Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36472E5/8DB6547A56D711E585356D60F8AEA228/655F290413AE11F09DCA6CAC762E951A.roa
File: 655F290413AE11F09DCA6CAC762E951A.roa (raw, json)
Hash identifier: MtTA05if95p/mNtRLM4nlSrYgGLQ7Pky8WnDGWJT8Mc=
Subject key identifier: 6D:29:9D:CD:D9:30:9A:74:62:66:2D:11:16:1B:95:CF:87:EE:B1:84
Certificate issuer: /CN=F36472E5AF/serialNumber=86FED2ED19C2067A482221B645D60C45A4D56A9D
Certificate serial: 0E13
Authority key identifier: 86:FE:D2:ED:19:C2:06:7A:48:22:21:B6:45:D6:0C:45:A4:D5:6A:9D
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/hv7S7RnCBnpIIiG2RdYMRaTVap0.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36472E5/8DB6547A56D711E585356D60F8AEA228/655F290413AE11F09DCA6CAC762E951A.roa
Signing time: Mon 07 Apr 2025 12:46:59 +0000
ROA not before: Mon 07 Apr 2025 12:46:55 +0000
ROA not after: Tue 09 Apr 2030 12:46:55 +0000
asID: 36874
IP address blocks: 41.177.0.0/16 maxlen: 24
105.233.0.0/16 maxlen: 24
196.6.121.0/24 maxlen: 24
196.22.240.0/20 maxlen: 24
196.41.96.0/19 maxlen: 24
2c0f:fbe0::/28 maxlen: 28
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36472E5/8DB6547A56D711E585356D60F8AEA228/hv7S7RnCBnpIIiG2RdYMRaTVap0.crl
rsync://rpki.afrinic.net/repository/member_repository/F36472E5/8DB6547A56D711E585356D60F8AEA228/hv7S7RnCBnpIIiG2RdYMRaTVap0.mft
rsync://rpki.afrinic.net/repository/afrinic/hv7S7RnCBnpIIiG2RdYMRaTVap0.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 29 Apr 2025 00:06:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3603 (0xe13)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36472E5AF, serialNumber=86FED2ED19C2067A482221B645D60C45A4D56A9D
Validity
Not Before: Apr 7 12:46:55 2025 GMT
Not After : Apr 9 12:46:55 2030 GMT
Subject: CN=67f3c943-8141
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:9c:f1:a8:44:e1:16:7e:6b:ba:5f:8b:9c:8b:
c7:2b:4d:ae:77:48:5d:e5:82:40:78:f2:7f:29:57:
dc:b9:4a:9c:22:ec:ac:39:30:b8:d9:bf:2a:d2:28:
d0:e6:c2:da:17:ab:b9:b0:20:5c:bc:dc:5b:96:c9:
b2:94:13:27:2f:22:78:4f:4a:db:7f:13:a6:6a:69:
86:5a:a1:1b:ff:fc:45:31:61:b9:69:c8:f5:73:21:
18:c6:ee:a0:4d:e3:9d:8b:12:2a:38:e3:55:2e:9a:
d0:e9:38:88:ca:55:69:4e:31:9d:23:79:a9:6c:86:
11:5a:58:fa:41:19:07:67:aa:eb:e3:ec:56:5f:ba:
db:0c:ce:f1:ac:a8:e0:ca:70:a9:16:31:f0:b0:88:
7b:7f:9a:1f:8b:2b:b3:c3:b5:03:97:c3:c7:0a:94:
65:95:16:10:47:30:3c:51:f3:bd:cd:90:ab:0c:8d:
e8:f2:4e:a2:5c:74:d2:a6:14:cc:f2:b1:f9:7d:81:
bf:a5:cf:3b:f5:d8:28:95:37:ed:32:96:db:df:13:
2b:dc:63:b9:28:98:33:a2:0d:4d:7e:d8:cb:99:7f:
19:9e:55:7f:56:da:55:86:a0:0f:b6:24:f0:bd:34:
d3:82:a1:ac:3d:11:42:59:b4:53:06:7d:43:46:8e:
c6:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:29:9D:CD:D9:30:9A:74:62:66:2D:11:16:1B:95:CF:87:EE:B1:84
X509v3 Authority Key Identifier:
keyid:86:FE:D2:ED:19:C2:06:7A:48:22:21:B6:45:D6:0C:45:A4:D5:6A:9D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36472E5/8DB6547A56D711E585356D60F8AEA228/hv7S7RnCBnpIIiG2RdYMRaTVap0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/hv7S7RnCBnpIIiG2RdYMRaTVap0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36472E5/8DB6547A56D711E585356D60F8AEA228/655F290413AE11F09DCA6CAC762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.177.0.0/16
105.233.0.0/16
196.6.121.0/24
196.22.240.0/20
196.41.96.0/19
IPv6:
2c0f:fbe0::/28
Signature Algorithm: sha256WithRSAEncryption
3c:e9:e5:38:b3:a4:b4:d1:99:09:d1:90:d9:12:93:71:71:58:
78:68:14:01:66:cc:b0:2f:c2:e0:3b:ba:25:2b:72:15:f3:c9:
ab:44:86:da:a2:b3:f9:c8:e4:13:78:0f:11:84:9b:3d:0d:ac:
b9:d1:38:21:be:87:33:14:00:dd:d4:81:a3:c7:5e:52:03:03:
97:87:e5:ab:65:ac:de:2c:94:00:01:30:f4:92:f6:3d:b4:f9:
dc:24:35:d5:f6:3b:f8:88:50:bd:06:be:ef:7b:8a:ae:43:71:
22:f3:4e:0a:b0:4a:08:e0:32:45:f4:2a:c5:ec:4e:a9:95:06:
c1:ff:8b:6d:43:bf:7e:1c:49:60:f8:08:a9:20:f2:bf:af:9c:
a6:88:b0:f2:1f:1a:4c:c4:aa:a0:66:64:5f:f9:82:67:7e:09:
4c:d7:57:3c:53:e9:5b:a2:35:58:66:f2:74:30:4b:55:15:f8:
2b:ea:52:c2:9a:fd:ee:1e:93:ab:2b:a1:a3:15:e4:ae:8c:a2:
3a:63:11:cb:a9:44:13:27:37:0f:35:70:fe:8b:a9:c1:39:71:
dd:3c:66:d7:69:07:1e:12:81:37:4f:69:5c:42:9a:2a:6f:fd:
2e:2e:e2:13:92:7a:34:25:b7:77:00:61:7e:e2:9c:2b:76:d4:
0d:e4:18:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 05:35:41 2025 by rpki-client on console.sobornost.net