Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/02D902C415EC11F083CC57D06DB8BCC6.roa
File: 02D902C415EC11F083CC57D06DB8BCC6.roa (raw, json)
Hash identifier: r21FEkY0z3jCq++Kr5/4f3toqijAYsNiCbuVDr7iy5A=
Subject key identifier: AC:03:64:B2:5C:3A:9A:CA:EB:3E:F1:5B:41:7F:23:C0:B7:AA:C9:7C
Certificate issuer: /CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Certificate serial: 1442
Authority key identifier: 48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/02D902C415EC11F083CC57D06DB8BCC6.roa
Signing time: Thu 10 Apr 2025 09:13:05 +0000
ROA not before: Thu 10 Apr 2025 09:13:01 +0000
ROA not after: Sat 10 Apr 2027 09:13:01 +0000
asID: 174
IP address blocks: 102.129.145.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.mft
rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 27 Apr 2025 00:06:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5186 (0x1442)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36C58D6AF, serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Validity
Not Before: Apr 10 09:13:01 2025 GMT
Not After : Apr 10 09:13:01 2027 GMT
Subject: CN=67f78ba1-a091
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:64:3e:f1:12:17:17:05:be:16:ed:fe:b6:a8:
3a:fa:bd:8e:39:84:74:02:ab:04:75:a4:b8:f1:24:
71:11:39:83:bc:2b:b3:70:55:0c:63:67:a2:22:f3:
93:f0:b5:70:57:b6:46:c8:09:98:17:50:2c:ea:76:
16:1a:15:fb:c7:29:37:13:84:74:02:a4:81:9b:bd:
e0:91:a0:60:b5:1c:44:0f:e2:43:c1:50:fe:4f:49:
8d:a7:b9:4d:ba:b4:87:cd:d4:6c:00:e9:cf:1d:1b:
d2:9c:a2:26:df:3c:3c:df:7c:b5:c3:31:29:85:b5:
98:14:f1:58:c0:32:29:fe:eb:fb:8b:9e:28:f1:0f:
81:4f:f7:e0:a4:1e:b2:4d:f6:db:d6:c7:c1:9b:3f:
06:14:02:d3:8a:31:e0:42:66:a8:89:16:da:bd:7e:
25:03:6a:61:45:86:6f:43:cb:46:b4:b7:45:72:f8:
fa:13:82:d9:a2:0c:56:b1:24:55:f7:ce:1f:ae:1b:
dd:11:8b:42:54:f2:d1:52:6b:10:8c:ad:5a:95:d5:
03:a5:db:c5:66:f4:20:70:87:04:00:8d:6e:9c:f4:
83:05:81:be:0b:be:cb:6a:73:bf:5e:f2:54:d7:cc:
d2:89:b2:b4:5f:34:23:b3:4f:9d:76:6e:fe:23:e8:
d2:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:03:64:B2:5C:3A:9A:CA:EB:3E:F1:5B:41:7F:23:C0:B7:AA:C9:7C
X509v3 Authority Key Identifier:
keyid:48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/02D902C415EC11F083CC57D06DB8BCC6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.129.145.0/24
Signature Algorithm: sha256WithRSAEncryption
a9:78:97:74:f9:75:0d:97:2a:d3:dd:66:34:64:68:48:13:56:
36:1d:17:e2:95:12:64:bc:10:73:25:29:e6:75:a3:59:d0:c3:
