Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/030787F0245311F09264DEF3DAE4EC9C.roa
File: 030787F0245311F09264DEF3DAE4EC9C.roa (raw, json)
Hash identifier: 4pUspRslC6AfX4pv4Uj71Dknvx8OCZ8Da8TjFL55I7s=
Subject key identifier: EF:3A:06:8E:FC:29:53:F1:1E:A4:39:91:E3:FD:72:A5:40:5D:42:B2
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 017C33
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/030787F0245311F09264DEF3DAE4EC9C.roa
Signing time: Mon 28 Apr 2025 17:05:41 +0000
ROA not before: Mon 28 Apr 2025 17:05:36 +0000
ROA not after: Wed 04 Jun 2025 17:05:36 +0000
asID: 202656
IP address blocks: 154.219.16.0/24 maxlen: 24
154.219.24.0/24 maxlen: 24
154.219.28.0/24 maxlen: 24
154.219.246.0/24 maxlen: 24
154.219.250.0/24 maxlen: 24
154.219.252.0/24 maxlen: 24
154.219.253.0/24 maxlen: 24
154.219.254.0/24 maxlen: 24
154.219.255.0/24 maxlen: 24
154.222.192.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 30 Apr 2025 00:06:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 97331 (0x17c33)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 28 17:05:36 2025 GMT
Not After : Jun 4 17:05:36 2025 GMT
Subject: CN=680fb564-00d7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:34:30:fb:07:aa:ef:49:55:3e:6f:42:2b:95:
ed:4f:1a:a2:2f:d3:05:79:9c:aa:04:0c:d7:89:90:
0c:d6:eb:57:c5:5e:a4:65:1e:ae:24:22:38:77:d5:
2b:1c:32:8d:41:78:5d:03:83:9f:50:65:3b:eb:43:
25:8d:75:0d:84:06:16:52:2b:e8:d3:5e:5e:59:1c:
f9:b1:23:02:c5:6a:9b:96:a2:64:c1:21:b2:1a:65:
8e:07:52:a3:f9:a1:07:9a:54:34:2d:39:31:05:2c:
00:29:ad:a1:48:9f:7f:3e:54:82:29:07:63:bc:5d:
93:c0:16:a5:a3:44:0e:2d:cb:dc:58:5a:8d:0d:b2:
30:fe:47:2e:0f:58:66:84:fd:04:11:cc:11:e0:63:
9c:ca:f9:f4:15:5f:f4:b2:4a:55:c5:51:b3:1e:f3:
9a:f4:82:2a:b6:5a:65:6e:a6:26:8a:e6:76:2e:09:
45:f1:a3:be:36:36:ab:f0:b5:a4:48:78:28:41:b0:
dc:b5:b3:2f:32:f6:9e:69:04:8b:9c:24:8f:3b:f9:
5c:b8:bb:f4:25:f8:51:79:fa:b6:81:c6:fd:02:8a:
b4:18:6a:00:15:08:d3:38:65:c3:1c:26:c8:4b:73:
46:ea:04:85:9e:13:6b:23:e1:70:a6:80:29:40:57:
9a:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:3A:06:8E:FC:29:53:F1:1E:A4:39:91:E3:FD:72:A5:40:5D:42:B2
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/030787F0245311F09264DEF3DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.219.16.0/24
154.219.24.0/24
