Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/49E852E816BC11F0A399D6BF6DB8BCC6.roa
File: 49E852E816BC11F0A399D6BF6DB8BCC6.roa (raw, json)
Hash identifier: lM4ztCsGBPlPii9jnqFy8+89UgH7uggBvfDmAoOxZO0=
Subject key identifier: F1:3F:8F:F2:FA:47:35:61:50:F6:AF:C5:92:F4:C8:0F:DB:D1:5B:1D
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0178F1
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/49E852E816BC11F0A399D6BF6DB8BCC6.roa
Signing time: Fri 11 Apr 2025 10:04:00 +0000
ROA not before: Fri 11 Apr 2025 10:03:56 +0000
ROA not after: Thu 23 Apr 2026 10:03:56 +0000
asID: 215123
IP address blocks: 154.194.35.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 30 Apr 2025 00:06:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 96497 (0x178f1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 11 10:03:56 2025 GMT
Not After : Apr 23 10:03:56 2026 GMT
Subject: CN=67f8e910-a2c1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:83:10:2b:e9:dd:11:34:36:08:de:73:fd:38:
0d:fa:41:e5:41:02:5d:27:dc:36:9b:f3:38:7d:50:
28:0b:ec:e3:2e:60:ef:43:81:65:fe:38:9d:65:8f:
46:3c:25:c5:d1:4f:60:90:21:c3:16:35:ff:74:14:
5f:80:1f:6c:be:96:39:b5:cf:54:1b:4c:b9:66:e1:
f6:d1:af:a1:35:55:1d:23:50:cb:e5:00:41:c4:0b:
91:d7:77:6c:d5:fa:bb:2c:04:ad:8c:5f:0d:94:93:
f1:ff:0d:17:f9:a2:d4:bd:59:2e:54:85:f8:a7:a1:
6e:00:94:87:11:a5:ee:e3:34:2d:e5:c0:8c:24:3f:
e1:1c:bb:a8:4a:22:23:8f:82:0e:5f:bc:b9:c1:01:
72:1a:66:1f:e2:e2:19:2e:c2:c8:d4:b8:e2:c3:62:
d6:29:50:fa:23:59:fc:3f:4a:c5:e6:f6:41:3b:0a:
2f:ae:20:d5:52:b3:d7:b2:86:c4:fe:1d:7d:18:ee:
40:ac:e6:26:98:fd:9f:67:43:a4:b1:d7:c3:c8:c7:
16:d3:dc:e1:8f:f3:9c:a6:55:8d:30:07:72:8f:ca:
06:b7:b4:de:58:8e:f9:a5:f3:15:83:43:d0:d8:bc:
45:5f:d9:3b:15:3b:98:6c:b4:e9:45:d0:54:5e:f0:
18:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:3F:8F:F2:FA:47:35:61:50:F6:AF:C5:92:F4:C8:0F:DB:D1:5B:1D
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/49E852E816BC11F0A399D6BF6DB8BCC6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.194.35.0/24
Signature Algorithm: sha256WithRSAEncryption
39:a9:4b:4b:ba:b1:46:be:9b:bc:72:42:99:72:98:f3:7f:13:
b2:8f:b8:ee:5d:02:3f:bf:41:80:2e:56:d6:eb:64:4f:12:d9:
8f:7c:b8:43:69:d0:1b:cb:9f:fe:2e:bb:e4:cf:79:ed:76:cf:
14:9b:ae:9f:44:c6:bc:9b:e4:ef:c8:e2:8e:03:a1:0f:e9:41:
01:99:46:00:30:4a:31:48:28:82:4b:c2:6d:87:73:c0:62:47:
0a:3a:65:a7:87:f1:e7:85:54:8d:be:3c:8f:23:8e:3e:23:50:
9a:3a:e9:d5:81:62:d1:ae:cb:ac:ea:ee:4c:0a:f7:85:a8:c6:
aa:f0:88:f0:b7:a0:3d:8e:c0:5a:9e:32:c4:1f:ef:4a:48:f1:
1b:5d:99:00:46:f5:45:69:19:03:5c:8d:55:ee:ec:db:61:3b:
4b:d2:65:88:ef:8c:ce:82:1a:88:f3:e8:a1:ae:dc:23:bd:88:
5f:53:c4:2a:dc:81:b7:0c:19:b3:3c:98:05:f6:37:f0:e9:1f:
48:c9:b9:c6:4d:10:37:f9:b5:3d:90:64:7d:70:71:ac:0b:68:
ec:76:cc:32:0c:a7:36:f2:e5:f8:5b:d7:a7:02:03:9e:76:e9:
6d:ae:0b:4e:30:c4:fe:ec:92:2c:a9:9d:ad:de:8c:5e:d7:40:
0b:07:73:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 17:40:10 2025 by rpki-client on console.sobornost.net