14:82:7b:5f:78:11:03:34:48:59:5e:d8:5d:7d:25:ed:ea:74:
53:2d:af:b4:d2:73:34:07:84:37:8b:a3:59:c7:54:44:48:f0:
05:96:8c:e3:15:84:f0:87:04:db:0f:1e:25:43:c5:98:57:97:
20:d8:82:4a:ec:dd:a6:9b:22:a1:d7:fc:33:d9:28:41:d3:39:
09:a5:ee:91:c5:67:15:15:bd:27:e7:41:fa:3c:f3:b8:e1:5c:
8c:cc:65:3a:d4:0d:6b:20:b5:d8:74:b1:e1:7d:2f:6d:a8:6b:
2f:42:32:eb:2e:b9:8b:db:9b:28:ed:cb:29:c3:23:16:ad:4c:
8b:8d:c0:12:8a:ce:fb:b8:0f:ee:35:6c:21:c7:70:82:8e:2d:
60:53:65:ff:02:2f:87:ed:48:4c:b7:4a:02:d1:43:8b:52:1b:
57:25:c2:74:a3:d2:61:ee:c8:37:38:02:89:c1:be:2f:7a:ab:
2a:76:78:70:9c:02:22:64:82:21:dd:35:60:6a:1e:61:6e:2d:
e5:0c:80:4e:f6:3e:0d:dc:89:8c:bb:89:c6:1a:e5:45:20:f5:
80:80:40:cf
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICFEIwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
QzU4RDZBRjExMC8GA1UEBRMoNDhBMkYyQzRBQTRBRUEzOUJFNDZCRkU1Rjk5Qzky
NjI5QkJFRDhGQzAeFw0yNTA0MTAwOTEzMDFaFw0yNzA0MTAwOTEzMDFaMBgxFjAU
BgNVBAMTDTY3Zjc4YmExLWEwOTEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDAZD7xEhcXBb4W7f62qDr6vY45hHQCqwR1pLjxJHEROYO8K7NwVQxjZ6Ii
85PwtXBXtkbICZgXUCzqdhYaFfvHKTcThHQCpIGbveCRoGC1HEQP4kPBUP5PSY2n
uU26tIfN1GwA6c8dG9KcoibfPDzffLXDMSmFtZgU8VjAMin+6/uLnijxD4FP9+Ck
HrJN9tvWx8GbPwYUAtOKMeBCZqiJFtq9fiUDamFFhm9Dy0a0t0Vy+PoTgtmiDFax
JFX3zh+uG90Ri0JU8tFSaxCMrVqV1QOl28Vm9CBwhwQAjW6c9IMFgb4Lvstqc79e
8lTXzNKJsrRfNCOzT512bv4j6NLHAgMBAAGjggKlMIICoTAdBgNVHQ4EFgQUrANk
slw6msrrPvFbQX8jwLeqyXwwHwYDVR0jBBgwFoAUSKLyxKpK6jm+Rr/l+ZySYpu+
2PwwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNkM1OEQ2L0Q2OUE0REZFNzMxNjExRTk5MTMzMDM3Q0Y4QUVBMjI4L1NLTHl4
S3BLNmptLVJyX2wtWnlTWXB1LTJQdy5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL1NLTHl4S3BLNmptLVJyX2wtWnlTWXB1LTJQdy5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNkM1OEQ2L0Q2OUE0REZFNzMxNjExRTk5MTMzMDM3Q0Y4
QUVBMjI4LzAyRDkwMkM0MTVFQzExRjA4M0NDNTdEMDZEQjhCQ0M2LnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABmgZEwDQYJKoZIhvcNAQEL
BQADggEBAKl4l3T5dQ2XKtPdZjRkaEgTVjYdF+KVEmS8EHMlKeZ1o1nQwxSCe194
EQM0SFle2F19Je3qdFMtr7TSczQHhDeLo1nHVERI8AWWjOMVhPCHBNsPHiVDxZhX
lyDYgkrs3aabIqHX/DPZKEHTOQml7pHFZxUVvSfnQfo887jhXIzMZTrUDWsgtdh0
seF9L22oay9CMusuuYvbmyjtyynDIxatTIuNwBKKzvu4D+41bCHHcIKOLWBTZf8C
L4ftSEy3SgLRQ4tSG1clwnSj0mHuyDc4AonBvi96qyp2eHCcAiJkgiHdNWBqHmFu
LeUMgE72Pg3ciYy7icYa5UUg9YCAQM8=
-----END CERTIFICATE-----
Generated at Fri Apr 25 06:08:10 2025 by rpki-client on console.sobornost.net