154.219.28.0/24
154.219.246.0/24
154.219.250.0/24
154.219.252.0/22
154.222.192.0/24
Signature Algorithm: sha256WithRSAEncryption
d5:46:57:12:50:ba:70:25:b7:fc:51:2b:ef:d7:40:26:14:4e:
bc:17:ef:69:d7:e6:89:97:11:4a:e5:aa:92:aa:30:11:50:e7:
a9:5f:28:b0:65:fb:36:65:31:0a:f7:f7:b4:a8:88:10:1d:27:
2d:f0:d2:8a:c1:e4:61:e2:d0:6a:6f:a3:87:29:02:53:a1:40:
36:19:7d:18:b0:fb:50:73:b8:bb:ff:e0:9d:35:8a:b3:24:a4:
e2:a0:aa:f1:76:14:eb:3a:b3:50:ce:f0:37:82:13:c0:bf:87:
af:af:93:6b:67:ca:9d:97:7a:ee:d6:37:95:67:b7:b1:f9:15:
3e:a5:dd:0a:49:7e:c5:64:48:0d:43:e6:b3:4a:be:6b:9c:f8:
45:79:e8:46:d5:98:af:ae:28:e7:99:cd:08:e8:59:0e:a8:c5:
24:75:28:95:76:88:9c:1e:06:d8:06:e2:20:9e:15:79:6f:dc:
44:e0:fe:c8:09:2f:f5:aa:b2:5b:95:8c:be:e6:8e:a1:99:8f:
29:d9:41:37:17:6d:ee:1f:2b:37:92:92:76:0f:18:45:8e:cd:
3e:c5:31:16:d8:93:34:0f:86:48:08:38:a8:7a:8a:16:49:ab:
08:86:6e:ab:6c:b0:b8:e2:9e:79:b4:ed:d5:9f:21:4a:2f:94:
59:fa:a7:85
-----BEGIN CERTIFICATE-----
MIIFqDCCBJCgAwIBAgIDAXwzMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjUwNDI4MTcwNTM2WhcNMjUwNjA0MTcwNTM2WjAYMRYw
FAYDVQQDEw02ODBmYjU2NC0wMGQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAqDQw+weq70lVPm9CK5XtTxqiL9MFeZyqBAzXiZAM1utXxV6kZR6uJCI4
d9UrHDKNQXhdA4OfUGU760MljXUNhAYWUivo015eWRz5sSMCxWqblqJkwSGyGmWO
B1Kj+aEHmlQ0LTkxBSwAKa2hSJ9/PlSCKQdjvF2TwBalo0QOLcvcWFqNDbIw/kcu
D1hmhP0EEcwR4GOcyvn0FV/0skpVxVGzHvOa9IIqtlplbqYmiuZ2LglF8aO+Njar
8LWkSHgoQbDctbMvMvaeaQSLnCSPO/lcuLv0JfhRefq2gcb9Aoq0GGoAFQjTOGXD
HCbIS3NG6gSFnhNrI+FwpoApQFea/wIDAQABo4ICyTCCAsUwHQYDVR0OBBYEFO86
Bo78KVPxHqQ5keP9cqVAXUKyMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC8wMzA3ODdGMDI0NTMxMUYwOTI2NERFRjNEQUU0RUM5Qy5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMEMGCCsGAQUFBwEHAQH/BDQwMjAwBAIAATAqAwQAmtsQAwQAmtsYAwQAmtsc
AwQAmtv2AwQAmtv6AwQCmtv8AwQAmt7AMA0GCSqGSIb3DQEBCwUAA4IBAQDVRlcS
ULpwJbf8USvv10AmFE68F+9p1+aJlxFK5aqSqjARUOepXyiwZfs2ZTEK9/e0qIgQ
HSct8NKKweRh4tBqb6OHKQJToUA2GX0YsPtQc7i7/+CdNYqzJKTioKrxdhTrOrNQ
zvA3ghPAv4evr5NrZ8qdl3ru1jeVZ7ex+RU+pd0KSX7FZEgNQ+azSr5rnPhFeehG
1Zivrijnmc0I6FkOqMUkdSiVdoicHgbYBuIgnhV5b9xE4P7ICS/1qrJblYy+5o6h
mY8p2UE3F23uHys3kpJ2DxhFjs0+xTEW2JM0D4ZICDioeooWSasIhm6rbLC44p55
tO3VnyFKL5RZ+qeF
-----END CERTIFICATE-----
Generated at Mon Apr 28 22:53:09 2025 by rpki-client on console.sobornost.net