Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F363DCF2/8827F5DCDCBE11EFB15840BB762E951A/D6E208F6210C11F0A4C7E78FDAE4EC9C.roa
File: D6E208F6210C11F0A4C7E78FDAE4EC9C.roa (raw, json)
Hash identifier: UTbJHvdCycZUQvLa3nWOWV1moJ9jZms3ZBFk0hjIuSc=
Subject key identifier: 4B:00:0F:60:64:0A:09:DF:C8:C8:EA:20:81:38:36:5A:68:2C:9A:42
Certificate issuer: /CN=F363DCF2AF/serialNumber=244692DAC62184E4C88357A526AB9C66F94A4C7E
Certificate serial: 5B
Authority key identifier: 24:46:92:DA:C6:21:84:E4:C8:83:57:A5:26:AB:9C:66:F9:4A:4C:7E
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JEaS2sYhhOTIg1elJqucZvlKTH4.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F363DCF2/8827F5DCDCBE11EFB15840BB762E951A/D6E208F6210C11F0A4C7E78FDAE4EC9C.roa
Signing time: Thu 24 Apr 2025 13:05:48 +0000
ROA not before: Thu 24 Apr 2025 13:05:43 +0000
ROA not after: Mon 31 Dec 2035 13:05:43 +0000
asID: 30992
IP address blocks: 154.70.96.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F363DCF2/8827F5DCDCBE11EFB15840BB762E951A/JEaS2sYhhOTIg1elJqucZvlKTH4.crl
rsync://rpki.afrinic.net/repository/member_repository/F363DCF2/8827F5DCDCBE11EFB15840BB762E951A/JEaS2sYhhOTIg1elJqucZvlKTH4.mft
rsync://rpki.afrinic.net/repository/afrinic/JEaS2sYhhOTIg1elJqucZvlKTH4.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 30 Apr 2025 00:06:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 91 (0x5b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F363DCF2AF, serialNumber=244692DAC62184E4C88357A526AB9C66F94A4C7E
Validity
Not Before: Apr 24 13:05:43 2025 GMT
Not After : Dec 31 13:05:43 2035 GMT
Subject: CN=680a372c-7aae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:d9:6e:56:fc:10:99:22:21:24:cb:02:94:29:
36:45:6c:4b:ea:e0:44:bc:52:2a:ad:87:ba:53:71:
75:a4:58:97:83:c6:39:dc:8d:78:3b:ad:3c:3b:2b:
25:5e:53:84:16:e9:70:c4:eb:8c:ed:c4:af:5c:03:
a9:6e:d0:84:dc:34:7a:cb:0d:e2:0c:78:42:f1:f6:
3a:36:d7:51:a1:4f:b3:df:fa:9b:17:49:33:d1:32:
04:9b:4b:a1:10:c6:0b:fe:ec:1b:d1:d5:11:3a:f4:
08:cb:95:6c:be:b3:cc:5b:ae:ee:fd:b6:24:ae:ff:
fd:20:30:0c:be:4b:e9:8d:ed:8e:ec:59:e0:66:62:
4e:7a:55:50:cb:44:6d:21:83:8f:d7:ea:95:b5:36:
d6:56:80:8e:18:af:55:d7:13:4b:cf:6c:9f:59:e4:
09:7f:a4:c6:1f:6a:26:17:4d:8d:50:e7:d1:09:7a:
58:e5:9a:c1:50:9e:b4:41:f0:f6:0f:4c:d7:0a:6d:
b5:68:56:32:d4:f1:9d:84:b2:f1:73:5c:57:2f:65:
11:4d:74:a5:76:3f:ad:c2:f5:67:4b:6e:04:5b:fb:
49:b2:8f:c8:83:48:5a:c2:68:8f:bd:5c:ab:43:c7:
52:bd:01:69:62:9b:fc:09:e7:5b:aa:78:85:39:b0:
9c:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:00:0F:60:64:0A:09:DF:C8:C8:EA:20:81:38:36:5A:68:2C:9A:42
X509v3 Authority Key Identifier:
keyid:24:46:92:DA:C6:21:84:E4:C8:83:57:A5:26:AB:9C:66:F9:4A:4C:7E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F363DCF2/8827F5DCDCBE11EFB15840BB762E951A/JEaS2sYhhOTIg1elJqucZvlKTH4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JEaS2sYhhOTIg1elJqucZvlKTH4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F363DCF2/8827F5DCDCBE11EFB15840BB762E951A/D6E208F6210C11F0A4C7E78FDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.70.96.0/19
Signature Algorithm: sha256WithRSAEncryption
3b:01:f6:c7:53:4e:04:77:2d:c0:5d:c0:6b:c3:37:88:e1:78:
3b:d0:4f:c3:14:54:ee:19:23:77:47:6c:60:ee:92:70:46:5d:
4d:1f:d3:be:06:d5:c4:33:44:bf:4b:54:cc:e2:6d:a4:93:25:
dc:3f:67:90:b3:cf:23:28:aa:62:d6:17:f0:f1:0e:8c:8c:1d:
e2:6d:9d:2b:7e:2e:e5:1b:93:c7:5d:65:a0:57:5c:e0:a7:42:
96:91:14:1c:53:6d:42:c5:56:4d:e3:af:46:06:fb:fb:f4:b1:
7c:7d:8a:49:0d:3b:2f:84:5a:05:6c:40:ef:27:66:10:cc:b2:
01:03:c4:f6:c5:4b:d1:c6:31:73:f9:70:ed:7c:f9:14:90:f8:
d1:5f:6b:cb:f1:5b:7e:9a:c9:c6:51:2a:e5:02:f6:0b:d0:b0:
b0:aa:2f:4a:58:4f:ec:2d:00:f7:87:5f:4e:fe:9c:cf:21:d9:
3f:a9:7d:33:8c:a7:9c:48:ba:a7:45:9b:a4:6f:6e:00:d0:a7:
08:cb:8b:90:18:95:75:4a:76:eb:97:19:0b:c7:a7:fb:8d:f6:
f8:dc:4a:ec:53:8b:3f:60:51:f2:c3:82:d9:48:29:85:a2:07:
0e:9b:37:e2:79:5a:f4:40:d7:f4:5c:a5:92:45:6e:62:e9:9a:
1b:e4:77:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 08:23:03 2025 by rpki-client on console.sobornost.net