Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36EF7D0/36E40A16F2FB11ED821B9D804AD9E6FC/4C04590A19C311F086AB4AFF6DB8BCC6.roa
File: 4C04590A19C311F086AB4AFF6DB8BCC6.roa (raw, json)
Hash identifier: xIo3hGREn8S9T23pTXvTH+br+zFpiR4dijmgM7JOPi8=
Subject key identifier: AB:FA:51:B2:E8:23:5C:0B:15:92:E6:31:84:80:D5:0A:1B:ED:89:CE
Certificate issuer: /CN=F36EF7D0AF/serialNumber=3A553B6EF80BF922312F96B8DDC1F219A8C4121B
Certificate serial: 032A
Authority key identifier: 3A:55:3B:6E:F8:0B:F9:22:31:2F:96:B8:DD:C1:F2:19:A8:C4:12:1B
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/OlU7bvgL-SIxL5a43cHyGajEEhs.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36EF7D0/36E40A16F2FB11ED821B9D804AD9E6FC/4C04590A19C311F086AB4AFF6DB8BCC6.roa
Signing time: Tue 15 Apr 2025 06:31:44 +0000
ROA not before: Tue 15 Apr 2025 06:31:38 +0000
ROA not after: Mon 15 Apr 2030 06:31:38 +0000
asID: 20326
IP address blocks: 102.212.7.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36EF7D0/36E40A16F2FB11ED821B9D804AD9E6FC/OlU7bvgL-SIxL5a43cHyGajEEhs.crl
rsync://rpki.afrinic.net/repository/member_repository/F36EF7D0/36E40A16F2FB11ED821B9D804AD9E6FC/OlU7bvgL-SIxL5a43cHyGajEEhs.mft
rsync://rpki.afrinic.net/repository/afrinic/OlU7bvgL-SIxL5a43cHyGajEEhs.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 27 Apr 2025 00:06:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 810 (0x32a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36EF7D0AF, serialNumber=3A553B6EF80BF922312F96B8DDC1F219A8C4121B
Validity
Not Before: Apr 15 06:31:38 2025 GMT
Not After : Apr 15 06:31:38 2030 GMT
Subject: CN=67fdfd50-b011
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:07:c8:a6:91:25:66:4b:04:59:23:98:8f:10:
d7:ec:9e:17:47:57:27:38:86:34:42:61:18:8a:cf:
98:e4:af:7a:7e:0c:77:ac:5a:97:42:e8:44:99:90:
8c:26:f4:38:98:1e:d7:19:5e:ba:1c:79:06:9c:df:
c3:54:03:1d:4a:60:3a:76:d3:30:c3:5c:7a:c6:d0:
2a:d7:d1:6d:4d:4c:d0:c7:8f:40:c3:7a:13:4a:4a:
25:78:28:04:98:26:b8:02:ac:9c:2a:b0:f9:4b:25:
82:7e:a9:09:e0:5f:75:24:21:e1:00:bc:1e:8a:4f:
4c:d2:38:23:77:9a:12:da:ba:16:f0:e3:3c:0d:e3:
45:63:61:39:f0:5c:49:76:1e:60:74:b9:8a:b3:a2:
cc:6e:5b:7b:8c:4a:f3:df:f7:74:80:d4:32:d1:26:
d4:89:1c:d0:2f:7d:67:fc:d2:c0:ac:0a:77:ac:a3:
c4:a9:bc:d5:66:fe:40:c9:fa:b5:17:0c:0f:7d:bd:
de:34:ba:07:85:87:c2:e2:3b:81:27:51:20:a0:3e:
44:7b:b1:61:2b:a5:5d:c1:62:bf:a3:39:10:5b:6e:
98:b7:ce:ed:34:31:a9:74:f9:8d:01:c2:a3:bf:91:
ce:11:3b:c9:8e:97:ed:5d:13:1b:cc:90:87:d1:4a:
17:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:FA:51:B2:E8:23:5C:0B:15:92:E6:31:84:80:D5:0A:1B:ED:89:CE
X509v3 Authority Key Identifier:
keyid:3A:55:3B:6E:F8:0B:F9:22:31:2F:96:B8:DD:C1:F2:19:A8:C4:12:1B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36EF7D0/36E40A16F2FB11ED821B9D804AD9E6FC/OlU7bvgL-SIxL5a43cHyGajEEhs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/OlU7bvgL-SIxL5a43cHyGajEEhs.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36EF7D0/36E40A16F2FB11ED821B9D804AD9E6FC/4C04590A19C311F086AB4AFF6DB8BCC6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.212.7.0/24
Signature Algorithm: sha256WithRSAEncryption
2e:1e:75:c7:00:cd:b0:fa:d1:e4:03:c1:67:08:87:c0:7a:c9:
cf:bf:52:21:f8:7e:13:54:14:a3:7a:cd:7f:af:62:52:c9:f0:
8f:65:78:71:ad:02:dc:a8:81:de:5a:2b:63:8d:b3:3d:ef:36:
3c:2d:10:e5:9e:d1:07:25:41:2d:fc:ca:fa:44:9c:59:2e:69:
f1:1d:72:3e:d0:8d:24:75:fc:35:94:35:17:52:89:91:a9:ac:
14:37:56:ff:e6:de:b0:32:e7:63:75:ea:0b:bd:0a:d2:fc:fe:
36:b2:d7:16:ec:19:1e:b6:01:11:49:44:75:9c:ae:0b:67:7e:
a2:18:9d:dd:54:66:eb:12:6e:43:db:c0:7d:33:40:cd:2a:86:
32:64:52:89:d6:dd:a1:d7:df:c6:76:39:0c:02:b8:bd:9f:35:
7a:c6:c3:47:fe:11:98:dd:45:25:76:04:0f:e5:04:b5:51:5f:
cc:01:22:54:d4:d9:75:e6:98:1b:cf:d0:6d:89:33:8c:e3:07:
17:5d:45:64:50:cc:2f:26:12:28:d2:26:45:57:5a:e4:b3:9c:
9e:d8:bc:72:da:85:39:bb:78:24:cc:fa:25:f3:7f:a8:a8:82:
62:fb:dd:f7:28:89:9b:ec:a9:11:61:8c:94:4a:1b:87:73:0d:
1b:a5:cd:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 06:08:19 2025 by rpki-client on console.sobornost.net