Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/B53F6B6010A111F082B6EEB7762E951A.roa
File: B53F6B6010A111F082B6EEB7762E951A.roa (raw, json)
Hash identifier: H1UFZSYBcrf1XiWKFcAmBF9qUcylihN477KjQqPr43E=
Subject key identifier: FC:DA:E2:32:26:EE:CD:29:61:C6:F5:A8:3D:E6:94:83:8C:3F:98:56
Certificate issuer: /CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Certificate serial: 1434
Authority key identifier: 48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/B53F6B6010A111F082B6EEB7762E951A.roa
Signing time: Thu 03 Apr 2025 15:38:36 +0000
ROA not before: Thu 03 Apr 2025 15:38:32 +0000
ROA not after: Mon 03 Apr 2028 15:38:32 +0000
asID: 329184
IP address blocks: 102.129.165.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.mft
rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 27 Apr 2025 00:06:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5172 (0x1434)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36C58D6AF, serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Validity
Not Before: Apr 3 15:38:32 2025 GMT
Not After : Apr 3 15:38:32 2028 GMT
Subject: CN=67eeab7c-d35c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:ad:65:12:2c:1e:ad:96:8b:d3:b0:5d:83:7b:
ce:04:98:f9:67:b9:5f:6b:e4:bc:81:47:f0:85:77:
59:58:85:3b:d8:55:9b:95:0e:b8:04:9b:ee:e1:c9:
0e:a4:3b:6b:35:1b:fc:5f:a7:ed:db:e7:b0:56:36:
5b:eb:e4:01:35:f1:90:6c:ce:f3:6c:70:67:c5:9b:
81:ff:f2:b3:05:8b:c9:b8:55:d9:0e:3a:a1:7c:1e:
d6:cf:0c:2c:a9:8c:ee:c5:c6:5d:0c:e3:16:6c:8f:
6d:eb:b4:d3:c3:ce:56:db:a6:c8:f9:8a:34:92:d6:
8e:da:40:dc:64:e9:bf:e9:b7:72:27:7b:56:8f:c5:
d1:68:d2:a2:16:e4:ae:7d:e8:7a:2f:83:4c:ff:c0:
88:73:05:2a:b8:1b:5e:13:ae:2d:96:a5:5d:a2:aa:
ff:4c:31:7e:ed:1a:1a:44:d9:ae:e8:1c:4f:64:6b:
f2:1b:fb:52:43:b5:24:56:f3:7a:2e:9e:df:7a:3a:
e2:f5:10:07:f0:9e:61:51:09:9f:3b:84:f9:2b:a2:
99:2c:c4:44:fc:de:80:76:4f:28:0a:6f:4c:93:b1:
27:b0:bd:29:c8:8c:7e:30:14:9b:18:4a:5c:75:4b:
9f:6d:af:09:df:50:7e:fd:c2:e8:56:2e:65:74:f6:
4f:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:DA:E2:32:26:EE:CD:29:61:C6:F5:A8:3D:E6:94:83:8C:3F:98:56
X509v3 Authority Key Identifier:
keyid:48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/B53F6B6010A111F082B6EEB7762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.129.165.0/24
Signature Algorithm: sha256WithRSAEncryption
a3:42:39:58:38:7d:aa:57:8c:6b:da:fb:4e:b4:03:33:e5:a5:
7d:43:42:18:ee:3e:f7:07:86:07:d4:f6:54:0a:03:f0:4d:ed:
b1:a6:e0:32:ca:75:de:e1:4e:f7:6e:65:2e:e4:46:2b:99:76:
b6:ea:c7:7e:12:c8:30:76:87:b9:9e:03:7f:29:40:a7:8c:9e:
1c:21:52:1c:98:2b:9b:42:d3:fc:e3:b1:a3:c4:1c:91:4c:50:
99:96:33:d0:93:d0:77:b3:69:30:3d:34:58:ac:36:c3:11:9d:
1e:9f:ed:2a:ad:7c:e8:d5:7d:26:21:60:33:8e:aa:ee:e4:18:
8b:fd:3c:77:15:5a:d2:d0:85:3d:57:ca:51:49:71:7d:c5:2c:
1f:f8:5d:05:d9:14:8d:8d:ec:f9:1e:9e:03:7d:32:0e:f7:27:
f7:ce:31:81:54:d1:09:96:ac:bb:8d:1b:9d:91:07:8a:49:96:
22:c9:22:ec:5d:d4:b6:5d:0d:0c:cd:dd:69:61:a5:94:1d:2d:
11:4e:77:47:f4:70:70:03:25:ca:12:f2:c0:ac:2d:cf:f8:5f:
76:cc:56:d2:95:e9:30:d4:ee:47:19:7c:d8:f7:47:be:49:fb:
b7:11:bf:00:55:fc:1c:81:da:5c:9b:fe:fd:c3:e2:22:7f:91:
94:86:9d:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 06:08:12 2025 by rpki-client on console.sobornost.net