Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F362793F/065D4DBAA64311EF8B4D3E8B762E951A/5A3BE2FAB87E11EF981C545D762E951A.roa
File: 5A3BE2FAB87E11EF981C545D762E951A.roa (raw, json)
Hash identifier: iiNCcB7diX0XVv+jA4F51IRnj9i5QGDFj/H4TV2LPnA=
Subject key identifier: E6:87:EA:52:04:A1:EB:08:5A:00:F1:1D:6E:44:B6:29:E0:73:B3:3B
Certificate issuer: /CN=F362793FAF/serialNumber=DAA872FF9A04446B718A8D9F47554BFA581B3A0E
Certificate serial: 49
Authority key identifier: DA:A8:72:FF:9A:04:44:6B:71:8A:8D:9F:47:55:4B:FA:58:1B:3A:0E
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/2qhy_5oERGtxio2fR1VL-lgbOg4.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F362793F/065D4DBAA64311EF8B4D3E8B762E951A/5A3BE2FAB87E11EF981C545D762E951A.roa
Signing time: Thu 12 Dec 2024 11:43:49 +0000
ROA not before: Thu 12 Dec 2024 11:43:39 +0000
ROA not after: Fri 01 Dec 2034 11:43:39 +0000
asID: 328467
IP address blocks: 102.67.135.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F362793F/065D4DBAA64311EF8B4D3E8B762E951A/2qhy_5oERGtxio2fR1VL-lgbOg4.crl
rsync://rpki.afrinic.net/repository/member_repository/F362793F/065D4DBAA64311EF8B4D3E8B762E951A/2qhy_5oERGtxio2fR1VL-lgbOg4.mft
rsync://rpki.afrinic.net/repository/afrinic/2qhy_5oERGtxio2fR1VL-lgbOg4.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 06 Apr 2025 00:06:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 73 (0x49)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F362793FAF
Validity
Not Before: Dec 12 11:43:39 2024 GMT
Not After : Dec 1 11:43:39 2034 GMT
Subject: CN=675acc75-4b58
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:ec:36:d8:82:3c:6e:3a:0b:fc:a0:97:30:4e:
6d:93:fa:ee:f3:2a:2d:b7:da:80:0d:f6:9b:bd:82:
25:eb:cb:fd:c5:55:15:66:78:37:67:75:c3:6c:be:
3a:a9:9d:42:49:a1:c4:e8:5c:5b:fe:ec:29:7b:89:
d8:80:73:ff:b0:fc:27:15:5f:8c:d8:09:a5:25:f9:
8c:38:42:28:21:52:af:af:ae:ed:76:18:d8:32:7e:
02:72:65:f8:c2:19:67:e6:ef:d6:6c:de:a3:d4:28:
53:dc:fb:76:97:57:fd:a9:0d:4b:8d:de:1f:81:fb:
b6:2a:85:86:e3:6b:eb:87:b0:7a:d8:57:8e:49:bc:
47:31:2e:5d:1b:cf:62:5f:5b:31:48:c9:85:be:53:
fe:bf:fe:3d:7f:86:c5:93:9a:de:87:7e:b5:75:74:
9f:0f:13:eb:f5:7d:38:f6:90:ab:3b:32:62:c2:b2:
a4:68:a5:76:cd:46:e8:24:b7:07:ea:f9:8b:e5:8f:
96:c3:c5:3c:c0:50:2e:c0:f4:6c:8c:70:d6:da:d0:
33:0e:12:f5:8a:a6:06:41:52:c3:65:14:08:9a:8d:
01:d2:29:da:2c:b5:45:c6:a9:f6:e7:1a:eb:eb:c4:
5b:bd:34:e3:b0:db:65:fb:21:69:16:8e:ea:fb:3d:
5f:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:87:EA:52:04:A1:EB:08:5A:00:F1:1D:6E:44:B6:29:E0:73:B3:3B
X509v3 Authority Key Identifier:
keyid:DA:A8:72:FF:9A:04:44:6B:71:8A:8D:9F:47:55:4B:FA:58:1B:3A:0E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F362793F/065D4DBAA64311EF8B4D3E8B762E951A/2qhy_5oERGtxio2fR1VL-lgbOg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/2qhy_5oERGtxio2fR1VL-lgbOg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F362793F/065D4DBAA64311EF8B4D3E8B762E951A/5A3BE2FAB87E11EF981C545D762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.67.135.0/24
Signature Algorithm: sha256WithRSAEncryption
bd:c6:b9:bd:9b:5b:dc:dd:b4:4a:20:ed:76:56:b0:55:42:83:
f1:c2:07:06:a8:72:78:12:29:d4:61:48:95:69:1a:6a:81:de:
28:19:58:0e:1a:4a:70:c8:1b:d0:82:5d:fd:54:97:46:7d:f9:
f2:eb:28:33:3b:81:8f:73:06:20:4e:14:a0:8b:6f:97:d7:1b:
07:81:ca:0d:80:c4:ce:17:34:ec:a4:0c:91:58:27:ce:39:0c:
21:0a:eb:b8:84:cc:66:8d:ba:f5:35:ae:cd:cd:b9:79:94:39:
73:63:40:a7:bb:71:c8:f0:88:ec:b1:d0:29:c9:0a:68:6c:9b:
89:38:67:29:40:46:df:b7:cc:cf:e6:a8:bc:db:6f:0b:62:55:
e2:e3:49:ed:f4:4f:c0:cf:d2:cc:b9:01:ac:dd:94:9a:fc:4a:
96:b2:b6:21:a3:d4:8d:a0:f1:0c:75:c1:df:d9:39:fa:a3:aa:
24:44:76:8b:bd:4a:6e:42:6c:b0:a9:a1:35:65:57:f2:ce:b6:
50:33:73:35:85:bb:11:f8:00:ad:79:53:b0:83:62:e2:6c:a0:
82:7d:d4:ad:e1:08:de:d6:d8:f8:d6:8e:4e:88:49:30:12:2d:
78:af:36:cd:12:9b:a8:6a:14:17:1b:9b:f2:5f:0d:04:09:72:
33:6a:08:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 10:51:39 2025 by rpki-client