Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/615E2FF813DB11F0B4AA0FB6762E951A.roa
File: 615E2FF813DB11F0B4AA0FB6762E951A.roa (raw, json)
Hash identifier: elyA0+QXSUB8iTGXeigr13lA4ynA4oSlDzObi4aXjoU=
Subject key identifier: 2F:11:87:16:5A:B3:53:68:9B:C1:7A:5B:20:FA:E2:1D:B6:1A:5D:40
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01781A
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/615E2FF813DB11F0B4AA0FB6762E951A.roa
Signing time: Mon 07 Apr 2025 18:09:00 +0000
ROA not before: Mon 07 Apr 2025 18:08:50 +0000
ROA not after: Wed 14 May 2025 18:08:50 +0000
asID: 210542
IP address blocks: 154.91.201.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 27 Apr 2025 00:06:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 96282 (0x1781a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 7 18:08:50 2025 GMT
Not After : May 14 18:08:50 2025 GMT
Subject: CN=67f414bc-b1b8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:3a:64:b8:9c:29:11:d7:8e:ac:26:6d:46:73:
18:1f:40:f6:a4:9e:13:00:84:28:48:9d:98:51:9e:
81:c7:28:ae:66:1d:0d:63:ae:1c:0b:f2:b0:20:c2:
59:77:2d:6c:91:3a:5f:5d:12:b0:a1:3e:aa:f5:5e:
60:f2:45:e3:a9:15:d1:96:26:1e:6a:db:fd:b9:83:
3d:93:e3:89:e7:09:64:b7:ec:a7:7d:ab:f0:0b:59:
1d:92:42:6d:c3:44:9e:fa:42:03:9c:57:ce:d3:e7:
c6:83:31:d8:d3:59:7b:20:bc:51:40:9a:9f:30:8f:
e0:39:73:5e:b7:24:ab:a3:83:28:11:8c:46:62:5e:
b9:0a:9b:91:b9:58:6f:1a:54:6c:f2:bf:93:39:ed:
f2:42:08:bb:52:d9:84:16:09:16:3b:d2:ec:55:a7:
be:b8:36:7b:9c:fb:d7:93:37:33:96:f4:18:c3:53:
f5:0d:d8:dd:0e:c1:1d:46:74:49:ed:1e:14:60:53:
c1:41:3c:8b:a0:9b:12:68:c2:6f:f0:10:60:2a:01:
86:15:3f:c6:f3:9f:d3:61:42:74:e2:02:80:99:38:
b7:88:28:b1:f7:2b:55:6c:97:cc:5b:6b:6f:57:f3:
15:0b:8d:37:62:ce:82:95:2f:a4:5d:c5:12:5c:cf:
b4:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:11:87:16:5A:B3:53:68:9B:C1:7A:5B:20:FA:E2:1D:B6:1A:5D:40
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/615E2FF813DB11F0B4AA0FB6762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.91.201.0/24
Signature Algorithm: sha256WithRSAEncryption
94:3f:90:0f:78:ad:78:c5:2d:49:ea:cc:d1:c8:04:e7:41:06:
80:8c:75:7a:08:93:81:e2:d6:9e:72:56:af:5d:50:9f:b4:8c:
e2:81:ec:d8:09:f7:f2:4d:1e:cc:81:70:11:29:cc:ea:07:11:
b0:c9:14:d1:09:a0:e1:44:27:63:da:c0:90:bb:5b:50:26:1d:
9f:49:1c:b3:85:ae:9e:11:d4:2f:2e:f6:3a:e7:cb:67:49:2e:
4a:c2:de:31:ce:10:dd:a2:2a:1e:79:74:51:01:25:47:ae:e6:
cc:74:ae:20:ae:62:28:ba:65:b9:b8:43:c3:9c:c1:a5:e2:af:
8c:22:12:82:c3:33:d0:ad:fd:9b:fe:95:d6:b1:b7:a4:74:0c:
02:24:87:b9:d0:19:b0:22:74:42:97:69:ca:2a:90:ca:34:4e:
0b:cb:36:71:78:9f:20:ed:d3:7c:6e:b8:91:fd:7f:60:58:01:
0c:86:ab:fc:75:d4:3f:fc:be:aa:a2:57:4c:b9:eb:c0:6b:9d:
a8:2f:94:0f:25:a3:67:70:9b:59:6a:58:89:04:e3:00:32:ac:
35:0b:71:29:cc:23:8a:d2:57:dc:5f:e0:45:63:e2:4e:45:01:
d9:3d:88:eb:af:78:11:f7:27:0c:ec:17:34:6c:63:c0:24:9a:
67:e8:93:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 10:39:18 2025 by rpki-client on console.sobornost.net