Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8315B1E41DF311F0A72C3ED3DAE4EC9C.roa
File: 8315B1E41DF311F0A72C3ED3DAE4EC9C.roa (raw, json)
Hash identifier: +EvjrqucnHeR4mfuUm5DcySv71mS6Kntjsq8YQNhe+k=
Subject key identifier: 27:FE:EA:87:3B:F4:3D:06:0F:8C:B8:E7:B3:0A:5B:EA:54:65:78:94
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 017A30
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8315B1E41DF311F0A72C3ED3DAE4EC9C.roa
Signing time: Sun 20 Apr 2025 14:26:57 +0000
ROA not before: Sun 20 Apr 2025 14:26:52 +0000
ROA not after: Sun 27 Apr 2025 14:26:52 +0000
asID: 9304
IP address blocks: 154.206.47.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 26 Apr 2025 00:06:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 96816 (0x17a30)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 20 14:26:52 2025 GMT
Not After : Apr 27 14:26:52 2025 GMT
Subject: CN=68050430-e27e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:7a:76:a0:9a:d7:0d:0c:34:98:5a:b0:63:53:
34:8a:70:da:95:f7:3e:9e:d3:f0:a2:0f:af:bc:fe:
62:46:d4:00:15:c1:f6:ea:d4:b4:41:e4:30:13:be:
d8:f9:70:cd:86:8e:d9:e0:75:dd:33:8a:10:27:72:
ca:92:69:08:5a:74:a0:32:b2:0f:92:1d:20:da:a9:
3a:74:cd:f2:50:e8:b3:81:79:27:27:4f:a3:a6:84:
73:dc:60:19:1b:5e:08:c5:82:04:f9:1c:6f:0a:db:
53:ad:90:e3:a6:c9:c9:3c:ce:9b:67:ac:6c:4e:e7:
5d:5b:19:cb:7a:0d:22:86:d6:2b:69:63:e4:79:83:
c6:03:eb:88:d1:75:62:89:8f:76:93:19:07:bc:05:
59:d0:b4:0e:57:8f:69:78:01:01:d5:a6:a2:a6:45:
2d:41:1a:bf:09:8c:74:6a:1a:d8:4f:19:55:50:99:
c7:3f:70:e9:07:9a:94:be:92:0a:43:63:38:b3:01:
44:d0:5a:0d:5e:7f:d8:13:14:5e:3c:18:b4:2f:9b:
3f:8a:27:43:08:38:bf:31:9e:fc:2a:92:37:1a:91:
84:43:bb:cf:86:c1:9c:34:15:0e:66:a7:89:fb:53:
8f:95:5c:57:70:d8:17:ed:ee:b8:5e:e0:01:70:72:
f4:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:FE:EA:87:3B:F4:3D:06:0F:8C:B8:E7:B3:0A:5B:EA:54:65:78:94
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8315B1E41DF311F0A72C3ED3DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.206.47.0/24
Signature Algorithm: sha256WithRSAEncryption
c3:46:29:6f:10:d5:58:08:89:35:1e:af:f6:a2:95:e3:b8:93:
41:40:8d:2f:f4:c4:28:e4:21:90:fa:f2:a3:38:ec:07:a6:fc:
3c:1c:ac:cb:0c:9c:08:a0:7f:1b:9d:a7:ec:82:77:1a:d6:7b:
42:48:4e:4d:4a:10:27:6e:93:1b:48:75:07:6c:a8:fe:2f:d2:
84:08:c6:22:9e:aa:15:aa:28:7e:1d:32:57:17:47:f8:8b:3f:
c8:3f:9c:9c:cb:b3:a7:fa:eb:34:f0:a0:89:f4:1e:11:00:0b:
3f:cb:c8:15:16:4d:28:99:74:82:f6:ad:74:c7:e5:50:91:1f:
8a:c2:88:7c:99:37:01:6a:ad:ac:13:c2:f7:e8:f2:45:44:ea:
2a:6e:ff:17:a3:32:9d:82:fd:72:8d:70:dd:c1:3a:e0:f9:96:
b0:ff:21:6a:15:17:6c:43:c1:0a:e6:e3:b3:0a:9b:e2:86:63:
d2:90:d5:36:30:59:d6:0d:5c:60:7c:50:58:68:e8:56:0d:f2:
f7:de:56:a0:10:f6:ca:bc:db:7a:26:9f:5e:ca:c8:1d:cf:f4:
82:13:57:39:a2:0f:02:d4:40:37:88:81:8f:06:a2:74:3e:01:
76:0f:8f:52:28:c4:b3:32:cc:a6:1c:5b:67:f1:ae:0a:a8:2d:
03:dd:69:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 24 04:34:48 2025 by rpki-client on console.sobornost.net