Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/0CF92BEE15EC11F08B4F5CD06DB8BCC6.roa
File: 0CF92BEE15EC11F08B4F5CD06DB8BCC6.roa (raw, json)
Hash identifier: tumwIXOWBkHLeIdT5128ntH0Xp6KFC+qqn6a8SP6u9A=
Subject key identifier: 41:34:68:A9:D4:6A:02:88:CD:BB:6F:E1:D6:BC:1E:40:F4:8D:DF:4E
Certificate issuer: /CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Certificate serial: 1444
Authority key identifier: 48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/0CF92BEE15EC11F08B4F5CD06DB8BCC6.roa
Signing time: Thu 10 Apr 2025 09:13:22 +0000
ROA not before: Thu 10 Apr 2025 09:13:19 +0000
ROA not after: Sat 10 Apr 2027 09:13:19 +0000
asID: 174
IP address blocks: 102.129.152.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.mft
rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 28 Apr 2025 00:08:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5188 (0x1444)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36C58D6AF, serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Validity
Not Before: Apr 10 09:13:19 2025 GMT
Not After : Apr 10 09:13:19 2027 GMT
Subject: CN=67f78bb2-c863
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:6f:3b:05:15:3b:b1:be:ef:9e:4f:a6:47:68:
74:38:bd:de:89:3c:30:db:d6:71:89:45:5e:b8:eb:
d5:50:a2:36:28:1a:5d:ec:ac:06:9c:63:73:8d:e2:
3e:df:ec:b0:89:8c:59:04:9d:ac:a5:9a:54:fc:9c:
74:02:4f:98:53:45:03:a9:0d:56:c0:58:a3:4f:3c:
79:b4:2c:f7:2f:b0:bb:4a:23:6d:6d:36:92:70:37:
ea:ce:c1:47:23:02:09:4a:45:4c:95:12:12:a9:21:
6b:5e:0a:4a:86:1a:88:50:b3:e2:59:9f:ed:9e:ae:
4e:f8:dc:d3:e4:01:3c:9c:dd:25:1d:d3:17:88:30:
63:b4:2e:cc:7b:fa:3b:29:dd:1a:70:dd:70:96:fe:
ef:5b:55:b5:92:e0:1c:0d:35:fe:7a:25:37:77:fa:
4f:73:c5:4b:8c:c0:f5:d3:27:ff:7f:db:12:1e:3d:
d8:86:b3:e2:87:57:db:54:f3:48:eb:9c:2a:99:11:
10:95:db:cd:83:9d:26:34:31:e7:60:7d:06:e8:84:
53:43:f4:c2:d8:99:57:87:6f:ed:d1:9c:ea:3f:75:
b4:fd:5f:65:88:50:31:59:04:91:b3:c5:b4:34:0e:
26:6c:23:dd:9e:86:16:72:d4:1a:d1:c4:b3:6f:e1:
c0:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:34:68:A9:D4:6A:02:88:CD:BB:6F:E1:D6:BC:1E:40:F4:8D:DF:4E
X509v3 Authority Key Identifier:
keyid:48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/0CF92BEE15EC11F08B4F5CD06DB8BCC6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.129.152.0/24
Signature Algorithm: sha256WithRSAEncryption
66:e2:44:18:af:f7:00:c0:4b:9f:f8:19:bd:5e:3e:e2:aa:58:
df:11:76:ad:3b:79:d1:cf:dd:e0:e8:12:9c:30:56:03:76:c7:
