Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1DF01BF813BA11F0AE703673762E951A.roa
File: 1DF01BF813BA11F0AE703673762E951A.roa (raw, json)
Hash identifier: GG0LRdoW8n88PaJSHaLYSV3EwveCZ3/+UUX5w+NEdlw=
Subject key identifier: 96:A6:82:45:D6:38:10:88:E5:77:96:37:B8:B9:A7:B1:18:AF:41:80
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0177FC
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1DF01BF813BA11F0AE703673762E951A.roa
Signing time: Mon 07 Apr 2025 14:10:54 +0000
ROA not before: Mon 07 Apr 2025 14:10:49 +0000
ROA not after: Sun 04 May 2025 14:10:49 +0000
asID: 60223
IP address blocks: 154.81.179.0/24 maxlen: 24
154.81.182.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 28 Apr 2025 00:08:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 96252 (0x177fc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 7 14:10:49 2025 GMT
Not After : May 4 14:10:49 2025 GMT
Subject: CN=67f3dced-f4dd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:6a:81:89:56:9f:20:ad:41:7b:d4:98:13:a3:
33:68:35:f6:1e:f6:17:fc:f5:89:e3:09:3b:16:2c:
25:f2:07:30:2e:96:7c:80:aa:6f:f1:e6:da:d7:e6:
b0:51:f2:62:55:8f:63:28:76:f8:db:8a:75:6d:5f:
23:8f:8c:9e:47:ca:c7:0f:2d:77:5d:6d:c3:07:9f:
1b:a9:1a:a8:4b:36:e9:c9:15:a2:a6:a4:67:96:f2:
02:54:d8:a5:05:82:56:a2:6f:87:e3:ba:05:25:6f:
d7:ec:90:96:1f:ac:48:36:3a:c9:59:d2:d8:4e:92:
b2:15:86:61:ef:f2:fc:bf:30:5c:da:d4:8c:76:b6:
09:52:e4:c9:55:10:b1:b7:0b:04:d1:80:94:55:f2:
bc:20:58:53:fb:b6:aa:6b:c3:97:ce:ac:2f:91:45:
f7:07:26:f2:71:eb:ab:ac:89:c0:c4:7d:a0:08:41:
37:a4:8f:69:38:1c:c6:d3:72:47:7f:3e:d8:a3:2c:
21:89:14:55:b3:58:ed:fc:88:f6:ad:3e:60:23:26:
5d:d5:72:32:7c:40:ea:8d:f7:cc:86:75:17:dc:8f:
07:20:54:74:7d:7c:25:2d:8c:49:af:6c:d6:f1:48:
bd:63:dc:90:54:fd:f0:58:aa:1e:77:22:5f:62:a3:
74:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:A6:82:45:D6:38:10:88:E5:77:96:37:B8:B9:A7:B1:18:AF:41:80
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1DF01BF813BA11F0AE703673762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.81.179.0/24
154.81.182.0/24
Signature Algorithm: sha256WithRSAEncryption
b1:8d:0d:dc:11:72:04:4e:1a:4a:8e:7e:b9:8f:1b:24:a2:d6:
0c:e3:80:39:9b:a4:89:71:bc:75:a3:05:f4:8a:04:75:5e:89:
24:3c:ed:d0:85:74:94:a2:b1:ec:ec:78:0e:36:fb:42:ff:82:
08:b5:db:6d:3e:6e:83:e8:9d:83:67:46:6a:f6:7f:ef:9b:58:
08:7c:5c:9d:bd:d4:5c:d8:d1:91:25:9b:b0:65:25:9d:69:1b:
ee:62:ed:d8:9f:23:a2:3a:a7:21:8a:10:16:b8:7c:5e:4c:51:
53:c8:e6:47:13:66:d5:04:d0:0f:45:9f:fa:51:23:73:52:ed:
29:c2:50:92:67:c2:8d:17:d1:4e:25:de:f3:a1:ed:29:66:ea:
c3:13:13:45:86:d2:7c:8a:7e:b7:72:4b:53:70:d3:18:d6:bc:
fa:ef:74:58:ef:ad:a8:8c:11:08:ba:26:2a:74:f9:2b:ef:a4:
f0:a1:4e:4e:05:f3:00:aa:3d:ed:ab:b8:7e:ac:89:11:57:fb:
a2:c1:a7:e1:02:c7:58:ba:1a:39:01:a2:35:4b:8d:f3:21:16:
b7:05:ee:f5:08:ab:c2:e3:c7:d4:e6:b4:e2:21:da:a0:c4:c2:
85:24:c0:a3:b8:c9:67:0d:92:0a:e6:b6:dc:ab:2e:8d:e8:44:
94:a8:ec:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 06:17:28 2025 by rpki-client on console.sobornost.net