Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/34E6D21CD33611EFB8E2029E762E951A.roa
File: 34E6D21CD33611EFB8E2029E762E951A.roa (raw, json)
Hash identifier: uxnz3FmdAmYGFo8tbWirPkJ0UMwjdpjBpwJYQq8qzQM=
Subject key identifier: A9:53:0B:30:00:58:2C:9C:BA:D1:9A:8B:1A:48:97:5C:74:18:B3:FF
Certificate issuer: /CN=F363BA19AF/serialNumber=6AEA24B099C32B22E4E48BB9F26CF578BEF6BFF3
Certificate serial: 0548
Authority key identifier: 6A:EA:24:B0:99:C3:2B:22:E4:E4:8B:B9:F2:6C:F5:78:BE:F6:BF:F3
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/auoksJnDKyLk5Iu58mz1eL72v_M.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/34E6D21CD33611EFB8E2029E762E951A.roa
Signing time: Wed 15 Jan 2025 11:45:24 +0000
ROA not before: Wed 15 Jan 2025 11:45:20 +0000
ROA not after: Thu 15 Jan 2026 11:45:20 +0000
asID: 53356
IP address blocks: 102.135.41.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/auoksJnDKyLk5Iu58mz1eL72v_M.crl
rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/auoksJnDKyLk5Iu58mz1eL72v_M.mft
rsync://rpki.afrinic.net/repository/afrinic/auoksJnDKyLk5Iu58mz1eL72v_M.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 12 Apr 2025 08:13:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1352 (0x548)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F363BA19AF
Validity
Not Before: Jan 15 11:45:20 2025 GMT
Not After : Jan 15 11:45:20 2026 GMT
Subject: CN=67879fd4-546d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:38:36:e2:88:2a:6b:ca:4e:65:ab:a8:13:1c:
10:0f:7b:56:db:ed:87:fa:58:8c:2a:6e:64:7d:1c:
43:9f:a5:09:73:2b:dc:aa:44:35:60:33:b1:e3:2d:
6d:ae:75:c3:ed:8a:aa:da:ff:33:ca:19:36:5f:b1:
e9:c2:c4:36:2a:23:63:db:8e:21:80:97:76:88:a9:
e7:bc:01:90:ca:3e:2f:f8:d0:35:25:d0:af:1c:b3:
67:2b:85:5e:5a:b2:c7:5a:3b:a6:f2:63:7f:7d:a6:
bf:0a:56:a3:7e:78:63:73:88:7f:c7:64:36:3b:50:
cc:05:43:98:8b:6c:36:f6:a5:40:01:c2:09:2d:b5:
b0:ce:b7:a6:ac:40:cc:88:d6:7a:8c:fb:20:db:f4:
6c:75:ab:5d:ce:a1:3e:32:00:25:f8:e9:a0:3d:58:
57:05:c8:f1:a9:44:ff:82:a5:9f:14:f7:4f:be:50:
d2:3d:22:a5:82:a1:8f:9f:f1:ef:c0:5c:8a:fb:a2:
cc:77:21:97:68:78:e5:8e:69:db:0a:86:52:53:75:
41:b6:36:a9:66:14:01:68:5e:36:f8:e8:e6:2f:f2:
1b:94:db:9f:a2:fe:3d:f5:96:07:3f:33:53:6d:70:
06:62:1b:d3:57:68:72:59:0d:26:98:5b:47:1c:b5:
9b:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:53:0B:30:00:58:2C:9C:BA:D1:9A:8B:1A:48:97:5C:74:18:B3:FF
X509v3 Authority Key Identifier:
keyid:6A:EA:24:B0:99:C3:2B:22:E4:E4:8B:B9:F2:6C:F5:78:BE:F6:BF:F3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/auoksJnDKyLk5Iu58mz1eL72v_M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/auoksJnDKyLk5Iu58mz1eL72v_M.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/34E6D21CD33611EFB8E2029E762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.135.41.0/24
Signature Algorithm: sha256WithRSAEncryption
98:b6:2e:9d:43:ef:55:f0:4b:77:d5:4b:09:2f:b7:57:f6:fb:
bf:bd:98:90:19:2e:67:fe:22:7c:6e:11:61:f9:db:2e:50:18:
71:c7:b9:9d:91:e8:29:b0:41:9d:09:0f:18:24:05:55:cd:ea:
28:49:a5:08:72:47:16:18:38:2f:54:5e:24:43:35:8e:e8:1d:
ad:3c:2f:2e:4e:15:bb:fe:16:12:e7:5b:6e:96:99:a6:fd:5e:
46:9f:ae:80:71:f7:fd:c2:e0:b0:ee:47:f2:98:c7:b9:b2:96:
aa:26:3c:96:32:f3:e6:01:9e:94:b6:0b:b7:e3:ee:37:62:9b:
27:5f:5e:89:2c:ce:31:99:87:f4:a1:50:39:ce:9a:48:53:42:
0c:c9:3d:d4:cf:d4:f7:7b:77:52:a7:27:82:94:81:6a:79:45:
88:8a:5f:41:16:47:14:39:8d:10:92:42:01:81:41:65:b6:eb:
b6:7d:a7:f3:7c:46:fe:56:b8:9d:c1:af:a8:7c:29:49:17:8f:
e5:e7:de:64:8e:82:75:d7:c9:49:e1:de:6d:f5:18:db:9e:d9:
3a:7e:47:a9:32:3c:02:b7:1b:99:85:6e:64:4a:a3:fb:ef:5d:
db:ef:dc:f3:6c:78:b4:eb:7e:24:fd:87:41:13:5a:32:a3:15:
af:cc:ea:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 11 02:04:00 2025 by rpki-client