Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A7D03B6215E711F0B05F00B56DB8BCC6.roa
File: A7D03B6215E711F0B05F00B56DB8BCC6.roa (raw, json)
Hash identifier: eoqcl7F7UEN1mfY+IHodIqnnFCv2vTBde5pUeVciS4g=
Subject key identifier: 1D:CA:59:CD:47:BD:4F:87:27:76:7E:D3:94:4E:2C:B3:02:AF:45:E9
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0178AF
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A7D03B6215E711F0B05F00B56DB8BCC6.roa
Signing time: Thu 10 Apr 2025 08:41:55 +0000
ROA not before: Thu 10 Apr 2025 08:41:51 +0000
ROA not after: Fri 16 May 2025 08:41:51 +0000
asID: 57043
IP address blocks: 154.84.166.0/24 maxlen: 24
154.84.181.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 26 Apr 2025 00:06:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 96431 (0x178af)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 10 08:41:51 2025 GMT
Not After : May 16 08:41:51 2025 GMT
Subject: CN=67f78452-115e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:cc:c5:97:a5:91:26:0d:3d:70:a4:bd:48:13:
65:91:d8:45:80:78:65:91:d9:d4:06:8d:c4:47:6a:
f4:a3:c7:93:3b:4e:57:4f:3d:ee:15:17:e4:43:26:
8c:fa:02:f0:b3:83:1d:27:66:62:17:3f:69:ff:da:
48:6e:83:18:a5:72:d2:16:bc:e2:2e:ca:53:04:98:
32:cb:6d:e5:83:c0:9b:65:fc:b0:bb:a6:fa:8c:75:
e6:4b:84:5a:6d:a4:37:61:13:53:aa:b3:94:c8:81:
03:92:17:84:d2:5b:69:c9:6a:94:67:3c:a4:da:7c:
42:e2:95:84:33:3a:b2:fb:f0:42:15:d8:b7:23:a6:
7d:a7:ea:e4:80:0a:04:d0:01:70:83:09:cf:4f:5a:
57:8e:21:d4:46:fd:44:62:c6:c5:42:a5:ac:2a:68:
e0:37:8e:e0:54:52:7d:fc:b7:97:0d:f7:4a:df:0b:
76:c7:97:2f:55:de:2f:18:41:1b:a5:c9:ea:0a:82:
0a:81:c4:7a:70:6d:1b:a0:ac:b4:10:ec:cc:c1:aa:
c7:7b:36:eb:6f:61:01:69:ad:d0:4d:05:16:3e:af:
3b:cb:43:76:2e:9b:4b:70:ea:74:47:4b:0e:07:a1:
71:74:69:6f:e0:a5:a0:88:d1:3a:8a:c9:1c:e6:52:
46:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:CA:59:CD:47:BD:4F:87:27:76:7E:D3:94:4E:2C:B3:02:AF:45:E9
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A7D03B6215E711F0B05F00B56DB8BCC6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.84.166.0/24
154.84.181.0/24
Signature Algorithm: sha256WithRSAEncryption
86:93:60:49:0b:ff:62:2c:67:34:1a:f6:9e:21:28:13:5e:e0:
73:09:02:21:9e:26:43:e0:a7:b0:e3:c6:00:a8:d2:c2:94:7c:
bf:f6:80:65:b4:20:3e:3b:f8:7a:7a:e5:46:3d:1f:da:e6:7a:
93:2a:9a:f0:52:b5:65:41:8a:65:7c:ac:bc:ee:7a:dc:0e:51:
26:1e:04:43:8c:01:b2:59:81:02:b2:86:03:c4:1f:88:2d:30:
6d:87:eb:bf:11:c8:17:cf:9c:b6:09:02:8a:10:b2:c7:46:e0:
be:82:c0:55:46:d0:52:61:bf:b5:73:7b:47:ea:fe:46:14:e5:
20:19:04:87:fd:b6:b7:95:11:a7:24:03:7a:c2:3a:81:f3:6e:
14:22:af:0e:8b:69:7d:06:e7:ee:20:36:c1:86:63:2f:95:ea:
59:32:3e:3b:d6:06:22:64:4a:4c:72:3d:ef:dc:c1:7a:b6:4b:
56:8b:20:d2:1e:fb:8f:4a:72:5f:56:05:95:4b:46:de:35:69:
c5:92:75:d0:0b:6a:6b:ec:91:95:e9:7e:dd:e6:fe:22:62:71:
6d:7a:c2:73:03:d1:8e:49:c6:7e:77:69:9e:90:30:e8:53:c8:
f1:1c:02:80:00:1c:a5:ef:7d:52:57:97:8e:25:82:7e:7f:f1:
3b:40:f7:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 24 18:04:17 2025 by rpki-client on console.sobornost.net