Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/03F038C6E86011EFB299947D762E951A.roa
File: 03F038C6E86011EFB299947D762E951A.roa (raw, json)
Hash identifier: xw2nVpZ+TFDc5QNAinw58uvBQVq3UkskcXEeE645UPQ=
Subject key identifier: 87:19:54:1B:D3:EE:5A:92:26:D3:A3:0E:9E:7C:6D:A0:2F:E7:3E:11
Certificate issuer: /CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Certificate serial: 13BA
Authority key identifier: 48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/03F038C6E86011EFB299947D762E951A.roa
Signing time: Tue 11 Feb 2025 10:07:35 +0000
ROA not before: Tue 11 Feb 2025 10:07:31 +0000
ROA not after: Sat 13 Feb 2027 10:07:31 +0000
asID: 61317
IP address blocks: 102.129.196.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.mft
rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 08 Apr 2025 00:06:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5050 (0x13ba)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36C58D6AF
Validity
Not Before: Feb 11 10:07:31 2025 GMT
Not After : Feb 13 10:07:31 2027 GMT
Subject: CN=67ab2167-4a3b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:37:4f:81:39:9d:38:7f:b7:5b:34:63:83:59:
32:d8:c4:9a:57:81:5c:46:b1:fb:ca:17:ff:1d:b4:
c1:95:97:0e:95:44:c0:81:15:9e:bd:66:4c:6e:86:
09:e1:41:09:cf:48:fa:a8:8a:04:75:91:f8:95:b1:
d2:86:76:fb:d0:6f:df:77:a8:9e:36:1b:81:cc:f4:
71:bf:0c:44:57:3d:00:63:17:dd:f1:30:98:4d:b4:
7c:35:42:6b:82:2c:db:28:40:75:95:ae:6f:f1:96:
b2:2a:76:e9:9d:41:29:ce:f7:37:d3:08:9d:e9:58:
b3:22:1a:26:63:12:7d:3b:71:f6:0b:45:06:5c:be:
47:36:46:04:85:69:1d:a8:8f:9a:c7:ec:17:82:3a:
a1:92:90:d9:2b:84:16:7a:b8:aa:9e:e2:31:11:9f:
9f:ec:c7:bb:d2:95:0b:40:98:b4:c4:ee:a3:ca:79:
4b:32:00:50:a4:fd:25:d7:04:c9:95:a4:18:bf:96:
5d:05:cb:c8:99:3f:07:cf:af:3e:e8:8a:a2:46:6f:
ca:7a:0e:bd:12:87:d9:56:55:0f:eb:2d:a3:ca:a6:
74:85:9f:55:04:87:fc:e0:ef:4c:85:c0:cc:09:48:
bc:6b:41:8e:a8:bc:9e:6c:5d:f7:af:32:4d:60:74:
34:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:19:54:1B:D3:EE:5A:92:26:D3:A3:0E:9E:7C:6D:A0:2F:E7:3E:11
X509v3 Authority Key Identifier:
keyid:48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/03F038C6E86011EFB299947D762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.129.196.0/24
Signature Algorithm: sha256WithRSAEncryption
45:e3:c4:ac:43:78:41:48:aa:05:0a:6e:00:60:5c:aa:91:80:
10:a2:83:50:c0:22:9d:b3:c7:51:6b:06:15:3f:77:4c:e4:6d:
c4:a7:e7:44:9c:4a:24:c5:44:dd:98:f6:5e:f3:10:83:b5:b9:
65:ab:71:d7:53:77:92:ef:55:81:7b:48:5f:b3:f0:7c:31:6b:
f0:c7:9b:32:cd:76:56:ca:7c:7e:a0:48:b9:0b:21:13:8d:71:
f5:c0:4e:24:bc:a5:13:ea:7e:65:40:f8:97:91:9b:42:6e:9b:
b7:88:80:cf:2f:e3:0a:fe:7f:1c:e6:94:a6:20:7e:0c:bd:33:
9b:05:fe:ec:05:2a:99:7b:5c:0a:26:0b:39:33:11:83:5b:dd:
46:da:88:57:c8:21:47:9f:9e:9c:59:c9:14:c7:1e:28:c1:2c:
de:b5:58:54:e3:ce:a6:95:a3:28:f7:34:35:99:23:26:85:2d:
2b:d3:ca:42:f4:f1:9c:92:e1:cb:27:55:4f:49:bb:70:88:cf:
5f:a8:c8:c0:36:30:fa:2a:a1:ea:1f:31:9e:c4:a3:2d:28:d7:
e0:c6:bf:c3:b6:52:74:56:11:dd:d8:b6:27:ae:8d:a0:49:e3:
5e:48:7f:9e:a2:14:e6:cd:23:60:9f:78:ea:9c:24:9f:a9:e4:
d8:94:62:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 23:20:15 2025 by rpki-client