Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F369A67F/DABFABF60FC111F09ECD7C73762E951A/F22AD7220FD311F08E64955F762E951A.roa
File: F22AD7220FD311F08E64955F762E951A.roa (raw, json)
Hash identifier: 1ogyRq61nFkep8Rj3wCMP1Wk+e6p2Z0WHHRkZHEIT+E=
Subject key identifier: DA:0E:38:04:EF:73:EA:EA:70:B6:15:3E:66:1F:9C:7D:3B:13:52:34
Certificate issuer: /CN=F369A67FAF/serialNumber=27A81B05CA4AF511C78632BB55B94FAEF471C8E5
Certificate serial: 06
Authority key identifier: 27:A8:1B:05:CA:4A:F5:11:C7:86:32:BB:55:B9:4F:AE:F4:71:C8:E5
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/J6gbBcpK9RHHhjK7VblPrvRxyOU.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F369A67F/DABFABF60FC111F09ECD7C73762E951A/F22AD7220FD311F08E64955F762E951A.roa
Signing time: Wed 02 Apr 2025 15:05:42 +0000
ROA not before: Wed 02 Apr 2025 15:05:38 +0000
ROA not after: Mon 01 Apr 2030 15:05:38 +0000
asID: 328713
IP address blocks: 102.221.252.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F369A67F/DABFABF60FC111F09ECD7C73762E951A/J6gbBcpK9RHHhjK7VblPrvRxyOU.crl
rsync://rpki.afrinic.net/repository/member_repository/F369A67F/DABFABF60FC111F09ECD7C73762E951A/J6gbBcpK9RHHhjK7VblPrvRxyOU.mft
rsync://rpki.afrinic.net/repository/afrinic/J6gbBcpK9RHHhjK7VblPrvRxyOU.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 27 Apr 2025 00:06:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6 (0x6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F369A67FAF, serialNumber=27A81B05CA4AF511C78632BB55B94FAEF471C8E5
Validity
Not Before: Apr 2 15:05:38 2025 GMT
Not After : Apr 1 15:05:38 2030 GMT
Subject: CN=67ed5246-c51d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:02:04:f2:ae:29:ee:84:48:75:93:de:a3:2f:
e7:3d:51:e3:09:58:b5:0f:01:40:0b:e3:6c:3b:0b:
14:ee:45:79:c5:7e:d6:e6:4c:91:7e:28:07:1c:26:
8a:19:53:2a:0c:e0:37:15:f3:1b:f3:92:91:31:92:
b5:30:92:5d:60:8e:6d:27:57:62:84:be:63:21:d6:
df:b5:ed:f8:fa:2f:31:1d:46:67:fd:35:24:a6:4f:
2d:92:5c:d5:64:96:81:e8:ba:29:93:a8:7a:30:fc:
eb:3c:31:3c:e8:71:74:b5:9f:81:8b:58:45:70:11:
b3:6a:16:3a:4e:b2:71:95:65:7c:c2:fb:c1:e3:09:
3b:4c:54:26:34:c4:04:23:52:38:da:51:2c:b1:5f:
31:29:a3:13:99:20:13:0c:50:9d:b7:79:5e:3d:ad:
dc:33:22:14:fd:7f:8d:1a:df:15:43:2e:de:6c:96:
8b:31:9a:2d:98:36:7e:53:18:79:70:69:23:6d:fe:
95:e5:43:ed:59:d5:1e:c7:4a:91:bd:d3:61:ca:36:
20:8d:54:a0:d7:d8:74:f1:51:7b:e1:26:bc:46:28:
c4:b9:48:b9:c6:f9:b3:54:de:b4:46:bc:24:f4:4c:
58:46:72:db:28:aa:e4:98:71:b7:c0:73:8d:0d:15:
41:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:0E:38:04:EF:73:EA:EA:70:B6:15:3E:66:1F:9C:7D:3B:13:52:34
X509v3 Authority Key Identifier:
keyid:27:A8:1B:05:CA:4A:F5:11:C7:86:32:BB:55:B9:4F:AE:F4:71:C8:E5
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F369A67F/DABFABF60FC111F09ECD7C73762E951A/J6gbBcpK9RHHhjK7VblPrvRxyOU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/J6gbBcpK9RHHhjK7VblPrvRxyOU.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F369A67F/DABFABF60FC111F09ECD7C73762E951A/F22AD7220FD311F08E64955F762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.221.252.0/22
