Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E1B02AC0201B11F0A1F39DC8DAE4EC9C.roa
File: E1B02AC0201B11F0A1F39DC8DAE4EC9C.roa (raw, json)
Hash identifier: 6jNFcDdhmmaJrPw32NaxAvr18Ql+ZDgICKVm8/qFK6g=
Subject key identifier: 34:AB:A5:23:5E:3C:5D:2A:83:CE:AB:A5:3F:2E:EC:85:7C:F2:EA:DB
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 017AAF
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E1B02AC0201B11F0A1F39DC8DAE4EC9C.roa
Signing time: Wed 23 Apr 2025 08:20:57 +0000
ROA not before: Wed 23 Apr 2025 08:20:53 +0000
ROA not after: Fri 02 May 2025 08:20:53 +0000
asID: 7018
IP address blocks: 154.83.214.0/23 maxlen: 24
154.85.12.0/23 maxlen: 24
154.85.104.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 26 Apr 2025 00:06:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 96943 (0x17aaf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 23 08:20:53 2025 GMT
Not After : May 2 08:20:53 2025 GMT
Subject: CN=6808a2e9-b21c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:ff:1e:24:7e:96:a1:89:31:90:99:6c:a7:63:
cd:5b:e0:96:7a:f6:f5:c7:8a:c0:c3:c5:8a:26:62:
ef:94:0e:2b:f9:dd:eb:55:5d:fc:22:f1:53:31:b8:
d8:a9:56:a4:23:0a:c0:a2:2d:57:c4:90:5a:36:50:
bb:98:a8:ea:76:66:26:ea:0c:04:09:ec:8e:a7:b0:
a7:6a:b2:f4:ee:42:89:65:d5:81:48:19:87:bf:33:
af:ad:a7:95:be:08:f4:42:79:74:38:21:f9:ae:17:
7e:2f:05:3e:46:9f:47:67:29:88:15:39:44:95:10:
35:98:e9:f9:a7:ca:95:ff:60:76:ac:55:d4:eb:69:
af:d2:ef:29:ed:d7:64:9e:4c:49:a0:0e:93:7b:5b:
1c:0d:86:f7:96:54:ec:75:5b:96:46:35:5d:47:a9:
0d:c4:1f:76:5e:76:05:55:b5:8b:b0:93:4a:9b:91:
d9:b6:a6:fc:d2:f1:91:df:1f:28:1c:ab:e3:59:0c:
b7:7c:d1:27:16:bd:6e:56:96:34:ec:07:ab:e2:ea:
60:7a:6f:0a:f5:a2:b0:c0:80:3d:64:1a:9a:bc:11:
09:1f:89:d5:7f:ca:8a:3d:89:4a:32:69:16:f9:cd:
14:d4:70:16:ea:e2:c9:1b:90:2f:6e:ff:f1:ac:92:
37:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:AB:A5:23:5E:3C:5D:2A:83:CE:AB:A5:3F:2E:EC:85:7C:F2:EA:DB
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E1B02AC0201B11F0A1F39DC8DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.83.214.0/23
154.85.12.0/23
154.85.104.0/22
Signature Algorithm: sha256WithRSAEncryption
88:6a:6d:94:8e:90:b9:2a:ab:4c:00:a7:ae:14:99:20:99:4a:
3c:4c:d5:a5:16:f1:59:f4:df:c4:e3:9d:a9:16:3b:21:5f:94:
b0:c7:1d:c8:61:92:76:47:8b:c7:35:2f:d5:4f:ca:28:1c:ab:
94:7f:40:05:ea:d2:a9:81:43:a9:dc:5b:e7:3a:d7:0e:fc:44:
49:c9:0d:30:67:dd:eb:23:ba:f4:b1:ff:66:c9:18:d1:50:b0:
a2:b8:05:b6:13:9c:8d:45:fc:3a:4c:4d:87:52:77:15:5f:fa:
63:a3:81:3c:00:0f:26:9f:74:e8:d8:bf:ae:54:97:6d:1e:c2:
16:0b:39:d4:df:94:ae:0e:b1:26:37:fd:2e:7d:7a:96:b3:8e:
51:c4:57:fd:12:99:a1:69:2f:ce:b3:35:ae:39:f5:c8:8b:2b:
38:1a:f4:b7:32:76:fd:74:29:ff:53:2b:8b:4a:61:f8:13:3c:
47:50:dd:b4:c3:4e:10:32:9e:cf:a7:b6:7d:76:ca:49:32:c1:
4d:2a:1a:db:be:28:c8:62:1b:58:24:7f:56:c1:6a:d0:02:cf:
02:79:b5:ce:d1:0e:de:a0:57:fc:6f:dd:69:7b:fc:1e:45:c0:
66:ee:4a:82:b2:99:2a:b5:b9:3a:59:4d:88:4d:ea:c8:f9:ef:
7f:e1:1a:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 24 18:04:44 2025 by rpki-client on console.sobornost.net