Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36DA6FB/42AEAED8FE6011EF8424817E762E951A/81829ED6FE6411EF86C6749A762E951A.roa
File: 81829ED6FE6411EF86C6749A762E951A.roa (raw, json)
Hash identifier: p0zc+GDWSPngPzC4UqPmM1kDzoimJaQE4vWQrsCXryc=
Subject key identifier: 4C:F1:87:F6:F7:7E:C9:C1:D8:87:5C:AC:C8:38:61:E7:99:B6:FC:E2
Certificate issuer: /CN=F36DA6FBAF/serialNumber=4CDC3B3D6D06081120DBD6EC236351C75EF64CCC
Certificate serial: 08
Authority key identifier: 4C:DC:3B:3D:6D:06:08:11:20:DB:D6:EC:23:63:51:C7:5E:F6:4C:CC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/TNw7PW0GCBEg29bsI2NRx172TMw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36DA6FB/42AEAED8FE6011EF8424817E762E951A/81829ED6FE6411EF86C6749A762E951A.roa
Signing time: Tue 11 Mar 2025 10:35:09 +0000
ROA not before: Tue 11 Mar 2025 10:35:05 +0000
ROA not after: Thu 12 Mar 2026 10:35:05 +0000
asID: 329393
IP address blocks: 102.210.54.0/23 maxlen: 23
102.210.54.0/24 maxlen: 24
102.210.55.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36DA6FB/42AEAED8FE6011EF8424817E762E951A/TNw7PW0GCBEg29bsI2NRx172TMw.crl
rsync://rpki.afrinic.net/repository/member_repository/F36DA6FB/42AEAED8FE6011EF8424817E762E951A/TNw7PW0GCBEg29bsI2NRx172TMw.mft
rsync://rpki.afrinic.net/repository/afrinic/TNw7PW0GCBEg29bsI2NRx172TMw.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 09 Apr 2025 05:45:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8 (0x8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36DA6FBAF
Validity
Not Before: Mar 11 10:35:05 2025 GMT
Not After : Mar 12 10:35:05 2026 GMT
Subject: CN=67d011dd-7569
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:f5:a9:89:0d:76:7f:67:6b:c5:5a:e9:f9:f7:
c0:3a:50:db:79:6e:31:db:a1:d8:22:95:fa:7e:c0:
4f:58:18:93:22:f2:16:c1:40:9e:73:3b:93:2c:7f:
4c:a5:6a:09:29:7d:51:af:21:04:5d:11:8c:7f:fa:
56:d6:75:1a:36:48:30:12:ba:11:56:8f:89:33:01:
87:70:a6:6b:e1:0c:d7:8a:75:a0:57:f7:8d:df:89:
83:e4:03:03:e6:54:c8:63:df:a0:6e:48:32:30:49:
02:dc:80:a3:73:fb:41:69:9c:3e:97:35:65:95:dc:
4e:ca:84:9f:e6:87:29:a9:ac:68:df:a9:7a:06:65:
2a:9b:8a:4b:bf:67:33:95:4e:b5:76:c8:75:f2:27:
f9:56:7c:c3:7f:5d:f8:26:f9:1e:ee:1d:aa:ab:cb:
09:e4:04:07:02:d6:65:f3:ef:cb:f8:06:96:4f:aa:
6b:9d:6b:80:b8:c7:97:a1:16:25:ef:92:b6:f8:ba:
df:09:6f:66:7f:98:61:0d:ae:d7:c8:b2:0e:42:18:
64:e1:18:1d:93:52:e6:55:f8:d6:e7:c1:97:6d:ee:
9b:56:e3:31:0d:af:49:e3:4d:cc:02:64:99:6a:db:
07:3d:30:60:77:82:eb:98:e6:ae:6f:16:e9:08:08:
43:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:F1:87:F6:F7:7E:C9:C1:D8:87:5C:AC:C8:38:61:E7:99:B6:FC:E2
X509v3 Authority Key Identifier:
keyid:4C:DC:3B:3D:6D:06:08:11:20:DB:D6:EC:23:63:51:C7:5E:F6:4C:CC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36DA6FB/42AEAED8FE6011EF8424817E762E951A/TNw7PW0GCBEg29bsI2NRx172TMw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/TNw7PW0GCBEg29bsI2NRx172TMw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36DA6FB/42AEAED8FE6011EF8424817E762E951A/81829ED6FE6411EF86C6749A762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.210.54.0/23
Signature Algorithm: sha256WithRSAEncryption
38:79:b6:2e:24:0d:51:c0:89:7c:a6:db:36:54:fa:01:6f:6f:
4b:91:f2:47:42:da:c4:02:b8:2e:e0:bb:d6:ea:75:d7:f8:46:
f3:6a:38:1e:ab:f1:d7:09:9f:8e:94:00:f1:f0:32:ce:40:c7:
94:84:cb:63:15:ba:87:72:03:81:4c:93:1e:e2:2e:9c:bc:00:
da:6a:c1:70:dc:fc:cb:bc:25:1b:06:ce:9a:9d:62:19:d0:87:
96:3c:2e:b0:16:6d:13:f2:da:32:9c:b6:17:60:11:26:16:66:
6c:9c:98:eb:01:e0:68:53:24:78:50:2d:51:af:65:2d:f1:ce:
4a:0a:f0:26:88:db:5e:68:e2:2a:0d:80:c1:ec:c6:27:d8:b2:
3d:1d:20:cf:b2:e1:fc:7e:e0:b8:09:1f:6f:77:e9:9f:6a:83:
25:4a:af:2e:fe:7c:42:15:58:2a:e5:e9:8b:58:70:0c:a1:28:
cb:33:60:d3:11:48:2b:dd:98:8e:93:7d:19:42:f1:e7:53:9c:
59:3e:4a:ed:49:ed:5e:79:61:de:55:3f:c0:45:5f:1e:26:30:
72:05:19:b0:de:ae:e7:b7:39:14:4e:51:6c:21:f5:0a:d2:b5:
bc:78:a2:b8:0b:1b:a4:fb:09:79:e4:69:12:fd:05:10:21:5f:
d7:a4:5f:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 21:40:10 2025 by rpki-client