26:6e:cd:55:ff:a1:6e:a0:5f:fb:76:5a:bf:9e:ff:91:c0:8f:
91:62:60:e4:a1:eb:9c:7d:38:57:8c:67:d7:d1:2e:16:e4:d0:
05:54:e2:0a:9f:a2:11:73:f5:6d:d2:bb:f9:ed:76:44:ef:bc:
ec:a1:32:cd:82:3a:91:77:fc:ef:3d:a0:46:ee:38:70:69:91:
5a:51:f9:4e:d3:c3:9e:fc:74:30:37:f6:c3:98:5c:93:6a:37:
b2:4d:27:d2:1c:59:c0:e8:9f:06:58:41:c1:93:62:aa:d3:4e:
b8:12:ab:42:83:06:09:f5:5f:46:71:67:11:dd:01:90:13:b6:
2b:ba:0c:60:62:f6:b1:c4:d9:38:2b:51:e8:97:82:ac:33:8d:
e3:5c:10:f9:36:91:89:cf:82:e4:fd:2e:0b:9c:4e:00:b1:7e:
e0:07:77:c9:8d:03:1e:45:0b:e2:e7:0d:aa:db:21:24:e4:f2:
42:ea:1d:ab:f2:c5:49:11:8a:b3:ff:5d:44:e1:d5:88:ac:ef:
de:4b:b0:13:32:6b:c0:2f:e5:c9:07:07:82:2b:1b:6e:05:d1:
3b:1b:0a:06
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICFEQwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
QzU4RDZBRjExMC8GA1UEBRMoNDhBMkYyQzRBQTRBRUEzOUJFNDZCRkU1Rjk5Qzky
NjI5QkJFRDhGQzAeFw0yNTA0MTAwOTEzMTlaFw0yNzA0MTAwOTEzMTlaMBgxFjAU
BgNVBAMTDTY3Zjc4YmIyLWM4NjMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDabzsFFTuxvu+eT6ZHaHQ4vd6JPDDb1nGJRV6469VQojYoGl3srAacY3ON
4j7f7LCJjFkEnaylmlT8nHQCT5hTRQOpDVbAWKNPPHm0LPcvsLtKI21tNpJwN+rO
wUcjAglKRUyVEhKpIWteCkqGGohQs+JZn+2erk743NPkATyc3SUd0xeIMGO0Lsx7
+jsp3Rpw3XCW/u9bVbWS4BwNNf56JTd3+k9zxUuMwPXTJ/9/2xIePdiGs+KHV9tU
80jrnCqZERCV282DnSY0MedgfQbohFND9MLYmVeHb+3RnOo/dbT9X2WIUDFZBJGz
xbQ0DiZsI92ehhZy1BrRxLNv4cB9AgMBAAGjggKlMIICoTAdBgNVHQ4EFgQUQTRo
qdRqAojNu2/h1rweQPSN304wHwYDVR0jBBgwFoAUSKLyxKpK6jm+Rr/l+ZySYpu+
2PwwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNkM1OEQ2L0Q2OUE0REZFNzMxNjExRTk5MTMzMDM3Q0Y4QUVBMjI4L1NLTHl4
S3BLNmptLVJyX2wtWnlTWXB1LTJQdy5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL1NLTHl4S3BLNmptLVJyX2wtWnlTWXB1LTJQdy5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNkM1OEQ2L0Q2OUE0REZFNzMxNjExRTk5MTMzMDM3Q0Y4
QUVBMjI4LzBDRjkyQkVFMTVFQzExRjA4QjRGNUNEMDZEQjhCQ0M2LnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABmgZgwDQYJKoZIhvcNAQEL
BQADggEBAGbiRBiv9wDAS5/4Gb1ePuKqWN8Rdq07edHP3eDoEpwwVgN2xyZuzVX/
oW6gX/t2Wr+e/5HAj5FiYOSh65x9OFeMZ9fRLhbk0AVU4gqfohFz9W3Su/ntdkTv
vOyhMs2COpF3/O89oEbuOHBpkVpR+U7Tw578dDA39sOYXJNqN7JNJ9IcWcDonwZY
QcGTYqrTTrgSq0KDBgn1X0ZxZxHdAZATtiu6DGBi9rHE2TgrUeiXgqwzjeNcEPk2
kYnPguT9LgucTgCxfuAHd8mNAx5FC+LnDarbISTk8kLqHavyxUkRirP/XUTh1Yis
795LsBMya8Av5ckHB4IrG24F0TsbCgY=
-----END CERTIFICATE-----
Generated at Sat Apr 26 06:21:29 2025 by rpki-client on console.sobornost.net