Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F362793F/065D4DBAA64311EF8B4D3E8B762E951A/FC601FE8B87D11EFB11B5D5B762E951A.roa
File: FC601FE8B87D11EFB11B5D5B762E951A.roa (raw, json)
Hash identifier: kMhymzWCs2TuT+6gLYGn8unjH29vHiUNHpcIxz2N4+Y=
Subject key identifier: 2F:2A:CA:23:43:2F:36:05:56:06:C5:B0:61:5E:04:80:30:70:FD:6B
Certificate issuer: /CN=F362793FAF/serialNumber=DAA872FF9A04446B718A8D9F47554BFA581B3A0E
Certificate serial: 45
Authority key identifier: DA:A8:72:FF:9A:04:44:6B:71:8A:8D:9F:47:55:4B:FA:58:1B:3A:0E
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/2qhy_5oERGtxio2fR1VL-lgbOg4.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F362793F/065D4DBAA64311EF8B4D3E8B762E951A/FC601FE8B87D11EFB11B5D5B762E951A.roa
Signing time: Thu 12 Dec 2024 11:41:12 +0000
ROA not before: Thu 12 Dec 2024 11:41:00 +0000
ROA not after: Fri 01 Dec 2034 11:41:00 +0000
asID: 328467
IP address blocks: 102.67.133.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F362793F/065D4DBAA64311EF8B4D3E8B762E951A/2qhy_5oERGtxio2fR1VL-lgbOg4.crl
rsync://rpki.afrinic.net/repository/member_repository/F362793F/065D4DBAA64311EF8B4D3E8B762E951A/2qhy_5oERGtxio2fR1VL-lgbOg4.mft
rsync://rpki.afrinic.net/repository/afrinic/2qhy_5oERGtxio2fR1VL-lgbOg4.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 06 Apr 2025 03:16:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69 (0x45)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F362793FAF
Validity
Not Before: Dec 12 11:41:00 2024 GMT
Not After : Dec 1 11:41:00 2034 GMT
Subject: CN=675acbd8-a0af
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:67:e5:89:e8:24:b4:85:46:26:84:a9:55:09:
18:33:36:b1:e2:38:ca:28:06:e2:5d:2e:92:5d:4b:
0b:24:f5:b0:86:98:67:d0:ae:78:80:56:03:a2:f6:
31:6e:d0:6d:70:fe:d5:8b:fe:e2:bf:3e:c7:74:db:
3f:f2:b2:39:5b:b2:1a:d0:3c:c6:97:97:dd:3f:e3:
c7:f9:1d:38:8e:02:a8:8a:f9:54:78:a7:40:9b:00:
3f:d2:4b:6a:3f:9b:f5:fd:e3:1e:f5:fa:c9:95:c6:
5e:64:e6:ba:50:ee:24:fd:84:b0:15:91:6e:b3:9c:
e3:a0:22:e3:9e:25:81:fd:38:82:2e:3c:35:8b:f4:
85:42:52:95:a0:51:31:f1:ce:e1:7e:6f:c1:e9:37:
66:0c:70:d9:f6:10:13:08:f8:4b:cf:03:ac:21:3d:
d7:af:41:0b:ac:04:33:16:2d:91:a9:e5:75:c0:06:
2c:9e:22:56:76:2b:c9:42:ab:d7:4e:64:be:51:fb:
16:6c:12:e8:2e:f2:49:83:a1:e8:50:4e:46:3e:bf:
06:a5:49:36:35:57:16:dc:30:58:27:60:2b:4c:ce:
d9:14:3f:bd:9a:e6:85:79:51:ed:07:b4:ec:be:6d:
19:f4:3e:c5:7d:bc:f7:e0:ef:81:16:76:a2:f0:50:
60:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:2A:CA:23:43:2F:36:05:56:06:C5:B0:61:5E:04:80:30:70:FD:6B
X509v3 Authority Key Identifier:
keyid:DA:A8:72:FF:9A:04:44:6B:71:8A:8D:9F:47:55:4B:FA:58:1B:3A:0E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F362793F/065D4DBAA64311EF8B4D3E8B762E951A/2qhy_5oERGtxio2fR1VL-lgbOg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/2qhy_5oERGtxio2fR1VL-lgbOg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F362793F/065D4DBAA64311EF8B4D3E8B762E951A/FC601FE8B87D11EFB11B5D5B762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.67.133.0/24
Signature Algorithm: sha256WithRSAEncryption
0d:0f:9d:28:e2:cc:69:c4:bd:8b:bf:4c:8b:9d:ae:87:7d:4f:
2c:7e:42:59:d2:56:e2:8e:9f:5a:da:fb:42:2c:09:24:a8:2a:
28:4a:19:1b:20:bb:30:55:e5:34:97:64:cb:70:8c:04:bb:02:
36:0c:80:28:3c:e8:9e:0f:f6:f1:0a:88:39:42:08:ac:89:0d:
ac:a7:50:b5:bd:63:da:47:9c:5e:1c:73:d9:f6:c5:b9:84:2b:
09:1d:88:ca:ee:77:a7:87:41:72:96:4f:35:47:ad:58:b6:a6:
6a:73:29:ee:6f:41:82:c1:dd:45:24:c2:6c:47:41:f0:5f:25:
97:4d:8d:ac:f4:85:ff:31:e2:2f:b4:d2:d7:6c:e7:3d:e5:93:
4a:4c:4c:67:68:8e:60:0e:27:60:be:af:45:29:51:7d:f4:46:
b7:06:d8:ad:40:89:b4:c2:4d:9d:b7:85:0f:99:d4:83:f3:16:
77:ee:89:25:d2:3e:16:b2:c9:03:0a:b4:35:3f:e9:7e:79:cf:
ba:8c:48:da:f7:91:8f:3c:63:eb:a6:7f:78:32:ca:a6:c4:46:
e3:9a:31:f9:72:e1:a8:fb:53:08:08:ac:84:27:af:df:f6:09:
5c:63:f4:39:2a:a3:6c:ad:86:97:85:05:c8:df:de:9b:dc:b8:
f8:52:f9:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 01:53:12 2025 by rpki-client