA not before: Thu 24 Apr 2025 10:06:44 +0000
ROA not after: Tue 01 Dec 2026 10:06:44 +0000
asID: 9009
IP address blocks: 102.135.115.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/auoksJnDKyLk5Iu58mz1eL72v_M.crl
rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/auoksJnDKyLk5Iu58mz1eL72v_M.mft
rsync://rpki.afrinic.net/repository/afrinic/auoksJnDKyLk5Iu58mz1eL72v_M.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 26 Apr 2025 00:06:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2406 (0x966)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F363BA19AF, serialNumber=6AEA24B099C32B22E4E48BB9F26CF578BEF6BFF3
Validity
Not Before: Apr 24 10:06:44 2025 GMT
Not After : Dec 1 10:06:44 2026 GMT
Subject: CN=680a0d39-b37f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:c5:67:6a:4e:db:4e:60:7c:f5:ef:8b:06:f5:
62:65:d3:1a:fd:c2:5c:4b:02:80:05:da:f8:7f:80:
37:8d:5c:aa:30:0f:bf:80:db:90:66:b9:90:c9:4a:
4d:bb:14:21:d6:d7:6f:4c:f8:81:9e:9d:c1:3d:18:
af:69:ed:59:9a:f6:48:fb:58:c2:9b:bb:92:73:3f:
2d:ba:d7:c5:fc:71:8d:be:22:62:66:c8:d8:69:3f:
32:74:d1:41:8e:1e:43:69:d2:74:ab:5f:7e:ce:e2:
f1:bd:71:0f:34:a1:89:a7:fe:35:b6:34:ef:53:5b:
6d:5c:fe:1a:84:57:22:d0:92:0c:d6:c8:19:df:3c:
48:a5:f2:da:12:5d:a7:57:a4:a4:2d:10:af:9e:ce:
8e:ce:ce:cf:d4:af:80:a6:cc:b2:f1:00:4e:a0:a5:
d7:d8:07:b6:62:70:d2:fd:eb:ff:e7:93:87:02:1d:
c5:56:e0:4d:46:05:53:f4:3d:66:6d:86:98:09:87:
0b:cb:5c:3d:97:39:b9:e3:d3:cc:b4:39:37:72:92:
9c:51:b2:e8:b7:df:7f:ac:3c:ef:e9:9c:a0:d5:71:
fe:b1:f5:4b:ce:82:42:b2:29:08:d7:7d:ed:36:4f:
de:d7:5a:50:51:11:a7:b9:f0:60:2b:13:1e:dc:7a:
2b:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:84:20:80:85:16:CD:F9:1B:23:B2:15:30:90:88:49:74:F2:94:58
X509v3 Authority Key Identifier:
keyid:6A:EA:24:B0:99:C3:2B:22:E4:E4:8B:B9:F2:6C:F5:78:BE:F6:BF:F3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/auoksJnDKyLk5Iu58mz1eL72v_M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/auoksJnDKyLk5Iu58mz1eL72v_M.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/D602690820F311F0AF63ACEADAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.135.115.0/24
Signature Algorithm: sha256WithRSAEncryption
24:66:a5:3a:db:9e:d0:c3:f8:77:89:69:b0:b3:af:3f:9b:09:
23:44:45:b9:62:c4:56:60:40:71:47:8f:62:e8:f6:db:f6:f5:
8e:bc:f3:6f:e0:2a:a1:19:ba:ff:c2:26:22:93:63:4d:10:4b:
a6:d1:24:21:05:56:f2:98:ee:c6:5c:21:57:a8:65:b2:48:12:
e3:6e:15:f6:6a:6b:8c:60:90:b2:bf:bc:93:a8:ee:0b:36:e2:
74:b0:d3:98:23:53:03:2f:cf:f0:e3:4f:1c:d0:80:ce:0a:20:
48:6f:6b:28:1f:6e:81:07:28:e7:0c:23:bd:64:70:ba:22:17:
62:ea:3d:05:89:ab:a2:a1:f2:15:a2:88:e4:09:11:b0:e7:71:
34:68:c3:fc:e8:94:24:0e:36:96:37:70:57:30:5b:24:ef:fc:
a8:f5:98:f6:10:37:d3:9b:3e:d0:a5:ab:70:85:05:da:71:ee:
1c:94:34:75:ad:6f:9c:2b:2c:d2:a0:24:cf:66:60:64:2a:33:
3b:ca:e1:e3:18:00:17:81:0b:dd:48:54:39:95:c2:f1:23:10:
69:38:07:2c:26:9e:aa:db:e8:3f:00:12:f0:11:74:92:21:e4:
ae:f9:46:c5:b3:61:f5:63:5f:58:55:90:b2:2f:05:e2:86:69:
a9:e5:9b:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 24 13:40:35 2025 by rpki-client on console.sobornost.net