Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/18701A9615EC11F08D1A61D06DB8BCC6.roa
File: 18701A9615EC11F08D1A61D06DB8BCC6.roa (raw, json)
Hash identifier: Zm/rzE/mExyjfS8ORogEjhuXBfVY2h2/nRQdeR7BvZg=
Subject key identifier: E4:D1:F2:5E:C9:A8:00:0B:B9:3A:1A:CD:46:F7:2A:02:64:A5:AF:8A
Certificate issuer: /CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Certificate serial: 1446
Authority key identifier: 48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/18701A9615EC11F08D1A61D06DB8BCC6.roa
Signing time: Thu 10 Apr 2025 09:13:42 +0000
ROA not before: Thu 10 Apr 2025 09:13:38 +0000
ROA not after: Sat 10 Apr 2027 09:13:38 +0000
asID: 174
IP address blocks: 102.129.153.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.mft
rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 27 Apr 2025 00:06:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5190 (0x1446)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36C58D6AF, serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Validity
Not Before: Apr 10 09:13:38 2025 GMT
Not After : Apr 10 09:13:38 2027 GMT
Subject: CN=67f78bc5-83d7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:40:bb:26:87:4a:1c:8f:e6:2c:b7:0b:a1:52:
40:bf:cf:5d:4b:e5:ad:f4:b6:4b:e9:c7:92:e7:7a:
5b:18:d1:65:71:c5:1a:3a:e3:d6:46:21:f5:2c:a9:
dd:55:b8:fd:2c:9f:d0:32:17:85:a2:4c:9e:0f:1b:
fb:ae:5e:89:c8:0e:20:3f:ca:37:61:1d:5f:39:29:
95:2e:36:cb:8d:0b:61:8f:13:f0:20:a3:d0:33:47:
35:14:82:44:11:68:39:df:6e:91:f5:dd:f8:0b:aa:
90:3d:e1:f9:1f:cb:94:28:6c:1b:36:b3:55:08:2d:
c4:54:43:33:ea:d1:4e:6f:b6:d8:7b:68:8a:6a:d9:
3a:d7:d1:69:87:c0:0d:0e:a3:01:79:c9:2d:60:ba:
17:05:4c:21:b2:e6:eb:0a:53:f8:a8:fe:6c:75:0e:
2e:48:e4:8c:b3:d1:db:f5:58:30:12:40:83:62:fa:
f5:45:01:af:91:a8:e3:46:83:97:bf:e8:47:82:53:
ec:eb:c9:be:60:6b:5e:ea:5d:3b:81:68:dd:19:de:
b5:85:78:c9:40:a3:9d:49:92:d6:3b:fc:4c:70:bd:
15:c2:7b:d3:34:a1:90:5b:92:2a:7a:4a:55:5d:c0:
9f:20:0f:8e:48:94:39:3f:33:89:ab:e6:fc:bb:34:
8f:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:D1:F2:5E:C9:A8:00:0B:B9:3A:1A:CD:46:F7:2A:02:64:A5:AF:8A
X509v3 Authority Key Identifier:
keyid:48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/18701A9615EC11F08D1A61D06DB8BCC6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.129.153.0/24
Signature Algorithm: sha256WithRSAEncryption
29:b4:09:64:21:a0:70:41:2e:de:39:25:a7:f1:6d:46:e4:e1:
50:f8:b0:31:ae:0d:ed:f2:60:6c:b0:57:91:6e:ef:4d:a0:4b:
93:17:53:63:53:ce:bf:87:a8:d3:e5:c6:fe:2f:9f:af:a7:98:
a3:e1:94:15:6f:c3:cc:04:cc:ef:dd:27:51:a4:92:03:57:00:
ca:45:71:d3:ff:a9:8a:7b:4e:f8:41:fa:67:85:5f:4e:92:6e:
ad:84:18:4a:c6:73:d7:9a:5d:a0:fa:ae:be:e5:47:3d:3e:61:
99:8e:81:c1:d6:6c:84:72:9b:c9:60:ab:b5:63:a1:46:8f:1e:
4e:c2:8f:bd:f3:15:78:c9:48:b7:1d:2e:ba:2f:5f:09:44:c1:
cc:2f:88:d5:b4:d6:f5:63:35:ed:2d:93:6d:67:9e:56:51:79:
ae:7b:ae:d3:3a:06:9d:0b:cd:e5:2e:4c:7d:c2:1f:2a:19:b0:
14:33:06:6f:14:cd:96:0a:2d:05:73:a0:38:bf:c7:23:d8:92:
db:0b:aa:03:08:7e:7e:b5:9e:2a:a2:95:b9:06:a2:bc:78:9c:
8d:27:81:5d:e1:a0:3b:92:bf:68:a5:d8:cf:b4:01:05:6e:58:
5d:3f:92:aa:5e:fb:25:3d:a0:19:7c:31:e1:6c:fd:0f:05:ba:
84:c6:db:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 06:08:10 2025 by rpki-client on console.sobornost.net