Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/06235D481C5F11F0A51D32C0DAE4EC9C.roa
File: 06235D481C5F11F0A51D32C0DAE4EC9C.roa (raw, json)
Hash identifier: YWxeZoJ7n5L945GcaxZp1ixQoS71h6bIY7/UDCWWqjc=
Subject key identifier: 5F:42:43:2F:9D:1F:3F:58:9A:CB:57:B2:8D:AE:F1:2C:B4:E9:0C:DC
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0179A9
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/06235D481C5F11F0A51D32C0DAE4EC9C.roa
Signing time: Fri 18 Apr 2025 14:11:30 +0000
ROA not before: Fri 18 Apr 2025 14:11:26 +0000
ROA not after: Sat 24 May 2025 14:11:26 +0000
asID: 61414
IP address blocks: 154.217.248.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 27 Apr 2025 00:06:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 96681 (0x179a9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 18 14:11:26 2025 GMT
Not After : May 24 14:11:26 2025 GMT
Subject: CN=68025d92-aa13
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:4e:39:04:0a:34:4b:58:84:9d:e2:64:df:32:
2d:9a:f4:ff:6b:0f:a8:59:f9:85:8a:47:e3:98:72:
68:49:64:c8:ed:e5:df:5d:a4:fc:4e:ae:a8:9d:8d:
50:af:9d:1f:6a:0c:0e:f9:8e:3e:56:26:42:26:2f:
1c:79:2b:0b:fa:65:9a:b0:f1:d3:a4:6a:f8:3b:ad:
e8:67:0b:eb:ce:3a:57:bf:a2:42:11:42:4d:16:00:
61:40:17:81:30:a6:73:c5:08:20:c6:fe:da:5b:d9:
b9:9e:8e:fb:e9:38:4b:a2:93:0e:18:c9:b3:cd:b3:
49:b7:bc:10:81:94:45:6b:e3:ed:9c:6c:05:65:a4:
d4:60:2c:24:bc:f8:cb:cd:4b:20:38:19:04:b3:75:
91:5e:9a:24:b4:2d:45:ab:d6:37:5a:34:8a:f2:0e:
fe:98:8b:e9:8b:d4:86:6f:62:ee:72:8f:a4:1c:4a:
cf:3f:55:7e:af:f6:8e:e7:33:b7:10:31:3c:da:be:
ed:28:54:3c:24:cb:9b:f7:ef:6c:0b:9e:8f:19:dd:
ec:00:86:be:ac:bd:f6:be:d1:6b:38:88:d6:15:94:
c1:59:f1:cd:70:a0:38:36:f2:e9:8c:03:7f:d1:61:
82:55:0f:a6:82:05:af:92:58:a2:b7:bb:47:2c:68:
46:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:42:43:2F:9D:1F:3F:58:9A:CB:57:B2:8D:AE:F1:2C:B4:E9:0C:DC
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/06235D481C5F11F0A51D32C0DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.217.248.0/21
Signature Algorithm: sha256WithRSAEncryption
6f:07:1d:23:03:3b:c3:e8:0b:05:cc:6d:8a:10:ff:0b:9c:ee:
e6:cb:21:bc:a6:5a:8d:32:a2:62:04:a2:c7:24:76:86:2a:6f:
1a:bd:7d:b6:c5:81:a1:7e:36:ae:d8:45:8b:41:6b:90:c5:be:
a0:18:23:fa:53:f2:ad:d5:4c:c0:06:92:b8:d6:bc:5a:6b:c9:
dc:da:0e:c1:a7:89:df:19:e2:75:ad:43:1b:58:d2:d5:ad:16:
ef:92:b5:08:85:b1:fb:38:95:59:6e:77:6f:00:db:7d:cd:f4:
22:ea:b8:2c:cd:dc:c2:d7:a2:86:7c:1b:d4:03:36:50:92:58:
6a:8d:5b:b7:9f:98:e2:87:95:52:85:0b:97:d8:3c:24:07:8c:
e1:dc:0d:4a:83:be:fd:6a:1f:01:90:54:55:91:68:24:14:f9:
79:66:80:07:8f:db:0b:c2:77:7b:f7:da:64:4b:b4:39:00:89:
94:06:14:c4:99:7f:73:22:fd:0c:b2:47:8d:c9:c8:17:60:66:
07:e4:17:8a:64:31:c4:3a:14:ab:7e:17:b0:19:44:32:c2:a7:
53:1d:aa:44:1d:ac:ac:a9:34:29:75:d0:58:f0:31:bb:7d:03:
b7:4c:aa:fc:dd:13:09:85:9c:6e:57:52:66:69:43:ee:17:14:
a7:be:a8:c6
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAXmpMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjUwNDE4MTQxMTI2WhcNMjUwNTI0MTQxMTI2WjAYMRYw
FAYDVQQDEw02ODAyNWQ5Mi1hYTEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAmU45BAo0S1iEneJk3zItmvT/aw+oWfmFikfjmHJoSWTI7eXfXaT8Tq6o
nY1Qr50fagwO+Y4+ViZCJi8ceSsL+mWasPHTpGr4O63oZwvrzjpXv6JCEUJNFgBh
QBeBMKZzxQggxv7aW9m5no776ThLopMOGMmzzbNJt7wQgZRFa+PtnGwFZaTUYCwk
vPjLzUsgOBkEs3WRXpoktC1Fq9Y3WjSK8g7+mIvpi9SGb2Luco+kHErPP1V+r/aO
5zO3EDE82r7tKFQ8JMub9+9sC56PGd3sAIa+rL32vtFrOIjWFZTBWfHNcKA4NvLp
jAN/0WGCVQ+mggWvkliit7tHLGhGzQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFF9C
Qy+dHz9YmstXso2u8Sy06QzcMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC8wNjIzNUQ0ODFDNUYxMUYwQTUxRDMyQzBEQUU0RUM5Qy5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDmtn4MA0GCSqGSIb3DQEB
CwUAA4IBAQBvBx0jAzvD6AsFzG2KEP8LnO7myyG8plqNMqJiBKLHJHaGKm8avX22
xYGhfjau2EWLQWuQxb6gGCP6U/Kt1UzABpK41rxaa8nc2g7Bp4nfGeJ1rUMbWNLV
rRbvkrUIhbH7OJVZbndvANt9zfQi6rgszdzC16KGfBvUAzZQklhqjVu3n5jih5VS
hQuX2DwkB4zh3A1Kg779ah8BkFRVkWgkFPl5ZoAHj9sLwnd799pkS7Q5AImUBhTE
mX9zIv0MskeNycgXYGYH5BeKZDHEOhSrfhewGUQywqdTHapEHaysqTQpddBY8DG7
fQO3TKr83RMJhZxuV1JmaUPuFxSnvqjG
-----END CERTIFICATE-----
Generated at Fri Apr 25 06:03:17 2025 by rpki-client on console.sobornost.net