Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8C0B4E84144E11F0BA9CFA046EB8BCC6.roa
File: 8C0B4E84144E11F0BA9CFA046EB8BCC6.roa (raw, json)
Hash identifier: IbZ0hr88rF0p1Qb011N9Rj4qILWWCiU8Y78iuxI2m5U=
Subject key identifier: 72:01:6C:70:F2:13:7E:DD:2D:CC:39:AF:25:09:A6:CF:6F:49:27:41
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 017858
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8C0B4E84144E11F0BA9CFA046EB8BCC6.roa
Signing time: Tue 08 Apr 2025 07:53:24 +0000
ROA not before: Tue 08 Apr 2025 07:53:20 +0000
ROA not after: Tue 06 May 2025 07:53:20 +0000
asID: 57043
IP address blocks: 154.84.174.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 26 Apr 2025 00:06:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 96344 (0x17858)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 8 07:53:20 2025 GMT
Not After : May 6 07:53:20 2025 GMT
Subject: CN=67f4d5f4-8408
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:c5:7a:fa:0d:53:38:25:81:77:8a:6d:51:64:
58:93:0a:3f:fb:3a:d2:18:64:ca:ad:9f:aa:09:57:
d2:a7:0b:c0:ff:fd:94:7c:10:91:79:52:bd:6c:1a:
54:38:39:09:ea:af:2b:d5:d9:64:81:e1:39:84:fa:
9d:d4:b6:19:30:cc:e6:3f:a3:48:bc:aa:6f:2f:74:
1d:5c:e3:7b:27:fd:81:95:e5:c3:50:a4:1e:74:1f:
85:d7:01:7a:64:a5:23:17:39:dd:3d:be:38:70:30:
37:85:6b:65:fa:0f:4c:25:1e:d7:91:18:cd:80:e1:
66:02:f6:7e:2f:a9:34:64:40:ac:fe:54:ed:b8:cf:
fc:31:f3:b7:e7:31:00:40:f2:5a:04:4c:07:dd:af:
c0:4e:bf:f9:dc:41:a6:88:86:38:6d:52:0e:f7:2e:
1d:55:82:e7:71:7a:d8:32:8c:c1:d2:1b:0f:0a:18:
8f:f1:a8:79:2d:16:2e:b3:00:93:f4:09:4a:98:97:
7b:98:ef:6f:4c:2c:5c:cb:8c:23:e4:8b:05:1c:cc:
e7:f8:40:e5:a7:29:c3:9c:22:1e:25:42:11:f9:c9:
1e:c2:d6:68:f4:e3:e5:ad:39:71:50:25:c5:a3:f7:
7f:7a:63:5c:ea:b8:3b:90:7e:6e:78:b2:27:66:2a:
ee:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:01:6C:70:F2:13:7E:DD:2D:CC:39:AF:25:09:A6:CF:6F:49:27:41
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8C0B4E84144E11F0BA9CFA046EB8BCC6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.84.174.0/23
Signature Algorithm: sha256WithRSAEncryption
a9:08:c0:7f:44:06:2b:95:81:0d:36:e7:44:91:9b:91:4d:01:
5c:fa:37:5c:bf:2b:4f:dd:7d:87:a2:d1:4f:52:29:3f:b3:8f:
17:23:ef:00:af:ab:38:f6:7e:ef:e9:03:60:da:7d:04:39:a7:
0f:bc:a0:e1:84:39:fa:a6:6c:70:7b:ef:81:14:7e:59:bb:34:
a5:d2:cd:d2:93:fc:62:14:c8:a1:e6:7d:f9:1f:26:5d:a2:5f:
3a:8d:b3:30:f7:e6:38:d1:7a:7a:db:6c:7b:2d:9b:38:87:a1:
9b:ae:6f:52:d4:6c:fa:6b:62:f3:f4:f7:d4:d6:39:5a:cd:b4:
1a:00:2b:2d:75:76:b0:32:60:ee:a8:d8:fb:b4:fb:a3:ad:d3:
64:70:58:d3:a6:46:ce:bd:1a:2d:d9:8d:39:d8:bb:16:19:cc:
4d:61:2b:c7:c7:f3:4e:a4:c1:55:4d:96:d6:a8:34:e4:6a:15:
05:60:64:9c:54:27:ec:71:e9:39:a2:3c:75:30:32:7d:de:e0:
92:4c:b3:3d:7a:86:72:3e:d7:46:b4:21:f8:64:92:6c:56:79:
cd:07:04:b2:29:b3:48:60:9b:4f:2b:93:f8:2a:1b:c1:f2:8d:
84:bb:e8:58:23:a0:f3:5b:a3:04:b5:8f:d2:d4:70:d8:c2:95:
73:6c:e8:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 24 18:04:07 2025 by rpki-client on console.sobornost.net