Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36EA516/1B90D444147611F0BD77CF096EB8BCC6/046CE482147711F0B01A890E6EB8BCC6.roa
File: 046CE482147711F0B01A890E6EB8BCC6.roa (raw, json)
Hash identifier: 1Ni3jdhyCUqGSNwJUD1MnDgs72urkU8YdE/yCBxVta0=
Subject key identifier: 6E:3C:D6:AA:FF:E6:7F:86:EF:97:08:1A:1B:90:DC:46:62:D7:69:F5
Certificate issuer: /CN=F36EA516AF/serialNumber=F976B5DDD4BD37D0AFF4F6763176D2E4C6351CEF
Certificate serial: 02
Authority key identifier: F9:76:B5:DD:D4:BD:37:D0:AF:F4:F6:76:31:76:D2:E4:C6:35:1C:EF
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/-Xa13dS9N9Cv9PZ2MXbS5MY1HO8.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36EA516/1B90D444147611F0BD77CF096EB8BCC6/046CE482147711F0B01A890E6EB8BCC6.roa
Signing time: Tue 08 Apr 2025 12:43:06 +0000
ROA not before: Tue 08 Apr 2025 12:43:01 +0000
ROA not after: Mon 08 Apr 2030 12:43:01 +0000
asID: 329305
IP address blocks: 102.211.116.0/24 maxlen: 24
102.211.117.0/24 maxlen: 24
102.211.118.0/24 maxlen: 24
102.211.119.0/24 maxlen: 24
2c0f:5440::/48 maxlen: 48
2c0f:5440:211::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36EA516/1B90D444147611F0BD77CF096EB8BCC6/-Xa13dS9N9Cv9PZ2MXbS5MY1HO8.crl
rsync://rpki.afrinic.net/repository/member_repository/F36EA516/1B90D444147611F0BD77CF096EB8BCC6/-Xa13dS9N9Cv9PZ2MXbS5MY1HO8.mft
rsync://rpki.afrinic.net/repository/afrinic/-Xa13dS9N9Cv9PZ2MXbS5MY1HO8.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 28 Apr 2025 00:08:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2 (0x2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36EA516AF, serialNumber=F976B5DDD4BD37D0AFF4F6763176D2E4C6351CEF
Validity
Not Before: Apr 8 12:43:01 2025 GMT
Not After : Apr 8 12:43:01 2030 GMT
Subject: CN=67f519da-25a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:d8:f2:54:09:d7:c4:5d:9b:86:1d:77:eb:26:
12:80:bd:dc:5a:f5:d5:e4:eb:40:e7:3b:ba:cf:36:
11:72:f1:94:04:c9:89:c0:35:60:a7:c6:d5:16:9e:
b2:bf:5b:33:fd:94:b7:10:62:1b:26:96:34:77:a2:
a4:9c:de:75:bf:e0:67:65:3c:cb:35:ef:a4:80:0b:
f2:85:26:46:f9:7d:1e:1e:de:b0:09:9f:ce:a6:5a:
ed:3f:ca:08:a0:1e:05:b5:48:c5:ac:e9:14:92:9a:
cb:95:31:a3:5d:8c:23:ba:96:90:5f:c6:85:c3:d1:
9c:bd:62:49:1b:75:a5:63:d9:f7:52:26:a0:10:fa:
3a:3a:32:46:38:36:60:af:61:5d:26:a1:bd:99:95:
2b:20:84:ea:62:70:50:be:1d:6a:47:71:8a:04:6d:
20:ee:86:25:5b:87:bb:01:79:3b:9d:7e:6a:55:a4:
b7:40:bc:0b:18:79:e1:94:ff:3d:d3:b1:86:c5:e5:
41:a1:b3:47:ec:e7:92:82:12:a3:dd:77:77:b7:9f:
8c:9a:f4:e2:b1:1b:66:27:60:b1:60:8e:f1:a7:0b:
cb:a7:65:e6:f4:5c:4a:17:bf:3d:c6:3b:84:49:81:
c1:6f:6c:e3:b4:a8:5b:bd:93:77:74:66:41:8c:f6:
97:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:3C:D6:AA:FF:E6:7F:86:EF:97:08:1A:1B:90:DC:46:62:D7:69:F5
X509v3 Authority Key Identifier:
keyid:F9:76:B5:DD:D4:BD:37:D0:AF:F4:F6:76:31:76:D2:E4:C6:35:1C:EF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36EA516/1B90D444147611F0BD77CF096EB8BCC6/-Xa13dS9N9Cv9PZ2MXbS5MY1HO8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/-Xa13dS9N9Cv9PZ2MXbS5MY1HO8.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36EA516/1B90D444147611F0BD77CF096EB8BCC6/046CE482147711F0B01A890E6EB8BCC6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.211.116.0/22
IPv6:
2c0f:5440::/48
2c0f:5440:211::/48
Signature Algorithm: sha256WithRSAEncryption
c7:da:19:a9:cc:7f:c3:89:84:4e:e8:d7:a8:00:cd:15:6c:fe:
d7:57:7a:d7:9d:36:91:28:04:96:a3:4d:12:70:46:ea:1e:cf:
0e:c7:19:6f:51:07:98:bc:58:57:2f:d9:25:b3:d6:da:ac:1d:
ee:6d:b7:fb:b1:44:8b:00:59:f6:92:e6:02:dd:2f:64:a3:8e:
e7:0b:91:e5:a3:69:a0:b6:5c:b3:2b:ea:ad:cd:9f:2f:10:89:
22:55:53:c7:b8:77:80:82:be:18:e0:51:c6:8a:9c:c7:65:61:
c0:c3:6d:e5:49:c9:4d:38:bd:27:44:8e:3e:d3:78:5f:ef:8f:
83:8f:59:9a:ee:ee:6d:1c:8c:a2:af:ca:35:f6:17:a5:e7:8d:
8b:10:66:00:01:8f:b0:a6:e0:33:29:76:d6:15:82:4a:97:3a:
9e:56:b9:c6:b8:77:46:9f:be:2e:08:f0:9b:05:2d:13:55:41:
e4:70:60:28:ea:1b:2b:21:85:95:f1:f5:ea:ba:b0:c4:fa:5d:
e1:7d:5a:7a:8c:6b:c0:68:0f:3b:bf:42:63:d4:48:bd:de:84:
0e:2b:cd:41:79:1a:fa:d9:c3:0d:c8:05:e9:be:3c:b2:1f:22:
c7:0e:f2:b6:71:b8:e6:63:4b:9c:32:46:52:af:01:80:e3:1b:
ba:eb:1e:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 08:51:43 2025 by rpki-client on console.sobornost.net