Signature Algorithm: sha256WithRSAEncryption
13:74:81:74:bd:4e:32:51:90:f6:42:11:2f:4c:d9:b0:61:38:
ff:75:11:f5:3d:2c:4d:67:79:a5:21:9b:56:bd:3f:d9:e2:6d:
3d:20:f8:30:b5:6d:25:10:58:4a:7b:8b:ac:1a:b7:fb:75:c5:
b5:17:c8:41:14:a1:65:93:24:fd:5e:5a:75:f1:06:00:56:5b:
25:81:dd:1c:ff:67:cd:f1:88:9b:70:ca:5b:60:ee:14:33:99:
95:f0:26:31:9b:ad:a3:b8:48:dc:ac:93:8e:7d:7e:d8:c1:be:
b9:7e:e7:17:9c:01:90:ac:ce:9a:fb:b9:48:b8:a0:ac:27:91:
c6:a0:88:2e:c0:a6:4f:4f:d8:05:16:5b:94:ab:0f:a1:93:e0:
34:6a:03:a5:4c:51:22:3c:cf:28:87:43:73:01:d3:d4:b1:85:
af:fe:3e:b5:d7:fd:7b:e3:25:13:b3:10:36:f7:16:39:28:5c:
1c:78:4f:ff:83:01:39:73:8d:af:98:35:30:a0:15:a4:88:51:
78:e9:cc:14:dc:bc:98:33:f9:1e:ac:cb:c0:db:65:a6:3d:0d:
05:92:b9:7d:fa:89:2d:c1:57:54:04:34:6b:f4:68:cf:fc:01:
3a:87:da:5f:c9:4e:64:1c:56:18:2b:1c:de:4f:fa:47:35:7b:
8c:bc:b0:b0
-----BEGIN CERTIFICATE-----
MIIFgjCCBGqgAwIBAgIBBjANBgkqhkiG9w0BAQsFADBIMRMwEQYDVQQDEwpGMzY5
QTY3RkFGMTEwLwYDVQQFEygyN0E4MUIwNUNBNEFGNTExQzc4NjMyQkI1NUI5NEZB
RUY0NzFDOEU1MB4XDTI1MDQwMjE1MDUzOFoXDTMwMDQwMTE1MDUzOFowGDEWMBQG
A1UEAxMNNjdlZDUyNDYtYzUxZDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBALwCBPKuKe6ESHWT3qMv5z1R4wlYtQ8BQAvjbDsLFO5FecV+1uZMkX4oBxwm
ihlTKgzgNxXzG/OSkTGStTCSXWCObSdXYoS+YyHW37Xt+PovMR1GZ/01JKZPLZJc
1WSWgei6KZOoejD86zwxPOhxdLWfgYtYRXARs2oWOk6ycZVlfML7weMJO0xUJjTE
BCNSONpRLLFfMSmjE5kgEwxQnbd5Xj2t3DMiFP1/jRrfFUMu3myWizGaLZg2flMY
eXBpI23+leVD7VnVHsdKkb3TYco2II1UoNfYdPFRe+EmvEYoxLlIucb5s1TetEa8
JPRMWEZy2yiq5Jhxt8BzjQ0VQfECAwEAAaOCAqUwggKhMB0GA1UdDgQWBBTaDjgE
73Pq6nC2FT5mH5x9OxNSNDAfBgNVHSMEGDAWgBQnqBsFykr1EceGMrtVuU+u9HHI
5TAOBgNVHQ8BAf8EBAMCB4AwgZUGA1UdHwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6
Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVyX3JlcG9zaXRvcnkv
RjM2OUE2N0YvREFCRkFCRjYwRkMxMTFGMDlFQ0Q3QzczNzYyRTk1MUEvSjZnYkJj
cEs5UkhIaGpLN1ZibFBydlJ4eU9VLmNybDBnBggrBgEFBQcBAQRbMFkwVwYIKwYB
BQUHMAKGS3JzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L2Fmcmlu
aWMvSjZnYkJjcEs5UkhIaGpLN1ZibFBydlJ4eU9VLmNlcjBPBgNVHSABAf8ERTBD
MEEGCCsGAQUFBw4CMDUwMwYIKwYBBQUHAgEWJ2h0dHBzOi8vcnBraS5hZnJpbmlj
Lm5ldC9wb2xpY3kvQ1BTLnBkZjCB2wYIKwYBBQUHAQsEgc4wgcswgZEGCCsGAQUF
BzALhoGEcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVy
X3JlcG9zaXRvcnkvRjM2OUE2N0YvREFCRkFCRjYwRkMxMTFGMDlFQ0Q3QzczNzYy
RTk1MUEvRjIyQUQ3MjIwRkQzMTFGMDhFNjQ5NTVGNzYyRTk1MUEucm9hMDUGCCsG
AQUFBzANhilodHRwczovL3JyZHAuYWZyaW5pYy5uZXQvbm90aWZpY2F0aW9uLnht
bDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAmbd/DANBgkqhkiG9w0BAQsF
AAOCAQEAE3SBdL1OMlGQ9kIRL0zZsGE4/3UR9T0sTWd5pSGbVr0/2eJtPSD4MLVt
JRBYSnuLrBq3+3XFtRfIQRShZZMk/V5adfEGAFZbJYHdHP9nzfGIm3DKW2DuFDOZ
lfAmMZuto7hI3KyTjn1+2MG+uX7nF5wBkKzOmvu5SLigrCeRxqCILsCmT0/YBRZb
lKsPoZPgNGoDpUxRIjzPKIdDcwHT1LGFr/4+tdf9e+MlE7MQNvcWOShcHHhP/4MB
OXONr5g1MKAVpIhReOnMFNy8mDP5HqzLwNtlpj0NBZK5ffqJLcFXVAQ0a/Roz/wB
OofaX8lOZBxWGCsc3k/6RzV7jLywsA==
-----END CERTIFICATE-----
Generated at Fri Apr 25 08:23:28 2025 by rpki-client on console.sobornost.net