Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/66BA87681C5411F0821D267CDAE4EC9C.roa
File: 66BA87681C5411F0821D267CDAE4EC9C.roa (raw, json)
Hash identifier: u1LisfpMYdkuRsFH+8sFFVJ4mQ8Ds/ur/JjJmqkf0gQ=
Subject key identifier: 03:8D:3A:76:FE:30:13:38:D9:6C:D2:7B:42:9B:06:11:4A:F3:87:CC
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 017985
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/66BA87681C5411F0821D267CDAE4EC9C.roa
Signing time: Fri 18 Apr 2025 12:55:28 +0000
ROA not before: Fri 18 Apr 2025 12:55:23 +0000
ROA not after: Sat 17 May 2025 12:55:23 +0000
asID: 57043
IP address blocks: 154.83.156.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 26 Apr 2025 00:06:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 96645 (0x17985)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 18 12:55:23 2025 GMT
Not After : May 17 12:55:23 2025 GMT
Subject: CN=68024bc0-1839
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:dc:45:8f:c9:37:9d:3d:47:4a:8e:8b:60:cd:
88:3e:f2:96:06:95:bd:89:2b:1f:9a:66:03:76:b7:
63:5b:76:32:9a:db:d3:95:49:e5:88:18:97:24:39:
63:da:25:26:5c:bb:b5:f3:3c:c3:40:1d:24:6e:7d:
98:59:0d:67:7b:53:9d:9a:ba:12:6c:0e:cf:91:ab:
b9:45:86:2b:c6:c0:b1:cc:16:ac:9e:4d:06:1d:43:
3d:97:d7:6e:19:fd:c3:bb:b8:9f:76:b3:6f:b1:46:
86:48:99:ca:44:52:39:01:01:44:17:75:b0:3f:b1:
4b:9a:aa:de:83:fe:22:15:42:98:ad:70:56:b9:1a:
61:5c:6c:2d:a7:bf:6a:cb:ad:98:55:63:f8:9d:5c:
24:5f:cb:50:44:b6:77:3a:d0:e1:ec:4c:ba:fd:9f:
cc:3f:6e:b3:44:5a:c3:14:75:af:f5:86:e5:e7:24:
0d:22:9f:9e:f4:3a:ab:00:f0:f0:9f:2f:35:e3:d0:
b5:b2:b2:11:17:6f:72:dd:f4:13:94:fb:94:fa:68:
a9:7f:77:1d:11:93:1f:f5:24:31:be:22:fb:f1:c3:
f5:48:55:24:c8:29:59:7a:70:80:60:2e:52:73:8b:
d9:f9:75:1f:81:af:de:55:7d:e7:f7:a4:d9:53:ed:
93:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:8D:3A:76:FE:30:13:38:D9:6C:D2:7B:42:9B:06:11:4A:F3:87:CC
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/66BA87681C5411F0821D267CDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.83.156.0/24
Signature Algorithm: sha256WithRSAEncryption
81:4e:e0:10:ca:5c:ea:3a:22:b6:d3:2e:c7:7f:27:e8:9f:39:
27:d6:10:00:d4:ff:b2:01:c7:00:b7:47:94:41:bf:79:1d:de:
3f:c4:96:f5:3a:2e:a8:16:d9:03:3f:cc:94:09:b8:0f:7e:28:
8a:f7:9b:78:d4:02:f4:4c:ea:e7:dd:ec:93:88:47:72:b0:d2:
37:50:39:08:b9:21:fa:ea:5c:b2:7d:fa:07:2b:70:7f:40:07:
34:99:99:63:f3:3e:d9:21:d0:c9:ad:3d:13:4a:44:e3:fd:ef:
66:69:17:57:fd:02:0e:16:b8:98:03:c1:cf:2b:5e:16:bc:c8:
56:99:e9:32:dc:cb:01:6f:d6:c5:81:00:18:a3:a5:92:d3:0c:
93:69:00:77:6a:98:72:84:77:37:6d:ac:c2:9d:35:b3:2a:6c:
3f:01:fa:ae:cb:62:d2:51:88:0d:cf:a1:3c:12:77:a8:4a:2d:
05:9a:88:4e:92:68:8b:0f:3f:85:bf:b5:fe:68:ea:41:b9:8e:
d9:4c:c6:e1:48:5b:9b:62:eb:c1:92:f7:90:cd:1b:f1:04:75:
a8:c1:2d:5f:d1:4f:4a:ee:56:2f:61:3c:1d:4d:38:ed:9a:2f:
5c:87:ba:f9:db:72:73:45:4a:4a:a0:41:33:94:b9:2d:88:fd:
f4:da:26:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 24 18:03:54 2025 by rpki-client on console.sobornost.net