Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/FAD1E6641F8111F080E0FDBCDAE4EC9C.roa
File: FAD1E6641F8111F080E0FDBCDAE4EC9C.roa (raw, json)
Hash identifier: hj16Y4J9WwvD0xng6S8pEx98SG2eF4/jpkczhlqpTHo=
Subject key identifier: 71:41:78:C0:FB:0A:43:C7:4A:D2:FF:26:9C:4D:AA:26:8F:9F:8F:97
Certificate issuer: /CN=F363BA19AF/serialNumber=6AEA24B099C32B22E4E48BB9F26CF578BEF6BFF3
Certificate serial: 0953
Authority key identifier: 6A:EA:24:B0:99:C3:2B:22:E4:E4:8B:B9:F2:6C:F5:78:BE:F6:BF:F3
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/auoksJnDKyLk5Iu58mz1eL72v_M.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/FAD1E6641F8111F080E0FDBCDAE4EC9C.roa
Signing time: Tue 22 Apr 2025 13:59:17 +0000
ROA not before: Tue 22 Apr 2025 13:59:12 +0000
ROA not after: Tue 21 Apr 2026 13:59:12 +0000
asID: 20326
IP address blocks: 102.135.20.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/auoksJnDKyLk5Iu58mz1eL72v_M.crl
rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/auoksJnDKyLk5Iu58mz1eL72v_M.mft
rsync://rpki.afrinic.net/repository/afrinic/auoksJnDKyLk5Iu58mz1eL72v_M.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 27 Apr 2025 00:06:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2387 (0x953)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F363BA19AF, serialNumber=6AEA24B099C32B22E4E48BB9F26CF578BEF6BFF3
Validity
Not Before: Apr 22 13:59:12 2025 GMT
Not After : Apr 21 13:59:12 2026 GMT
Subject: CN=6807a0b5-5b63
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:de:26:e8:eb:82:7d:73:f5:62:b5:b2:79:8b:
d0:6a:06:6d:ee:8b:a0:2b:68:3a:9b:c2:b1:f0:bc:
9d:0c:fb:eb:24:27:c7:9a:fa:3c:b2:f7:17:8e:54:
26:21:1b:25:7c:68:9f:94:39:15:70:88:d6:b1:26:
5b:62:15:30:77:80:c8:92:d1:02:8e:2e:01:c5:c7:
79:d4:b8:b1:72:e8:ab:d1:ab:af:13:77:51:ac:18:
df:62:1f:36:7c:a3:e7:16:f7:20:41:5b:cc:11:f7:
66:81:28:9f:c5:dc:ec:07:46:2d:68:6c:3d:af:f0:
ed:89:03:98:bf:d7:76:0f:f8:ba:11:4c:bd:f8:65:
b1:6b:ea:d5:8f:9b:89:5e:e8:77:f3:ea:a5:35:3f:
13:18:37:53:a5:b6:31:7c:23:a4:9f:a9:82:d7:52:
c1:30:d7:50:7b:d7:42:03:0f:dd:82:d3:9d:2d:21:
c6:e0:9a:43:37:a9:71:fb:24:d1:b3:84:12:85:35:
df:5b:a0:a2:f5:d5:c6:8d:83:3f:6c:0a:e7:b8:ca:
0c:05:6c:0c:e6:6e:a9:4e:65:0e:e8:ed:95:eb:14:
21:b2:8b:6b:47:13:27:c2:4c:3c:f8:df:3a:49:83:
2b:09:ce:a9:e2:72:f7:16:dc:67:28:56:07:ae:bc:
dd:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:41:78:C0:FB:0A:43:C7:4A:D2:FF:26:9C:4D:AA:26:8F:9F:8F:97
X509v3 Authority Key Identifier:
keyid:6A:EA:24:B0:99:C3:2B:22:E4:E4:8B:B9:F2:6C:F5:78:BE:F6:BF:F3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/auoksJnDKyLk5Iu58mz1eL72v_M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/auoksJnDKyLk5Iu58mz1eL72v_M.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/FAD1E6641F8111F080E0FDBCDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.135.20.0/24
Signature Algorithm: sha256WithRSAEncryption
dd:7d:30:61:c0:e1:72:ed:28:b1:cc:c2:fd:9a:15:d5:49:f3:
ea:0f:ca:69:59:7c:d2:03:9e:15:d6:f9:65:57:c7:43:27:8c:
42:d1:a9:29:8a:12:23:35:42:79:9f:7e:7b:68:c5:f8:80:64:
11:df:f9:82:f6:46:1c:bb:ad:86:4c:43:c5:d5:fd:0c:58:83:
5c:de:a6:59:aa:1d:5d:33:41:92:d2:fe:e6:10:5a:59:d9:8a:
9b:0c:b4:22:74:7d:1c:7c:7b:51:dc:17:e3:98:2a:90:c7:2b:
99:12:dc:de:22:31:6a:27:d1:ba:2a:a4:3a:f9:a7:4c:fa:86:
3c:26:19:cb:02:b0:ea:12:c5:2a:75:89:f1:08:f1:9b:aa:b3:
0f:ad:ac:82:ef:ab:99:60:82:09:dd:ed:41:22:a5:1e:ed:a5:
af:7c:2b:18:12:20:5d:ed:e0:a3:1d:26:9e:c7:26:07:37:a0:
8f:f5:6b:18:70:94:54:6b:6f:74:21:a5:0b:0e:72:48:b6:02:
61:a6:df:e1:c0:08:9d:6a:83:f7:b8:77:51:81:46:a4:2b:2c:
2e:9a:47:89:a1:f7:a4:e6:11:da:b4:6d:c0:1b:0c:94:20:d3:
2d:c3:0a:5b:b1:0c:b6:5b:f1:9a:e4:cf:d9:44:c4:1b:18:65:
d6:8e:46:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 06:03:07 2025 by rpki-client on console.sobornost.net