Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/5D2452EC19BB11F09DC67CCB6DB8BCC6.roa
File: 5D2452EC19BB11F09DC67CCB6DB8BCC6.roa (raw, json)
Hash identifier: 7x1hVN/popMQcn4GW5GvIjOIrIMgy6f/YgIdZuwF6CM=
Subject key identifier: 02:64:A8:C4:66:DF:6B:B8:6D:7E:A2:CC:10:7E:C2:95:8A:3C:00:65
Certificate issuer: /CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Certificate serial: 1459
Authority key identifier: 48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/5D2452EC19BB11F09DC67CCB6DB8BCC6.roa
Signing time: Tue 15 Apr 2025 05:34:56 +0000
ROA not before: Tue 15 Apr 2025 05:34:52 +0000
ROA not after: Thu 15 Apr 2027 05:34:52 +0000
asID: 834
IP address blocks: 102.165.31.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.mft
rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 26 Apr 2025 00:06:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5209 (0x1459)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36C58D6AF, serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Validity
Not Before: Apr 15 05:34:52 2025 GMT
Not After : Apr 15 05:34:52 2027 GMT
Subject: CN=67fdf000-3019
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:0a:de:30:53:be:b0:47:e6:5d:e1:5b:57:30:
51:93:76:47:f3:c9:b9:64:31:4d:38:8d:e6:4d:83:
c1:9e:50:6e:9d:32:5c:fd:4f:e1:31:ff:d3:4b:15:
15:d3:f2:10:43:ce:3d:55:06:d5:dd:8e:00:fa:08:
8b:19:06:ee:d3:c9:bc:7a:45:a0:5a:ee:8b:6d:6a:
00:bf:bc:7b:6e:1d:cf:ae:13:5e:d5:c9:bf:2e:aa:
fa:e8:b1:32:fe:ce:52:8f:2c:ef:86:55:49:88:45:
e9:b0:19:ec:9e:20:57:3d:4c:6c:aa:41:d7:d6:d3:
62:c2:d3:f3:7c:b6:01:e8:62:bc:1c:54:16:7f:d2:
4d:65:03:e9:a3:48:33:b8:01:bf:d1:02:80:df:dd:
30:7f:01:48:a3:fa:0b:38:19:15:3d:25:33:a5:24:
b7:63:5d:d8:04:ec:2c:b7:56:31:4b:c4:07:33:f3:
fb:95:ae:e7:62:ed:3f:cc:9e:ed:53:0d:de:ab:e0:
3c:91:a7:81:72:e0:4f:ba:b4:eb:f5:0a:95:04:13:
f4:65:64:d3:79:46:79:6f:f2:31:19:c4:15:13:2b:
b4:fc:53:c9:b7:3f:b3:0f:d5:4a:72:9a:fe:b9:2d:
10:18:1e:fd:0a:1d:3a:47:b4:59:d7:00:9a:94:e1:
a6:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:64:A8:C4:66:DF:6B:B8:6D:7E:A2:CC:10:7E:C2:95:8A:3C:00:65
X509v3 Authority Key Identifier:
keyid:48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/5D2452EC19BB11F09DC67CCB6DB8BCC6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.165.31.0/24
Signature Algorithm: sha256WithRSAEncryption
d1:fd:e8:f2:6a:f9:76:1a:69:cd:39:9b:4c:33:49:32:16:90:
36:4c:b0:b2:8b:f3:63:c1:82:be:5a:de:8b:17:fc:58:94:ac:
8d:24:47:15:ac:78:e2:dd:f6:31:e7:46:d5:34:ac:e3:1e:d3:
fa:01:1d:96:b1:b8:9d:f2:6d:14:86:19:31:cb:62:1a:16:dc:
5a:34:bd:5f:00:ba:6e:56:e9:dd:ec:e1:54:98:24:c3:e1:f2:
3c:be:94:80:15:cf:37:16:bd:ec:75:60:92:dd:28:4c:e5:bb:
b4:58:1a:ea:71:99:f9:db:e5:c8:11:64:3d:de:71:d8:aa:d3:
84:88:43:ff:26:d8:5a:78:ef:30:8f:b4:0e:87:c1:fa:f1:71:
68:78:d7:aa:0e:06:77:a3:5b:e2:ec:bd:8c:5e:d3:ef:d6:86:
80:9a:cb:0b:ce:03:da:3e:40:e7:8a:59:43:f4:2c:7d:62:8c:
1c:fe:d0:81:d0:9d:2c:ee:b5:22:f9:89:b4:77:e2:a2:22:50:
aa:1d:3c:8d:a6:2f:40:af:17:84:00:7e:b4:4c:00:fe:8f:ce:
74:21:7b:53:8c:06:a5:a5:2b:b1:b7:e1:f5:e6:98:80:9b:ba:
dc:84:4a:21:31:8e:1e:8b:c4:f6:51:87:d5:57:4d:d8:df:50:
2b:bf:11:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 24 04:38:30 2025 by rpki-client on console.sobornost.net