Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6D5E00AE113C11F0A1C86D6A762E951A.roa
File: 6D5E00AE113C11F0A1C86D6A762E951A.roa (raw, json)
Hash identifier: gbWZs2NoO9BliM7EbvlY4tNADND+tUob+Kkm48Qus9A=
Subject key identifier: 3C:AF:D4:67:D4:A6:EC:9B:26:4E:FB:B5:35:9C:9A:5C:54:26:FA:82
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0177AE
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6D5E00AE113C11F0A1C86D6A762E951A.roa
Signing time: Fri 04 Apr 2025 10:06:08 +0000
ROA not before: Fri 04 Apr 2025 10:06:04 +0000
ROA not after: Sun 11 May 2025 10:06:04 +0000
asID: 214143
IP address blocks: 154.197.60.0/23 maxlen: 24
154.197.80.0/23 maxlen: 24
154.197.86.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 28 Apr 2025 00:08:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 96174 (0x177ae)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 4 10:06:04 2025 GMT
Not After : May 11 10:06:04 2025 GMT
Subject: CN=67efaf10-0796
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:e1:c3:29:b5:7a:a6:4c:e7:32:a4:43:5b:0b:
48:2d:a9:e9:de:6a:12:97:ce:d3:39:a9:0b:0a:07:
13:bf:06:06:f4:2b:1e:20:c5:2c:63:4b:1d:94:09:
e7:be:35:fa:2a:5a:a0:40:06:ae:dd:05:2e:f5:68:
42:26:df:59:ee:2e:12:e2:24:77:e5:f1:6a:11:3b:
33:1d:82:48:86:48:7e:2b:a0:11:ee:a6:16:24:6c:
49:22:3d:e1:17:6c:7c:47:b2:b1:95:9f:72:90:3b:
16:27:7b:de:5e:96:0c:e1:8b:15:b7:57:d5:75:5d:
82:21:1c:c7:9f:5b:c8:82:20:20:f9:e4:14:8f:85:
c5:52:cc:23:13:8a:3a:27:86:1e:6a:f5:7d:9a:55:
2b:9b:88:a1:d3:63:0f:4f:26:dc:b4:a1:d9:e3:15:
03:74:03:76:e7:66:5d:d6:cd:8d:90:da:d3:12:9e:
ae:31:d3:3a:e8:ad:ac:4d:db:23:47:2c:92:74:35:
f5:57:c5:0a:7f:84:be:73:3f:46:69:15:e6:a6:55:
38:9e:1e:cb:7c:dd:ac:b2:b9:bf:4b:18:1d:c9:a7:
52:ec:8e:c7:f8:b1:98:6b:fd:5b:ed:40:00:1e:8a:
7c:77:c3:b1:d2:0a:9c:30:68:e3:5c:92:5a:cb:86:
2e:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:AF:D4:67:D4:A6:EC:9B:26:4E:FB:B5:35:9C:9A:5C:54:26:FA:82
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6D5E00AE113C11F0A1C86D6A762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.197.60.0/23
154.197.80.0/23
154.197.86.0/23
Signature Algorithm: sha256WithRSAEncryption
3f:e3:90:53:72:c9:9b:47:c3:c3:99:5c:f9:ea:36:e5:1a:80:
8e:5c:80:8c:50:4a:98:b5:68:83:9e:e0:c7:8b:29:13:72:da:
9d:ec:04:f9:32:13:a7:e5:c3:72:7e:9b:9e:78:70:55:02:49:
00:02:9b:e5:0a:5c:ae:c4:83:3b:3d:08:1c:ef:9d:cd:e7:c0:
65:76:b8:e6:29:72:8b:42:37:e7:05:d5:ee:fe:af:24:cd:e6:
f7:ae:4e:88:37:97:12:ee:6b:f1:0a:fa:c5:37:4a:11:6e:bf:
e1:f1:a8:c1:5f:10:d1:98:fc:34:a6:80:5e:ba:89:54:2d:cf:
59:7e:7a:4b:56:ef:47:93:6e:09:3c:fb:49:ce:1b:83:f5:33:
67:05:5a:44:e1:cf:cc:83:b4:fe:d3:7e:ae:0c:24:7c:bd:7a:
09:c3:25:b5:b5:f9:63:1c:08:44:64:86:a7:08:e4:9f:eb:78:
0a:91:fa:5f:e4:5d:5b:1f:cf:8f:c4:9b:6b:d2:15:0e:5c:74:
46:14:04:8a:1e:1a:d8:07:0c:78:70:fe:48:da:24:56:1e:89:
3a:1c:28:6a:6d:b3:41:fa:93:4f:0b:19:78:1a:53:0c:52:dc:
34:33:ad:eb:c4:c7:e9:17:c3:90:da:02:e5:b3:b1:65:4f:ab:
75:ba:02:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 08:47:36 2025 by rpki-client on console.sobornost.net