Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/9A3985F4190111F09BFFDDF16DB8BCC6.roa
File: 9A3985F4190111F09BFFDDF16DB8BCC6.roa (raw, json)
Hash identifier: fni2SdCZUi1o16sR7giJGXjpvAhTHEgzGJtz+nl4TJk=
Subject key identifier: 70:EA:59:59:ED:A7:85:D1:52:E8:E1:34:2E:CF:02:A7:CF:81:DF:5B
Certificate issuer: /CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Certificate serial: 1455
Authority key identifier: 48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/9A3985F4190111F09BFFDDF16DB8BCC6.roa
Signing time: Mon 14 Apr 2025 07:25:12 +0000
ROA not before: Mon 14 Apr 2025 07:25:08 +0000
ROA not after: Wed 14 Apr 2027 07:25:08 +0000
asID: 199959
IP address blocks: 102.129.214.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.mft
rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 26 Apr 2025 00:06:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5205 (0x1455)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36C58D6AF, serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Validity
Not Before: Apr 14 07:25:08 2025 GMT
Not After : Apr 14 07:25:08 2027 GMT
Subject: CN=67fcb858-06ba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:6b:59:a9:21:7e:1b:c9:fd:62:2d:12:9a:96:
e4:46:be:ca:fd:39:2d:f3:8f:70:25:11:b1:32:89:
a7:b8:fd:46:08:17:be:63:b8:f3:40:ed:25:15:24:
88:8e:63:72:c1:55:80:75:b1:4d:c4:72:2b:f9:30:
02:22:14:f7:78:c6:5d:99:cf:cb:d4:cc:e4:76:af:
aa:5e:f1:ea:80:bf:6f:61:a4:7d:db:9c:77:9c:26:
48:10:68:fa:51:b7:23:83:21:7e:70:f3:3a:93:f1:
cb:e1:69:12:90:0c:bc:14:ea:24:84:0b:87:5e:12:
44:32:d1:f1:a5:a1:60:1f:bf:db:0f:e3:f7:4e:43:
7b:31:89:63:cc:65:38:fd:c7:f9:3b:47:48:3f:48:
ab:ff:fa:c8:b1:3d:63:36:8a:e1:ef:08:c7:e9:4c:
00:b4:f3:a6:80:b0:51:c2:7c:ab:a9:a5:52:e6:5b:
60:6d:42:43:c3:b1:6c:a6:23:46:c1:d0:61:3b:bb:
d5:fa:2e:c8:69:92:fb:7b:9b:37:f3:0e:e1:5e:67:
7d:50:01:0d:46:0a:ea:ef:bb:8d:4c:eb:81:cd:a6:
52:7e:10:33:9c:f8:13:c7:9a:7a:56:27:da:1c:8a:
df:0d:db:3f:62:14:03:24:14:cd:7a:ac:0a:20:8b:
7e:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:EA:59:59:ED:A7:85:D1:52:E8:E1:34:2E:CF:02:A7:CF:81:DF:5B
X509v3 Authority Key Identifier:
keyid:48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/9A3985F4190111F09BFFDDF16DB8BCC6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.129.214.0/24
Signature Algorithm: sha256WithRSAEncryption
9f:94:f7:6f:52:11:8b:4c:a3:4a:d4:9a:5d:e3:4d:93:d2:ee:
eb:a7:a0:d5:1b:24:91:85:c4:25:fb:5c:87:3b:8c:57:f5:6b:
70:be:44:a9:47:d5:08:6c:7a:04:f1:d3:5a:f4:29:12:84:36:
62:4a:51:6d:12:2c:8e:67:61:03:b6:db:f3:9f:bd:2e:0a:62:
a4:04:29:c1:e9:72:ff:0e:a2:20:e7:b7:09:6d:a8:e0:dc:ef:
a3:69:1f:1d:ed:a8:0d:11:20:84:c0:67:96:05:aa:df:bf:92:
bf:e6:36:db:d4:99:d7:34:c3:6f:62:10:55:22:51:4c:05:aa:
ce:3d:e9:af:70:ac:5e:d5:ad:1e:d6:c4:e5:0f:1b:91:4f:c7:
8b:97:6a:68:69:9b:21:3d:c0:53:51:d9:34:73:40:49:eb:14:
af:f5:6f:ca:e9:ab:c4:c4:fa:5d:2b:90:71:03:5b:9d:d4:b5:
2c:e4:9a:45:9e:29:a0:d6:ed:22:ec:b0:33:04:5f:b6:62:d2:
86:63:fa:ca:48:0b:a2:0a:e8:a0:9c:42:75:7f:5b:92:c8:9d:
f4:6e:f6:2d:8f:18:f0:72:3a:21:98:5d:ab:98:e3:db:4a:24:
ec:77:cd:7a:65:b7:c5:c3:93:6f:e5:58:e2:08:c0:10:d9:6f:
6e:7b:40:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 24 04:38:30 2025 by rpki-client on console.sobornost.net