Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/48E114321C5E11F08945A4BBDAE4EC9C.roa
File: 48E114321C5E11F08945A4BBDAE4EC9C.roa (raw, json)
Hash identifier: fSWygmowY4gHJqXVBtmC0BEwwKoT9I12G8Mi+9WEqTg=
Subject key identifier: 4B:5C:F3:63:75:F3:37:5B:D3:D0:57:42:53:76:D0:24:8A:F5:86:D2
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0179A5
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/48E114321C5E11F08945A4BBDAE4EC9C.roa
Signing time: Fri 18 Apr 2025 14:06:13 +0000
ROA not before: Fri 18 Apr 2025 14:06:07 +0000
ROA not after: Sat 24 May 2025 14:06:07 +0000
asID: 138195
IP address blocks: 154.95.24.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 26 Apr 2025 00:06:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 96677 (0x179a5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 18 14:06:07 2025 GMT
Not After : May 24 14:06:07 2025 GMT
Subject: CN=68025c55-b6d4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:7c:2b:7c:a3:eb:32:09:2c:86:7b:dd:40:74:
3e:fe:f7:a9:36:b3:dd:44:12:72:ec:13:96:7d:c0:
18:dd:4d:f2:58:74:a1:0e:18:71:04:af:0e:26:57:
d1:8f:75:03:25:c0:d1:df:1d:1a:39:17:35:42:ab:
34:75:05:af:96:d7:a8:c5:d1:69:ec:2b:d6:a1:85:
67:49:8c:88:1e:29:cd:0a:2f:81:ab:85:b5:4e:62:
06:68:e0:a9:5d:a7:9d:2b:cc:59:98:86:95:70:47:
7b:f3:0e:7e:84:67:bc:00:17:a3:d0:52:5b:05:89:
d5:23:d9:0d:e9:41:02:5d:fc:d0:44:0a:77:66:47:
e1:c1:35:63:96:c3:97:90:87:d2:f0:2d:eb:39:56:
80:62:bf:4d:c7:9f:f3:02:b8:d4:93:e0:88:ed:6d:
78:4c:ae:0e:27:a9:f1:c2:34:ae:45:6c:ae:c5:8a:
a5:f6:c5:c2:63:3b:a3:48:e7:54:5a:c3:8e:a7:ad:
df:db:3e:83:f9:e6:25:25:9a:94:94:18:d1:a7:4c:
7f:31:ff:c2:b1:8e:49:89:76:04:3a:cb:26:c0:73:
ac:80:86:e3:eb:1d:43:9f:59:f1:15:1c:9e:b2:a0:
3c:e7:39:40:fb:2d:0a:c9:e6:5d:7d:b7:7a:5a:08:
32:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:5C:F3:63:75:F3:37:5B:D3:D0:57:42:53:76:D0:24:8A:F5:86:D2
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/48E114321C5E11F08945A4BBDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.95.24.0/24
Signature Algorithm: sha256WithRSAEncryption
3d:58:06:5c:4e:af:01:3e:b6:aa:ee:71:4e:c1:1e:bc:84:db:
bb:08:b3:93:47:7f:87:9a:67:85:ab:3b:94:33:e0:07:58:cf:
6f:55:84:44:78:a8:67:b6:12:10:dd:fa:c6:85:2a:62:28:38:
dd:d4:39:73:14:51:5d:e7:c8:60:b3:1d:54:5d:c9:50:22:ff:
21:9a:3c:34:4e:a4:ad:70:ce:b4:58:dc:cd:b5:27:32:3d:4d:
bf:fc:6b:5a:90:48:52:b8:cd:b6:a2:47:9d:78:a9:1a:89:ad:
b1:c6:ca:f1:bd:9c:45:c2:04:ef:27:5e:e9:c3:fa:8e:6c:4f:
15:0c:9c:02:8b:52:ab:04:b7:a2:d5:5f:bd:6f:02:db:3a:d1:
87:c7:9e:3a:9a:dd:7b:d1:7f:82:82:b8:e4:60:95:cc:36:06:
5a:57:89:2f:c4:ba:ac:aa:b3:b0:fa:f8:15:63:05:c2:bb:f3:
ac:af:bb:1c:ec:70:6e:8a:c7:5e:3f:33:4b:5a:16:28:36:dc:
40:86:1d:cb:f8:3d:38:ff:2f:9d:7f:1b:d8:43:71:79:19:7a:
cb:a2:f4:6f:61:a9:11:75:5d:81:a6:8f:1f:75:00:51:1f:c2:
7c:40:9b:a5:8a:cb:5c:f4:7f:e6:e5:8a:13:79:b1:85:23:78:
08:1c:fe:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 24 18:03:43 2025 by rpki-client on console.sobornost.net