Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F3702D88190D11F0B8CF96C06DB8BCC6.roa
File: F3702D88190D11F0B8CF96C06DB8BCC6.roa (raw, json)
Hash identifier: RwPZnyIc5F2UeFyMtyrJ0DIXBoaeI5kjOUtF0ljzmoc=
Subject key identifier: 97:1C:9D:A8:35:96:36:1D:84:2A:C3:F2:F0:4B:C3:3A:A9:E2:5C:76
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01791D
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F3702D88190D11F0B8CF96C06DB8BCC6.roa
Signing time: Mon 14 Apr 2025 08:53:36 +0000
ROA not before: Mon 14 Apr 2025 08:53:32 +0000
ROA not after: Wed 21 May 2025 08:53:32 +0000
asID: 25198
IP address blocks: 154.197.104.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 27 Apr 2025 13:23:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 96541 (0x1791d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 14 08:53:32 2025 GMT
Not After : May 21 08:53:32 2025 GMT
Subject: CN=67fccd10-b85f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:02:59:c4:0d:9e:dd:87:1c:0e:3c:b8:fe:a1:
f2:8e:2e:11:f2:6b:5a:c2:f4:ea:f7:84:20:a9:4b:
db:7a:98:b1:d0:78:b6:37:20:ef:cb:9d:4e:b2:ca:
a8:b4:8b:91:99:71:d0:8a:08:64:19:fa:51:2d:bf:
e7:04:1d:45:0c:34:b8:1f:e0:eb:f9:b6:be:c1:45:
84:ad:b9:24:9e:df:64:6e:21:f3:f2:55:f2:16:8d:
9d:8a:9a:bd:b8:50:29:3e:36:c7:b7:68:80:c5:83:
9d:2d:72:74:7a:12:0f:77:51:b9:e5:2b:6e:ed:88:
8f:10:fd:59:fe:38:63:fe:85:d4:2c:cd:a4:ec:ea:
bd:42:f2:af:38:de:5b:e5:58:35:ce:32:e7:4a:14:
3d:3b:7d:2f:60:77:cb:11:74:57:55:21:60:fb:b5:
6f:bc:18:21:85:51:d4:a1:45:62:fc:d2:2f:f4:02:
0d:ce:16:83:e6:a8:86:e8:af:12:5b:04:26:c3:79:
11:7c:74:16:49:5b:55:9b:0c:7d:3f:26:7b:36:0f:
50:74:ef:0f:50:43:3a:68:2d:9c:5d:62:f0:b9:1a:
d4:46:b5:80:67:48:47:9e:6c:58:af:89:a9:ef:c5:
56:16:0f:5e:a3:00:9a:e5:65:d5:02:30:76:85:f3:
f0:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:1C:9D:A8:35:96:36:1D:84:2A:C3:F2:F0:4B:C3:3A:A9:E2:5C:76
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F3702D88190D11F0B8CF96C06DB8BCC6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.197.104.0/24
Signature Algorithm: sha256WithRSAEncryption
bb:36:a6:7d:01:b3:5a:d9:18:b5:9e:68:d2:9a:59:cc:38:41:
db:ce:9b:20:99:55:60:ce:af:45:cc:15:62:a0:8f:de:48:27:
a7:f4:ae:2c:73:10:ce:14:44:7c:0b:fc:30:d1:6f:5d:c3:40:
ad:2e:82:04:8f:65:2b:e0:2c:63:8a:27:96:7f:e3:fa:58:f2:
31:85:86:a4:7d:e6:f0:74:88:93:a3:89:fe:f8:ff:06:97:d8:
49:a5:2f:18:a8:4f:8a:17:99:e1:29:4b:fc:39:d3:d1:fe:b1:
ec:18:38:e9:be:97:88:43:48:e2:c9:fc:b0:dc:c6:c0:0b:f2:
47:6e:22:cc:56:cb:ef:d4:14:4a:7e:33:80:29:64:16:30:77:
09:39:f3:97:0f:2f:32:fe:4d:75:93:0f:93:b5:c0:49:d5:eb:
c7:5a:66:84:6a:b1:69:0b:b4:b8:6b:a1:1f:1b:50:98:25:49:
40:aa:72:56:00:db:1c:98:30:31:d1:b0:70:52:12:4f:8a:4c:
b5:36:78:c7:11:ce:d7:a6:cf:d6:aa:39:c6:11:75:05:0a:19:
46:9a:af:8a:38:ad:87:79:d9:8f:42:cc:9a:10:da:a0:77:50:
3e:24:cc:9b:b3:35:67:e4:c6:bd:ee:a4:84:82:77:c1:c9:dd:
08:3d:10:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 22:10:51 2025 by rpki-client on console.sobornost.net