Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36B3234/9E121C0C241011ECB2D06956D8A014CE/D92F01EE1ACD11F0A6BBDDEE6DB8BCC6.roa
File: D92F01EE1ACD11F0A6BBDDEE6DB8BCC6.roa (raw, json)
Hash identifier: KM4vZHuMydeShm7mK1+f8c2QL8Cmqxfflt78IiCdqOw=
Subject key identifier: C8:E4:B1:56:9C:74:79:9F:ED:B6:5B:9E:B8:25:14:AA:7E:6C:60:60
Certificate issuer: /CN=F36B3234AF/serialNumber=03FE5D726F34E93CE1A95D94518E12237AC3E2C6
Certificate serial: 059B
Authority key identifier: 03:FE:5D:72:6F:34:E9:3C:E1:A9:5D:94:51:8E:12:23:7A:C3:E2:C6
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/A_5dcm806TzhqV2UUY4SI3rD4sY.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36B3234/9E121C0C241011ECB2D06956D8A014CE/D92F01EE1ACD11F0A6BBDDEE6DB8BCC6.roa
Signing time: Wed 16 Apr 2025 14:19:47 +0000
ROA not before: Wed 16 Apr 2025 14:19:42 +0000
ROA not after: Sun 15 Apr 2035 14:19:42 +0000
asID: 37725
IP address blocks: 102.218.128.0/24 maxlen: 32
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36B3234/9E121C0C241011ECB2D06956D8A014CE/A_5dcm806TzhqV2UUY4SI3rD4sY.crl
rsync://rpki.afrinic.net/repository/member_repository/F36B3234/9E121C0C241011ECB2D06956D8A014CE/A_5dcm806TzhqV2UUY4SI3rD4sY.mft
rsync://rpki.afrinic.net/repository/afrinic/A_5dcm806TzhqV2UUY4SI3rD4sY.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 30 Apr 2025 00:06:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1435 (0x59b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36B3234AF, serialNumber=03FE5D726F34E93CE1A95D94518E12237AC3E2C6
Validity
Not Before: Apr 16 14:19:42 2025 GMT
Not After : Apr 15 14:19:42 2035 GMT
Subject: CN=67ffbc83-f042
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:2d:38:35:cd:94:4b:b5:30:38:06:49:1a:a5:
df:fa:36:84:62:3f:df:b3:40:53:bf:ac:32:7b:eb:
08:ab:8d:75:89:ca:6b:79:f8:ac:68:b0:c3:8b:e4:
12:45:e6:84:87:d3:e0:d1:06:8d:c2:b2:ae:61:76:
fb:4f:64:c9:d8:c7:64:d9:8f:01:39:79:a3:b1:ed:
ea:10:a6:81:ee:50:ec:b3:36:37:90:5b:5c:01:3c:
3a:aa:25:c1:e9:ea:88:23:a3:0a:78:55:03:c1:46:
2f:8e:d7:e6:54:a7:da:80:10:84:14:dd:25:26:4f:
d5:ab:8b:0d:52:c7:d6:46:81:45:f0:e9:a7:4f:39:
43:29:9b:46:54:9e:cc:7f:9a:64:91:d7:7d:c9:cb:
c4:c8:5e:38:71:92:1a:ba:2e:8e:f5:1c:17:15:2a:
6f:cb:da:bc:bb:07:dc:3e:4a:a2:1e:37:5c:b3:6b:
6f:b9:c6:28:0f:1b:83:dd:a9:e8:15:05:bc:3a:3c:
60:b9:38:d9:29:f8:4c:8b:6a:f5:ee:3c:94:97:9c:
d2:ad:43:2c:a1:21:29:40:10:8f:af:4f:ff:fe:f5:
07:fd:7d:c0:76:3f:a9:f2:fa:e5:6c:cc:3a:f6:17:
13:73:79:95:9c:05:7b:aa:39:16:94:43:a2:fa:6c:
ef:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:E4:B1:56:9C:74:79:9F:ED:B6:5B:9E:B8:25:14:AA:7E:6C:60:60
X509v3 Authority Key Identifier:
