Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/CBBE4AAC151311F08817C7AE6DB8BCC6.roa
File: CBBE4AAC151311F08817C7AE6DB8BCC6.roa (raw, json)
Hash identifier: r/AwEwVbmF7gGof4vNFNnGdp5bSJTnRKdUSqE0T+0b8=
Subject key identifier: E3:C6:98:4E:53:E7:31:5A:90:B1:DB:D5:83:3A:6F:4E:CA:2F:2F:04
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01786A
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/CBBE4AAC151311F08817C7AE6DB8BCC6.roa
Signing time: Wed 09 Apr 2025 07:25:22 +0000
ROA not before: Wed 09 Apr 2025 07:25:18 +0000
ROA not after: Thu 08 May 2025 07:25:18 +0000
asID: 140869
IP address blocks: 154.81.32.0/24 maxlen: 24
154.81.33.0/24 maxlen: 24
154.81.34.0/24 maxlen: 24
154.81.35.0/24 maxlen: 24
154.81.36.0/24 maxlen: 24
154.81.37.0/24 maxlen: 24
154.81.38.0/24 maxlen: 24
154.81.39.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 28 Apr 2025 07:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 96362 (0x1786a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 9 07:25:18 2025 GMT
Not After : May 8 07:25:18 2025 GMT
Subject: CN=67f620e1-b44c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:75:b3:ea:48:9b:b3:e2:99:3e:66:01:d9:60:
ed:ff:79:90:04:41:11:26:98:d0:4d:5d:89:5d:c7:
b0:a0:b9:5a:4c:5c:4e:94:a1:c7:04:d3:0f:10:1a:
10:d4:e0:9f:5b:5e:74:a4:7d:a1:c7:31:e9:d3:d6:
6e:67:6d:bc:94:c4:35:0d:a8:27:6d:31:58:57:ed:
c9:eb:e4:c1:0d:9f:e1:c7:be:58:ef:0e:30:9a:a7:
df:ef:48:18:b4:0b:fa:75:03:3e:90:5b:b3:07:55:
ab:ec:ea:8c:0a:f1:a2:67:82:73:ff:c1:70:e8:af:
23:4b:a8:cb:00:21:60:9c:6f:93:be:86:b1:e3:6b:
34:44:e8:32:b6:ce:59:aa:5f:bd:46:49:3b:d6:5d:
54:c6:88:9f:5d:29:ef:72:a1:36:8d:9a:0b:19:c4:
3c:4c:db:c4:ef:04:7f:d2:c9:e4:b2:15:e1:58:3c:
05:65:85:4f:2c:d7:9c:c4:94:54:c1:11:ec:4e:9b:
8f:88:b5:c3:cd:b8:f7:dd:e9:5d:b6:85:69:b6:46:
31:90:a9:28:ac:95:a3:b0:e0:6e:a2:b7:8e:b1:27:
8e:b6:dd:9c:70:9c:46:3f:a3:d3:0e:0d:fd:88:de:
5a:22:87:e9:b9:5e:cc:82:c9:01:89:31:41:82:09:
ee:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:C6:98:4E:53:E7:31:5A:90:B1:DB:D5:83:3A:6F:4E:CA:2F:2F:04
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/CBBE4AAC151311F08817C7AE6DB8BCC6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.81.32.0/21
Signature Algorithm: sha256WithRSAEncryption
b6:5a:f4:1e:d9:5c:95:e4:7f:7d:a5:c3:d4:5a:71:5d:70:24:
e9:51:dc:00:b8:b0:6b:4b:a1:d4:57:17:01:2b:4b:9c:c7:38:
68:59:9b:41:3d:47:21:4f:5b:07:7f:82:4b:6b:b4:86:74:fb:
a5:1e:47:74:7a:e4:f8:70:b3:36:4e:0e:f9:2d:32:f2:57:dc:
46:f7:b4:e1:d3:04:96:81:b0:27:8b:65:a6:16:48:69:13:50:
ee:0b:87:05:49:f8:12:36:0a:3c:e0:71:f1:c2:45:f8:33:85:
38:7b:c9:1c:a9:78:90:1f:5f:f8:4c:18:1a:36:d3:95:3d:df:
09:be:68:71:16:00:9e:bf:8f:36:d7:6c:77:c2:d2:2c:41:0f:
0a:5b:46:29:86:1e:f0:ad:ea:52:37:c4:38:8d:bb:b2:73:49:
bf:ce:72:30:fd:21:11:fc:e6:6a:20:5a:36:4c:8e:3e:98:04:
9f:ae:3d:60:e7:7d:3c:eb:6d:be:2b:2e:cb:ad:cd:4c:19:97:
7e:3c:4e:2a:e8:9f:a4:42:18:88:6b:2e:04:ea:01:74:a9:0f:
4d:15:d7:c8:67:02:d0:cf:c3:81:d5:c1:71:5d:e9:90:09:2d:
d7:57:82:da:30:f9:7d:d1:56:77:e1:57:2d:69:e2:60:84:6c:
d3:e4:06:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 11:18:48 2025 by rpki-client on console.sobornost.net