Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36580B0/24B7AD5841CE11EEB62278114AD9E6FC/1C32F8941A4511F0A5CA51D56DB8BCC6.roa
File: 1C32F8941A4511F0A5CA51D56DB8BCC6.roa (raw, json)
Hash identifier: KQ8ojeNuY+CC6+HeJZiLg2NTwLb/0OvPStW386IgOFQ=
Subject key identifier: 9E:F4:C0:A7:71:D2:90:06:FA:A4:3A:CA:72:31:33:1D:28:A9:15:0D
Certificate issuer: /CN=F36580B0AF/serialNumber=8361D5A6D0F3D49C6760C0EA686C67C4149DD6DF
Certificate serial: 0277
Authority key identifier: 83:61:D5:A6:D0:F3:D4:9C:67:60:C0:EA:68:6C:67:C4:14:9D:D6:DF
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/g2HVptDz1JxnYMDqaGxnxBSd1t8.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36580B0/24B7AD5841CE11EEB62278114AD9E6FC/1C32F8941A4511F0A5CA51D56DB8BCC6.roa
Signing time: Tue 15 Apr 2025 22:00:58 +0000
ROA not before: Tue 15 Apr 2025 22:00:53 +0000
ROA not after: Mon 30 Apr 2035 22:00:53 +0000
asID: 327992
IP address blocks: 102.207.4.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36580B0/24B7AD5841CE11EEB62278114AD9E6FC/g2HVptDz1JxnYMDqaGxnxBSd1t8.crl
rsync://rpki.afrinic.net/repository/member_repository/F36580B0/24B7AD5841CE11EEB62278114AD9E6FC/g2HVptDz1JxnYMDqaGxnxBSd1t8.mft
rsync://rpki.afrinic.net/repository/afrinic/g2HVptDz1JxnYMDqaGxnxBSd1t8.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 28 Apr 2025 00:08:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 631 (0x277)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36580B0AF, serialNumber=8361D5A6D0F3D49C6760C0EA686C67C4149DD6DF
Validity
Not Before: Apr 15 22:00:53 2025 GMT
Not After : Apr 30 22:00:53 2035 GMT
Subject: CN=67fed71a-bc9b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:e5:87:a6:c1:2e:98:3e:ff:08:9c:b8:15:7f:
df:1e:40:e7:a9:55:0f:cd:ae:d3:6e:1a:5c:54:58:
2a:b7:cf:02:55:09:2c:5b:08:12:e3:36:e2:4c:68:
de:59:66:ac:da:3a:3a:df:90:55:2a:bb:a2:0d:c2:
88:2b:21:6b:94:a0:fa:92:51:94:b7:fe:5c:9e:f2:
96:43:16:f1:d6:e0:86:73:17:d2:44:2c:64:a7:d8:
46:97:73:51:57:58:9f:a6:ba:de:c7:97:47:46:31:
06:3e:57:2c:33:36:3f:4d:0c:56:c2:7d:13:83:13:
21:b6:a1:3b:02:8a:9e:b0:ef:d6:cd:ff:57:96:08:
a6:9d:3c:45:03:e4:a1:ed:1d:84:7d:f8:ba:98:51:
31:8c:e8:0b:18:53:35:cf:15:a8:75:a8:1f:68:77:
3d:35:6d:bf:7c:91:d9:1a:4d:ce:01:8f:46:8a:c4:
07:ef:88:89:85:85:48:fa:3c:6e:f1:d5:60:d0:82:
d5:fd:ec:34:a8:35:13:5a:c4:02:48:12:13:18:f3:
f4:43:f6:9c:08:93:e8:07:b7:da:df:dc:37:81:d4:
8c:5e:47:92:60:78:a9:75:a7:2d:4c:9a:97:17:06:
c3:af:62:e9:86:3f:fb:72:1c:21:e6:2a:50:98:23:
3d:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:F4:C0:A7:71:D2:90:06:FA:A4:3A:CA:72:31:33:1D:28:A9:15:0D
X509v3 Authority Key Identifier:
