Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/ECDB77A619BD11F0978A66DB6DB8BCC6.roa
File: ECDB77A619BD11F0978A66DB6DB8BCC6.roa (raw, json)
Hash identifier: 1pwN10veFjkFIZweEIbTMCNbOrS/4k1+LfvzPfJAx7o=
Subject key identifier: A2:0E:44:E3:58:D7:A1:9A:CD:4B:F0:D9:40:DD:A5:B4:72:5F:CC:73
Certificate issuer: /CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Certificate serial: 1462
Authority key identifier: 48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/ECDB77A619BD11F0978A66DB6DB8BCC6.roa
Signing time: Tue 15 Apr 2025 05:53:17 +0000
ROA not before: Tue 15 Apr 2025 05:53:12 +0000
ROA not after: Thu 15 Apr 2027 05:53:12 +0000
asID: 7018
IP address blocks: 102.129.247.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.mft
rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 26 Apr 2025 00:06:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5218 (0x1462)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36C58D6AF, serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Validity
Not Before: Apr 15 05:53:12 2025 GMT
Not After : Apr 15 05:53:12 2027 GMT
Subject: CN=67fdf44c-f755
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:42:ac:10:e6:3b:05:e0:bb:60:7b:8b:ec:ff:
8f:6e:7a:62:f5:70:1a:b2:87:b3:da:7f:c2:37:80:
51:f1:4d:92:0b:66:e4:cd:5b:86:74:69:4b:5f:f8:
42:39:54:d3:d6:58:a7:6a:15:b4:8c:9b:8e:fc:fb:
c0:f9:52:f4:84:25:81:0a:fe:8b:16:d0:59:ad:03:
e1:87:e8:92:91:ea:ee:52:fb:2e:ec:97:86:64:e2:
ae:5f:c3:bd:0c:20:6e:e6:92:2f:e2:e6:fb:dc:87:
ba:37:89:28:90:e7:87:60:1f:ba:e9:1a:95:0d:06:
23:b4:7b:b5:38:d3:bf:be:bb:02:bd:b4:c7:92:7b:
f9:54:62:32:1c:fc:e7:0a:13:73:10:3c:97:d6:73:
43:c0:a5:2b:c5:92:b8:3a:5d:f9:d0:a2:13:c0:5c:
ae:e5:b2:5c:c2:24:c5:fd:84:9c:bb:68:3a:18:48:
01:78:fc:e4:65:c0:14:9a:64:d8:9c:55:13:1c:df:
db:3f:84:0c:ba:20:70:24:c3:ce:7f:6c:62:b0:75:
b4:30:58:cd:0a:a3:21:b4:2a:be:ed:1c:a3:aa:48:
69:24:38:97:ef:26:99:36:c4:d5:c2:fb:93:84:03:
a6:81:75:2f:d3:4b:21:3c:7a:5c:e7:49:a2:bb:1e:
f8:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:0E:44:E3:58:D7:A1:9A:CD:4B:F0:D9:40:DD:A5:B4:72:5F:CC:73
X509v3 Authority Key Identifier:
keyid:48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/ECDB77A619BD11F0978A66DB6DB8BCC6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.129.247.0/24
Signature Algorithm: sha256WithRSAEncryption
13:69:ae:c4:42:4a:fa:2c:de:ed:ed:b5:45:31:07:a4:dc:77:
bd:31:56:71:26:66:9c:36:a1:86:1e:c4:73:0b:61:86:b7:be:
a5:ff:15:73:01:95:f5:e6:06:a4:a6:3d:af:8a:7d:3d:34:39:
2a:7d:76:c1:48:c1:29:08:0d:26:fb:12:f8:5a:ad:50:8c:06:
88:cb:8a:f4:bc:b5:7f:83:90:90:09:fb:99:90:97:67:ed:8f:
ab:7e:41:6a:f7:45:bf:df:95:89:d8:37:c4:59:74:44:3b:3e:
4c:ab:4f:53:67:cd:80:1f:d9:c2:84:cc:c4:01:19:f9:f2:68:
0f:8b:88:91:26:93:48:53:43:60:7a:41:d8:59:5d:82:97:2c:
e4:54:c0:4f:a5:a2:38:72:2f:3a:5d:7c:2c:52:e6:36:31:23:
b4:99:11:25:a2:4f:5a:96:67:05:f4:37:dc:5b:10:2f:7e:3f:
fb:cb:28:74:d5:4e:1a:c9:a3:d9:53:38:e4:15:61:af:5f:87:
2d:4b:3e:94:90:ac:7d:4a:ad:3b:e0:c7:44:2f:a3:5a:43:50:
02:c6:42:e8:69:ac:4d:77:b1:b9:c6:2e:d6:2e:85:7a:42:6c:
e4:5f:46:94:76:24:61:1b:6b:d0:25:26:cf:02:34:59:09:31:
89:8c:5b:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 24 04:38:31 2025 by rpki-client on console.sobornost.net