Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5835A94C15F711F0BADFEB196EB8BCC6.roa
File: 5835A94C15F711F0BADFEB196EB8BCC6.roa (raw, json)
Hash identifier: IgV0knzURE7Wba5jH03RVmqKK6IFdNZ96PPAvy11ioM=
Subject key identifier: EF:F2:9C:26:53:22:04:77:CA:F6:46:61:DC:F2:8F:EC:7E:A2:27:FA
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0178CE
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5835A94C15F711F0BADFEB196EB8BCC6.roa
Signing time: Thu 10 Apr 2025 10:34:13 +0000
ROA not before: Thu 10 Apr 2025 10:34:09 +0000
ROA not after: Mon 16 Jun 2025 10:34:09 +0000
asID: 272854
IP address blocks: 154.197.1.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 29 Apr 2025 00:06:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 96462 (0x178ce)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 10 10:34:09 2025 GMT
Not After : Jun 16 10:34:09 2025 GMT
Subject: CN=67f79ea5-58b7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:e6:61:72:d5:54:3f:db:97:f5:87:2d:19:f2:
2c:5a:d3:72:37:a4:f3:29:94:da:1c:af:8c:3f:82:
a6:e1:7b:f5:e4:93:5c:b9:8d:4d:6a:67:03:e1:5b:
d3:d4:45:63:cf:9d:c5:f1:79:b7:34:e7:b9:83:c0:
76:97:ab:c1:8f:f5:be:0d:57:41:f6:85:e9:9d:e6:
c5:54:c8:27:a1:09:4b:31:a4:ca:0a:1e:cc:50:dd:
08:c7:27:63:be:df:7f:1d:89:89:2c:1d:1e:90:a9:
a0:16:e4:b4:6d:b5:51:a9:f3:ea:d3:2b:15:1f:b9:
dc:c6:d9:82:9b:76:40:30:69:39:c6:8a:cd:99:15:
be:3e:50:c6:11:bd:2b:fd:ae:40:f4:a4:a5:1b:1b:
da:05:13:ae:88:cb:b9:89:1f:df:b5:0a:07:03:04:
db:ca:19:fe:aa:98:ee:0e:c5:85:91:2a:2e:84:69:
72:f7:6e:61:c4:88:79:36:6f:16:c9:db:de:32:e2:
81:ef:ea:bf:35:19:d7:cd:f7:dd:50:8a:c4:74:6e:
3b:a7:91:12:f3:ec:5f:28:4e:05:32:67:fc:91:b6:
91:6d:af:3a:87:0e:96:21:7b:13:5e:b8:4c:d5:ae:
cc:34:25:20:e4:93:0a:7c:6a:09:d6:4a:c5:09:71:
17:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:F2:9C:26:53:22:04:77:CA:F6:46:61:DC:F2:8F:EC:7E:A2:27:FA
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5835A94C15F711F0BADFEB196EB8BCC6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.197.1.0/24
Signature Algorithm: sha256WithRSAEncryption
94:15:b9:7e:1a:0b:f7:6c:c6:13:54:46:30:0a:99:03:18:77:
55:ad:b8:b3:46:ac:ef:13:5e:0f:cc:8f:3e:b7:ac:9a:96:e5:
ef:46:bd:f6:5e:30:19:b9:bc:69:91:a1:62:1c:c3:0b:4d:51:
eb:b3:97:2d:d9:8c:e9:ea:14:c3:a4:e7:85:25:94:67:81:d9:
05:a7:34:66:1e:3c:eb:b5:31:97:91:2a:99:be:31:c0:c7:52:
88:26:10:d9:c6:34:6a:3b:9c:42:4b:af:05:d6:4b:13:c7:cd:
0c:4d:6b:74:70:71:79:f1:cc:63:a9:a1:83:00:89:6c:d8:22:
5a:4f:8b:95:9a:e7:f5:bc:58:c1:07:30:97:9e:d4:fd:01:02:
68:5d:36:53:5a:a8:a9:80:45:ee:8f:41:54:c8:c6:53:6c:2b:
f6:35:4a:ea:b8:f6:16:48:4e:97:35:b9:dd:00:b1:19:3b:dd:
9a:62:cc:08:98:b2:4b:7c:8f:d8:fe:bd:e6:3e:27:1a:0e:bf:
62:01:35:fe:c7:3b:ab:27:ea:f0:5c:2e:34:be:52:88:e7:32:
4f:90:5c:b3:58:ec:ce:e8:8b:8c:76:67:d4:57:ce:91:41:9e:
44:03:c4:bb:95:63:4f:7e:f1:b9:34:81:df:f9:8e:a9:6c:97:
24:48:c5:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 14:52:37 2025 by rpki-client on console.sobornost.net