Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F367CD72/0951C17ECEA511EF93B45BAD762E951A/4A4E4E98F36411EF90236562762E951A.roa
File: 4A4E4E98F36411EF90236562762E951A.roa (raw, json)
Hash identifier: wBEWNOxstUtXs1lRPFI8sqmbxPLl50bzZwGpAM/v03w=
Subject key identifier: 5E:8D:8B:81:44:B7:73:82:58:1D:A7:EF:09:83:0A:12:A4:40:F9:C9
Certificate issuer: /CN=F367CD72AF/serialNumber=7708E66F1C07C1D7670AEBDBAE186DA42BCB30C7
Certificate serial: 7D
Authority key identifier: 77:08:E6:6F:1C:07:C1:D7:67:0A:EB:DB:AE:18:6D:A4:2B:CB:30:C7
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/dwjmbxwHwddnCuvbrhhtpCvLMMc.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F367CD72/0951C17ECEA511EF93B45BAD762E951A/4A4E4E98F36411EF90236562762E951A.roa
Signing time: Tue 25 Feb 2025 10:35:54 +0000
ROA not before: Tue 25 Feb 2025 10:35:50 +0000
ROA not after: Sun 31 Dec 2028 10:35:50 +0000
asID: 30985
IP address blocks: 41.73.96.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F367CD72/0951C17ECEA511EF93B45BAD762E951A/dwjmbxwHwddnCuvbrhhtpCvLMMc.crl
rsync://rpki.afrinic.net/repository/member_repository/F367CD72/0951C17ECEA511EF93B45BAD762E951A/dwjmbxwHwddnCuvbrhhtpCvLMMc.mft
rsync://rpki.afrinic.net/repository/afrinic/dwjmbxwHwddnCuvbrhhtpCvLMMc.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 30 Apr 2025 00:06:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 125 (0x7d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F367CD72AF, serialNumber=7708E66F1C07C1D7670AEBDBAE186DA42BCB30C7
Validity
Not Before: Feb 25 10:35:50 2025 GMT
Not After : Dec 31 10:35:50 2028 GMT
Subject: CN=67bd9d0a-502f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:01:6b:39:68:84:5c:ad:c7:ff:58:94:d1:39:
e7:a0:72:a8:7e:b0:f8:74:44:27:b6:1e:6f:cb:34:
14:f4:a5:0f:b1:2f:36:89:12:fd:98:b4:c5:39:1e:
54:cd:55:25:a2:31:45:1c:82:44:7a:81:b3:5d:f7:
62:00:e4:b3:79:fe:42:e5:82:e2:90:32:f1:01:fa:
f7:82:8a:e4:7c:48:82:d6:e0:ac:ad:a1:04:c3:6b:
d9:aa:39:ac:20:26:09:78:21:f3:5f:50:b7:6c:68:
1c:ed:ce:e2:dd:8c:3c:8f:bf:d4:0a:c8:cd:bf:6c:
d2:d2:4d:90:e8:82:83:d1:88:7c:0b:cd:70:b1:f1:
c9:ad:eb:bf:7f:89:d9:bf:5b:b0:74:26:ab:b1:2b:
6e:17:df:56:5a:a2:42:7a:34:d1:2e:e7:c5:05:aa:
a1:a3:05:99:2a:ea:fe:e9:80:ba:0a:26:1f:46:4d:
7c:ef:a4:b8:47:62:c6:15:89:1c:26:75:94:1e:e4:
31:4e:ee:93:54:45:eb:4b:01:e5:60:6b:7d:37:67:
8a:a5:e6:c1:33:45:e1:11:84:da:a7:6b:bf:fd:26:
94:27:5b:c2:eb:06:0a:bc:1a:1d:3d:06:f1:e4:81:
7d:f5:d3:33:a7:3e:50:0c:fd:7f:e2:13:aa:0d:f0:
de:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:8D:8B:81:44:B7:73:82:58:1D:A7:EF:09:83:0A:12:A4:40:F9:C9
X509v3 Authority Key Identifier:
keyid:77:08:E6:6F:1C:07:C1:D7:67:0A:EB:DB:AE:18:6D:A4:2B:CB:30:C7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F367CD72/0951C17ECEA511EF93B45BAD762E951A/dwjmbxwHwddnCuvbrhhtpCvLMMc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/dwjmbxwHwddnCuvbrhhtpCvLMMc.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F367CD72/0951C17ECEA511EF93B45BAD762E951A/4A4E4E98F36411EF90236562762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.73.96.0/19
Signature Algorithm: sha256WithRSAEncryption
c7:5f:c7:42:c7:80:e5:11:d1:e2:88:d7:3a:09:80:f2:fd:47:
71:f7:44:77:07:be:1a:6c:a2:af:3c:64:ae:17:44:58:19:a3:
49:cc:18:05:87:27:71:01:87:74:c6:6c:28:bc:38:ce:61:87:
08:6b:07:76:ff:c2:cc:68:0b:d5:b1:6f:04:4d:c0:f0:96:46:
38:27:ad:29:6e:ea:18:a5:da:43:77:be:65:19:e6:88:c7:b4:
fa:1c:7b:ae:25:cb:a1:5b:c6:9b:e0:2e:cc:f0:74:a6:3b:d7:
b7:74:43:2b:6c:e9:78:6f:99:4b:f6:38:e1:33:c4:82:51:37:
d1:48:43:76:0e:b1:4b:dd:d8:aa:0c:77:1d:67:6c:69:c9:f3:
01:2d:ad:06:a4:1c:fd:3b:37:2d:f6:ee:2b:83:02:63:79:fa:
2b:38:79:03:cc:dc:f6:ce:45:96:a4:4a:7e:43:cc:ff:a1:64:
a2:27:08:0b:ce:9c:59:b2:61:f5:86:32:ba:d7:a1:cc:64:a9:
4c:62:43:bf:d5:b9:db:5f:d7:fe:b2:7b:15:0f:fe:36:39:34:
c6:b2:b5:93:b2:1f:33:af:d6:70:c4:28:6c:4c:6b:bf:c3:41:
60:0f:01:7f:83:8a:18:b7:2c:52:0c:42:73:ef:3f:79:77:05:
37:65:60:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 08:23:03 2025 by rpki-client on console.sobornost.net