keyid:83:61:D5:A6:D0:F3:D4:9C:67:60:C0:EA:68:6C:67:C4:14:9D:D6:DF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36580B0/24B7AD5841CE11EEB62278114AD9E6FC/g2HVptDz1JxnYMDqaGxnxBSd1t8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/g2HVptDz1JxnYMDqaGxnxBSd1t8.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36580B0/24B7AD5841CE11EEB62278114AD9E6FC/1C32F8941A4511F0A5CA51D56DB8BCC6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.207.4.0/22
Signature Algorithm: sha256WithRSAEncryption
8a:d9:de:6b:19:c8:0e:3d:2e:15:85:25:9e:1b:e6:16:70:9e:
19:27:87:23:73:22:d2:90:25:31:8e:46:aa:a6:57:b9:26:1d:
3c:f2:26:57:1d:6b:e9:5f:7f:b2:97:a4:1e:75:ec:98:98:f9:
6e:1b:71:1a:21:0d:75:65:5b:14:19:f9:51:4f:97:43:c4:94:
e8:8e:bc:a4:13:0a:0f:af:27:a9:f2:1f:37:de:87:fe:e2:1c:
7d:ed:32:59:59:c8:20:83:7b:21:0e:27:77:7f:f2:69:70:92:
16:be:67:9c:29:63:0e:1a:64:8a:c1:4b:1b:0b:48:03:69:56:
c7:83:05:5d:da:30:d5:22:d9:40:70:cf:26:15:5e:aa:0a:2f:
c1:92:de:bb:9b:c4:9f:b6:74:73:c7:fb:8f:b6:cd:eb:0e:62:
66:ae:b6:8e:33:59:4f:99:32:6a:7a:6d:a5:af:35:03:fc:05:
dd:94:c2:81:ae:22:e6:73:2f:2e:7d:bf:fa:98:0e:56:c5:02:
d5:ef:2e:56:c0:ec:ff:1c:75:7a:ce:5b:dd:2d:fa:34:2c:76:
31:c0:f8:83:54:a5:b5:ca:78:44:d2:65:fd:5e:51:e5:37:59:
58:b5:51:ac:ad:bc:6c:70:c9:d1:95:4d:9c:8e:c6:2e:a3:98:
00:15:47:98
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICAncwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
NTgwQjBBRjExMC8GA1UEBRMoODM2MUQ1QTZEMEYzRDQ5QzY3NjBDMEVBNjg2QzY3
QzQxNDlERDZERjAeFw0yNTA0MTUyMjAwNTNaFw0zNTA0MzAyMjAwNTNaMBgxFjAU
BgNVBAMTDTY3ZmVkNzFhLWJjOWIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQC+5YemwS6YPv8InLgVf98eQOepVQ/NrtNuGlxUWCq3zwJVCSxbCBLjNuJM
aN5ZZqzaOjrfkFUqu6INwogrIWuUoPqSUZS3/lye8pZDFvHW4IZzF9JELGSn2EaX
c1FXWJ+mut7Hl0dGMQY+VywzNj9NDFbCfRODEyG2oTsCip6w79bN/1eWCKadPEUD
5KHtHYR9+LqYUTGM6AsYUzXPFah1qB9odz01bb98kdkaTc4Bj0aKxAfviImFhUj6
PG7x1WDQgtX97DSoNRNaxAJIEhMY8/RD9pwIk+gHt9rf3DeB1IxeR5JgeKl1py1M
mpcXBsOvYumGP/tyHCHmKlCYIz3VAgMBAAGjggKlMIICoTAdBgNVHQ4EFgQUnvTA
p3HSkAb6pDrKcjEzHSipFQ0wHwYDVR0jBBgwFoAUg2HVptDz1JxnYMDqaGxnxBSd
1t8wDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjU4MEIwLzI0QjdBRDU4NDFDRTExRUVCNjIyNzgxMTRBRDlFNkZDL2cySFZw
dER6MUp4bllNRHFhR3hueEJTZDF0OC5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL2cySFZwdER6MUp4bllNRHFhR3hueEJTZDF0OC5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjU4MEIwLzI0QjdBRDU4NDFDRTExRUVCNjIyNzgxMTRB
RDlFNkZDLzFDMzJGODk0MUE0NTExRjBBNUNBNTFENTZEQjhCQ0M2LnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJmzwQwDQYJKoZIhvcNAQEL
BQADggEBAIrZ3msZyA49LhWFJZ4b5hZwnhknhyNzItKQJTGORqqmV7kmHTzyJlcd
a+lff7KXpB517JiY+W4bcRohDXVlWxQZ+VFPl0PElOiOvKQTCg+vJ6nyHzfeh/7i
HH3tMllZyCCDeyEOJ3d/8mlwkha+Z5wpYw4aZIrBSxsLSANpVseDBV3aMNUi2UBw
zyYVXqoKL8GS3rubxJ+2dHPH+4+2zesOYmauto4zWU+ZMmp6baWvNQP8Bd2UwoGu
IuZzLy59v/qYDlbFAtXvLlbA7P8cdXrOW90t+jQsdjHA+INUpbXKeETSZf1eUeU3
WVi1UaytvGxwydGVTZyOxi6jmAAVR5g=
-----END CERTIFICATE-----
Generated at Sat Apr 26 06:17:10 2025 by rpki-client on console.sobornost.net