Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/492F3A3E13C811F087AC4147762E951A.roa
File: 492F3A3E13C811F087AC4147762E951A.roa (raw, json)
Hash identifier: NXySwcJWj/tU+YMpHLjIYbsjbuQJ1LlKUzTEgz5c88M=
Subject key identifier: 46:6B:2A:A8:CC:63:32:7F:E9:A8:FF:4B:9F:7D:B4:24:16:12:4B:9D
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01780A
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/492F3A3E13C811F087AC4147762E951A.roa
Signing time: Mon 07 Apr 2025 15:52:19 +0000
ROA not before: Mon 07 Apr 2025 15:52:15 +0000
ROA not after: Sun 11 May 2025 15:52:15 +0000
asID: 211881
IP address blocks: 154.81.184.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 30 Apr 2025 00:06:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 96266 (0x1780a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 7 15:52:15 2025 GMT
Not After : May 11 15:52:15 2025 GMT
Subject: CN=67f3f4b3-71f3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:86:6b:6f:05:3f:bc:3e:b0:c6:f3:8b:c0:22:
94:db:6f:08:eb:a2:9f:9f:4d:cc:9b:04:ad:dc:e9:
48:a7:b1:66:39:7b:3a:b4:e9:34:62:64:01:3d:50:
88:28:af:50:ab:3a:e9:58:a0:2f:3c:28:a9:c8:72:
9c:37:0d:ed:93:ca:ed:cc:e8:86:7a:ea:26:36:47:
d6:c9:ca:6c:f8:5c:ba:98:ba:90:f2:d5:d4:41:5c:
d2:f5:26:a9:e8:0d:05:14:81:d7:48:d6:3c:82:0f:
70:7c:f5:79:5d:4c:30:04:0a:60:78:8d:ac:67:7f:
6a:22:01:e1:99:af:4c:33:8c:49:71:64:af:0d:d5:
83:41:6e:a2:4b:2c:7c:e9:b3:cb:54:2d:10:a7:4c:
16:a9:92:0e:e6:2c:14:6f:28:43:5e:c6:29:fc:81:
64:a2:33:51:13:44:e2:bc:f7:7a:79:ab:bc:4c:ff:
2f:bd:7c:7b:a4:a8:66:b9:1b:6e:4e:b5:3e:54:97:
2a:8c:34:d2:11:18:06:5e:fd:7c:0a:2e:ef:c4:cf:
0f:d2:32:da:1b:8f:ca:46:fc:1b:f8:25:04:5a:52:
be:01:b1:5f:60:c3:75:88:c1:7e:f2:31:2c:1b:f6:
18:cc:ca:86:0e:54:8e:e3:36:4d:95:20:ae:d9:95:
58:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:6B:2A:A8:CC:63:32:7F:E9:A8:FF:4B:9F:7D:B4:24:16:12:4B:9D
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/492F3A3E13C811F087AC4147762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.81.184.0/24
Signature Algorithm: sha256WithRSAEncryption
cb:4e:2e:68:5f:ae:d6:16:e6:91:9d:af:aa:2e:23:9c:eb:30:
c8:04:8d:3b:c1:42:d7:9c:bc:6d:8a:af:57:37:ed:8a:f3:f9:
11:ca:0e:01:98:23:ca:c6:81:dc:34:e9:3f:e6:77:28:b4:86:
2b:86:9f:9d:ca:b0:22:b0:0c:5a:b2:a4:b6:1f:ac:ea:bd:fc:
2d:d5:c7:81:bb:b0:8c:13:09:45:db:95:5c:24:86:c0:2f:39:
d4:64:66:3c:9f:f2:86:a7:54:be:83:cf:f1:bd:46:c4:a4:63:
7a:53:5f:5d:2e:be:cc:03:a0:3b:72:e4:75:a4:6b:e4:13:57:
b3:19:2a:31:88:ad:12:41:d9:f2:ca:2a:81:e4:7c:25:a1:51:
27:82:1e:3e:33:1e:c0:02:75:55:b8:c6:a2:26:dc:16:18:73:
e6:00:b4:2f:ad:1d:17:c1:1e:85:1b:59:27:6e:9d:12:56:81:
4d:07:0c:1e:82:68:92:05:92:62:52:43:18:fa:a9:da:d3:e3:
3d:91:bb:e8:55:87:ed:9a:89:9b:05:30:06:28:1e:9f:c7:4f:
e2:70:13:86:0d:62:a4:e6:e7:0a:6f:9b:62:48:f5:90:18:c7:
bf:0b:59:93:06:59:4c:89:4f:bd:a0:41:76:e0:25:59:57:2c:
fd:95:3c:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 22:54:17 2025 by rpki-client on console.sobornost.net