Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E4D7DC6415E611F0872852B06DB8BCC6.roa
File: E4D7DC6415E611F0872852B06DB8BCC6.roa (raw, json)
Hash identifier: csjsSsodBtRKiw50XMfqZoKq5bPRm2eTkA4uauoiVJ8=
Subject key identifier: FD:7D:B3:BE:10:D9:06:26:FF:24:86:7F:52:FE:B0:05:17:84:93:32
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0178AD
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E4D7DC6415E611F0872852B06DB8BCC6.roa
Signing time: Thu 10 Apr 2025 08:36:27 +0000
ROA not before: Thu 10 Apr 2025 08:36:24 +0000
ROA not after: Thu 15 May 2025 08:36:24 +0000
asID: 57043
IP address blocks: 154.193.134.0/23 maxlen: 24
154.193.156.0/23 maxlen: 24
154.193.184.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 26 Apr 2025 00:06:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 96429 (0x178ad)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 10 08:36:24 2025 GMT
Not After : May 15 08:36:24 2025 GMT
Subject: CN=67f7830b-9e9c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:8d:a2:d5:7d:01:c8:dd:f5:42:b4:a2:40:cd:
00:e3:7b:5e:ed:27:bd:17:f0:22:13:93:2e:fe:3d:
57:78:e9:de:cf:63:b7:05:e0:d4:e2:94:69:c1:cd:
f6:f1:30:99:f2:d4:79:5f:91:2e:95:37:85:11:61:
d9:fd:c6:fb:26:88:01:94:c3:17:12:0f:90:70:44:
4b:26:b6:57:f3:b4:34:62:c2:b7:05:34:e6:56:c4:
c7:f7:84:e0:37:0a:ba:74:dd:8d:f8:92:3e:f5:95:
2a:c0:9b:b7:83:87:0b:53:5a:2c:cf:67:f7:08:fe:
ce:1e:f6:8d:2c:a6:63:af:c2:b8:de:33:43:bf:71:
99:3e:d3:46:a3:0e:c0:37:a1:30:2e:d2:ec:0b:58:
40:3f:32:39:12:15:92:06:aa:6b:0c:43:eb:7e:41:
87:06:ae:65:ac:91:e1:f1:0a:92:39:d5:79:2a:0b:
af:77:6b:db:3f:4f:6e:9f:27:5a:61:99:81:6f:82:
13:bd:62:60:72:34:bb:d6:0b:0a:f1:10:91:8a:a0:
66:e7:ae:3c:b5:7e:67:d1:08:3e:a9:c1:d7:d8:b4:
47:30:ca:af:f3:8d:89:91:87:33:5b:87:40:6a:51:
0e:d8:11:a8:97:97:4b:bf:d2:74:cb:eb:b4:aa:4c:
13:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:7D:B3:BE:10:D9:06:26:FF:24:86:7F:52:FE:B0:05:17:84:93:32
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E4D7DC6415E611F0872852B06DB8BCC6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.193.134.0/23
154.193.156.0/23
154.193.184.0/23
Signature Algorithm: sha256WithRSAEncryption
53:ff:27:a6:cf:72:72:48:ec:3b:c8:1e:ce:a2:e7:77:53:46:
1d:79:ee:ef:81:d2:d5:b9:1e:bf:61:80:6c:c7:5e:02:33:24:
ba:ce:ef:e5:36:f7:e4:62:64:bb:ec:6a:6b:ea:4d:2d:0f:74:
be:32:59:ac:83:b6:5c:d9:b0:7e:71:d7:86:72:66:c5:80:33:
42:92:b2:50:13:f6:a0:22:d4:e0:87:2f:44:ac:6c:85:9c:b5:
cb:0e:33:24:fd:80:41:9d:f6:6a:41:4b:46:59:20:e7:40:64:
6c:8f:1d:bf:24:88:4d:22:9c:99:22:47:77:6c:98:19:d4:c4:
9b:7f:ec:9e:1c:70:cf:08:33:7d:73:e9:c1:2f:a2:a1:2a:67:
14:dc:0e:ec:e7:3a:f0:92:17:88:b6:23:d9:23:c7:14:f3:23:
cf:44:7f:4e:63:33:aa:b7:a0:09:f2:e4:7f:12:1c:66:8a:ca:
e7:bc:fa:7c:fb:b1:90:36:3c:83:64:fb:58:16:03:32:f7:b4:
12:a1:4a:bf:bb:3c:e4:1c:77:a5:a9:28:25:bd:1a:20:02:d9:
ac:00:a2:84:e3:0a:92:70:1b:aa:3f:c5:e8:3f:d5:2c:3b:55:
af:42:9d:cf:28:24:a8:0c:f3:29:aa:51:b4:27:b2:88:0c:75:
01:47:89:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 24 18:04:45 2025 by rpki-client on console.sobornost.net