keyid:03:FE:5D:72:6F:34:E9:3C:E1:A9:5D:94:51:8E:12:23:7A:C3:E2:C6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36B3234/9E121C0C241011ECB2D06956D8A014CE/A_5dcm806TzhqV2UUY4SI3rD4sY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/A_5dcm806TzhqV2UUY4SI3rD4sY.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36B3234/9E121C0C241011ECB2D06956D8A014CE/D92F01EE1ACD11F0A6BBDDEE6DB8BCC6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.218.128.0/24
Signature Algorithm: sha256WithRSAEncryption
0d:a8:a1:2c:19:cc:4a:3f:ab:3a:07:52:b5:08:e0:84:7b:69:
ac:69:be:4b:87:4b:8a:e8:a8:16:b6:78:79:82:b8:b3:9c:f2:
2f:9b:fd:69:bd:9e:cc:3a:ac:02:90:77:16:01:05:4b:4b:f8:
22:bb:73:bc:8e:06:11:a0:fa:22:2b:06:9f:14:84:e0:a4:79:
c0:24:bb:6f:3a:de:23:ca:9b:c5:11:84:2e:4d:97:89:6d:31:
89:13:bf:22:10:3b:94:3f:96:07:23:68:10:45:35:2e:c1:36:
25:6a:7f:6c:3e:83:b3:62:45:22:86:63:1c:44:e4:10:7c:7f:
eb:6b:49:c0:b3:af:22:c4:db:27:15:6a:32:42:f4:a6:b2:4d:
aa:45:1f:d4:bd:dc:bd:9d:20:60:e1:8f:8f:3e:71:7b:5f:f0:
7c:0e:3a:02:4a:b5:27:01:1d:b0:7c:d9:5f:fa:cd:18:c2:22:
80:ec:ef:a4:3b:92:30:42:d4:0a:47:4c:e8:cb:ee:8e:8a:42:
01:a1:5b:08:78:2c:1d:fc:21:74:57:2a:c5:12:0f:16:dc:55:
88:f9:9d:40:d3:6b:8e:66:0a:9a:d0:7d:12:d7:24:2e:f1:f4:
aa:31:37:2c:61:59:57:d1:3e:0e:e7:dc:aa:27:6b:bf:76:30:
f5:73:67:40
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICBZswDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
QjMyMzRBRjExMC8GA1UEBRMoMDNGRTVENzI2RjM0RTkzQ0UxQTk1RDk0NTE4RTEy
MjM3QUMzRTJDNjAeFw0yNTA0MTYxNDE5NDJaFw0zNTA0MTUxNDE5NDJaMBgxFjAU
BgNVBAMTDTY3ZmZiYzgzLWYwNDIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDXLTg1zZRLtTA4Bkkapd/6NoRiP9+zQFO/rDJ76wirjXWJymt5+KxosMOL
5BJF5oSH0+DRBo3Csq5hdvtPZMnYx2TZjwE5eaOx7eoQpoHuUOyzNjeQW1wBPDqq
JcHp6ogjowp4VQPBRi+O1+ZUp9qAEIQU3SUmT9Wriw1Sx9ZGgUXw6adPOUMpm0ZU
nsx/mmSR133Jy8TIXjhxkhq6Lo71HBcVKm/L2ry7B9w+SqIeN1yza2+5xigPG4Pd
qegVBbw6PGC5ONkp+EyLavXuPJSXnNKtQyyhISlAEI+vT//+9Qf9fcB2P6ny+uVs
zDr2FxNzeZWcBXuqORaUQ6L6bO/9AgMBAAGjggKlMIICoTAdBgNVHQ4EFgQUyOSx
Vpx0eZ/ttlueuCUUqn5sYGAwHwYDVR0jBBgwFoAUA/5dcm806TzhqV2UUY4SI3rD
4sYwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNkIzMjM0LzlFMTIxQzBDMjQxMDExRUNCMkQwNjk1NkQ4QTAxNENFL0FfNWRj
bTgwNlR6aHFWMlVVWTRTSTNyRDRzWS5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL0FfNWRjbTgwNlR6aHFWMlVVWTRTSTNyRDRzWS5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNkIzMjM0LzlFMTIxQzBDMjQxMDExRUNCMkQwNjk1NkQ4
QTAxNENFL0Q5MkYwMUVFMUFDRDExRjBBNkJCRERFRTZEQjhCQ0M2LnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABm2oAwDQYJKoZIhvcNAQEL
BQADggEBAA2ooSwZzEo/qzoHUrUI4IR7aaxpvkuHS4roqBa2eHmCuLOc8i+b/Wm9
nsw6rAKQdxYBBUtL+CK7c7yOBhGg+iIrBp8UhOCkecAku2863iPKm8URhC5Nl4lt
MYkTvyIQO5Q/lgcjaBBFNS7BNiVqf2w+g7NiRSKGYxxE5BB8f+trScCzryLE2ycV
ajJC9KayTapFH9S93L2dIGDhj48+cXtf8HwOOgJKtScBHbB82V/6zRjCIoDs76Q7
kjBC1ApHTOjL7o6KQgGhWwh4LB38IXRXKsUSDxbcVYj5nUDTa45mCprQfRLXJC7x
9KoxNyxhWVfRPg7n3Kona792MPVzZ0A=
-----END CERTIFICATE-----
Generated at Mon Apr 28 06:06:19 2025 by rpki-client on console.sobornost.net