Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/CA9FFF801EA511F0BC58957FDAE4EC9C.roa
File: CA9FFF801EA511F0BC58957FDAE4EC9C.roa (raw, json)
Hash identifier: 0k4t14Zpyln58XD3kCo776xOq65ETCcefCisGNAa0ZU=
Subject key identifier: 3B:78:97:90:86:B0:E8:46:3D:D8:04:68:B7:BE:AB:67:A4:B6:84:FA
Certificate issuer: /CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Certificate serial: 1474
Authority key identifier: 48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/CA9FFF801EA511F0BC58957FDAE4EC9C.roa
Signing time: Mon 21 Apr 2025 11:43:07 +0000
ROA not before: Mon 21 Apr 2025 11:43:02 +0000
ROA not after: Fri 21 Apr 2028 11:43:02 +0000
asID: 21859
IP address blocks: 102.129.173.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.mft
rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 27 Apr 2025 00:06:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5236 (0x1474)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36C58D6AF, serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Validity
Not Before: Apr 21 11:43:02 2025 GMT
Not After : Apr 21 11:43:02 2028 GMT
Subject: CN=68062f4b-4cc6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:4a:2b:a1:93:45:5a:6b:b1:5a:54:54:b9:34:
57:6e:08:c9:a5:72:32:69:ce:eb:f4:51:66:0a:e7:
54:3c:6e:22:b0:58:a7:8d:8d:9c:9b:00:50:9a:ae:
64:03:ce:32:8b:7d:ac:de:84:09:8f:3f:94:fb:57:
9e:dd:65:25:78:41:ae:b3:98:cd:9b:08:ee:63:41:
c1:cf:3d:8e:f0:d3:ca:5e:91:ac:6b:f2:4b:52:41:
7b:b1:32:9e:fd:00:69:14:04:c3:07:05:65:b6:96:
88:a6:a3:11:cf:9d:8d:23:0d:2c:0b:05:3b:d7:8a:
7b:a9:2a:ba:ba:b1:38:c0:30:2b:64:7b:13:70:1a:
24:0b:76:c2:4f:fe:48:39:bf:28:a6:6f:cb:24:59:
00:43:63:8d:d2:48:d3:b6:1b:e3:30:e6:74:7f:29:
e9:99:6d:c8:63:40:e9:82:f8:7e:21:d0:ff:62:cd:
ac:5b:1a:7c:48:4d:1f:b2:d5:53:bf:84:ef:de:12:
4a:9f:30:5e:cc:d2:19:34:78:02:10:7e:c0:65:ab:
f2:cb:1d:d7:57:db:b9:0a:e8:09:03:85:92:37:9e:
10:50:a9:7a:07:48:d5:24:89:de:ed:7c:e3:57:18:
b3:13:19:35:4d:d9:7a:b1:6e:6a:87:fd:01:41:61:
95:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:78:97:90:86:B0:E8:46:3D:D8:04:68:B7:BE:AB:67:A4:B6:84:FA
X509v3 Authority Key Identifier:
keyid:48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/CA9FFF801EA511F0BC58957FDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.129.173.0/24
Signature Algorithm: sha256WithRSAEncryption
4e:df:93:42:a6:fc:4d:5e:0f:1c:26:d9:6c:18:41:9d:02:d0:
d5:b1:88:01:96:88:18:73:7d:a8:0d:03:a4:64:eb:29:56:f5:
29:42:6b:82:31:a4:1b:8e:c1:51:fc:26:3d:a5:46:ef:be:d4:
a2:19:1b:63:9a:68:02:be:17:05:58:fd:6d:18:cb:63:79:ab:
bf:b4:76:72:3d:dd:35:e1:5f:85:eb:0c:02:aa:e8:9f:8a:81:
60:2b:1b:ec:4a:a8:43:8a:d9:4c:70:77:ec:58:0f:26:53:11:
1f:6f:9d:be:5d:1c:03:8c:3c:11:86:d2:40:40:af:e4:dd:45:
9b:b4:ae:b7:b5:9d:86:a3:f3:12:58:41:60:0b:1f:39:a0:fb:
45:99:db:ea:aa:c7:bd:d0:7c:7c:1e:ca:cc:bd:79:53:5a:5f:
be:22:09:fd:ad:72:4f:a0:35:4a:19:be:09:8c:65:16:72:16:
b2:cb:5c:9a:b1:68:a1:f1:6a:49:31:13:f8:1c:b1:5c:2a:92:
0c:ab:04:8e:5e:6a:93:66:65:cd:ef:54:d4:3d:72:e3:96:a1:
c8:20:54:01:91:bd:a0:c7:d9:3d:57:17:f9:26:9f:ab:c4:f5:
3d:fa:8b:fd:4b:0c:32:d0:49:6f:95:69:07:5f:35:49:92:2b:
8c:50:c5:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 06:08:12 2025 by rpki-client on console.sobornost.net