Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0A3A16CE1C8C11F0B8976FE8DAE4EC9C.roa
File: 0A3A16CE1C8C11F0B8976FE8DAE4EC9C.roa (raw, json)
Hash identifier: XCztuC/I7oBz1BMY+vwM2MOW6srld1DNbD8Go5JeJKU=
Subject key identifier: 73:18:4C:99:39:F9:71:8A:AB:FD:27:3C:80:8B:B3:B4:95:B3:97:03
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0179D0
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0A3A16CE1C8C11F0B8976FE8DAE4EC9C.roa
Signing time: Fri 18 Apr 2025 19:33:44 +0000
ROA not before: Fri 18 Apr 2025 19:33:40 +0000
ROA not after: Fri 30 May 2025 19:33:40 +0000
asID: 62240
IP address blocks: 154.194.82.0/24 maxlen: 24
154.195.152.0/24 maxlen: 24
154.195.153.0/24 maxlen: 24
154.195.154.0/24 maxlen: 24
154.195.155.0/24 maxlen: 24
154.195.156.0/24 maxlen: 24
154.195.157.0/24 maxlen: 24
154.195.158.0/24 maxlen: 24
154.195.159.0/24 maxlen: 24
154.195.160.0/24 maxlen: 24
154.195.161.0/24 maxlen: 24
154.195.162.0/24 maxlen: 24
154.195.163.0/24 maxlen: 24
154.195.164.0/24 maxlen: 24
154.195.165.0/24 maxlen: 24
154.195.166.0/24 maxlen: 24
154.195.167.0/24 maxlen: 24
154.195.168.0/24 maxlen: 24
154.195.169.0/24 maxlen: 24
154.195.170.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 27 Apr 2025 13:23:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 96720 (0x179d0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 18 19:33:40 2025 GMT
Not After : May 30 19:33:40 2025 GMT
Subject: CN=6802a918-637c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:b4:c4:de:94:75:70:f1:58:b3:f5:69:38:1f:
30:d6:84:8b:d4:ec:4a:af:cd:55:f8:b4:a5:ba:11:
2e:87:83:96:17:ed:a7:96:9d:e2:40:bb:4e:ea:b0:
59:75:70:04:be:1c:2c:b7:7b:e7:bc:bf:97:fe:cb:
72:a6:4c:83:82:ba:ce:e5:e0:98:08:7a:c4:68:8d:
39:ab:7c:b7:fe:97:b0:32:18:e3:87:20:4f:04:32:
75:a6:be:34:78:14:bf:4c:dc:8a:78:89:8d:e5:72:
9e:6f:b7:15:dd:3f:13:a7:8d:23:97:5a:e7:7e:80:
ba:21:7f:cb:08:79:a3:3b:f1:8d:69:82:88:2d:fd:
b5:5a:91:10:b7:3d:08:6b:39:9c:b6:4b:01:5a:74:
ff:b5:ab:8c:89:7a:e3:19:f6:19:62:6a:5a:43:65:
d6:33:11:22:04:68:03:ee:c8:c4:e7:6f:10:45:86:
9f:7e:18:8b:c8:8d:37:06:2f:bf:12:a9:51:f5:df:
0d:14:12:c9:d1:33:31:0a:fb:1f:f3:4c:a6:99:d1:
53:63:77:b5:87:b2:98:dc:41:0b:f0:7f:3b:fd:cc:
68:6a:df:37:c0:fc:8c:63:74:11:a6:28:98:c3:5f:
c3:2a:dc:ba:88:d9:35:2e:74:21:d0:43:eb:00:5f:
7c:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:18:4C:99:39:F9:71:8A:AB:FD:27:3C:80:8B:B3:B4:95:B3:97:03
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0A3A16CE1C8C11F0B8976FE8DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.194.82.0/24
154.195.152.0-154.195.170.255
Signature Algorithm: sha256WithRSAEncryption
78:12:12:16:5e:29:c1:8d:5c:bf:bd:74:76:7c:59:55:d7:92:
8a:3a:18:40:e8:18:61:4f:bc:2a:90:39:be:5d:ce:db:61:ad:
eb:ad:54:77:d5:9b:60:51:d6:e4:f1:8f:e3:6d:ed:f1:be:2b:
49:78:ec:f5:e4:e3:0c:0a:b4:28:8a:71:02:25:0d:c1:77:0a:
41:6e:fc:02:9e:86:62:1c:83:50:c2:b0:91:4e:9d:9e:4b:9e:
c5:32:ef:f3:6a:c4:75:e8:e3:69:a2:46:d1:44:08:ff:26:a4:
1a:27:60:d4:ce:8e:f5:53:fa:ed:58:60:ca:b3:a3:a6:c4:d8:
7b:07:e7:ad:45:b9:7e:3f:e6:bb:c3:6a:71:44:c7:d6:f6:5d:
bf:d2:fe:58:87:af:74:93:55:bf:8e:49:00:7c:af:eb:12:92:
03:fa:3e:c6:9f:19:94:90:33:57:61:83:c0:ec:0f:c6:42:cc:
da:75:be:64:20:31:58:e2:cb:cd:19:69:4a:79:5a:1b:00:ba:
be:6a:04:20:7d:59:d8:c6:8b:b6:aa:67:39:36:0b:97:bc:38:
a4:84:b7:a1:80:26:9c:0f:1a:d1:ee:94:6e:32:f9:c5:a4:bd:
b7:31:37:ee:9d:53:b6:24:4f:84:1d:0b:04:1d:a4:67:70:1c:
96:24:c9:48
-----BEGIN CERTIFICATE-----
MIIFkjCCBHqgAwIBAgIDAXnQMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjUwNDE4MTkzMzQwWhcNMjUwNTMwMTkzMzQwWjAYMRYw
FAYDVQQDEw02ODAyYTkxOC02MzdjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAm7TE3pR1cPFYs/VpOB8w1oSL1OxKr81V+LSluhEuh4OWF+2nlp3iQLtO
6rBZdXAEvhwst3vnvL+X/stypkyDgrrO5eCYCHrEaI05q3y3/pewMhjjhyBPBDJ1
pr40eBS/TNyKeImN5XKeb7cV3T8Tp40jl1rnfoC6IX/LCHmjO/GNaYKILf21WpEQ
tz0IazmctksBWnT/tauMiXrjGfYZYmpaQ2XWMxEiBGgD7sjE528QRYaffhiLyI03
Bi+/EqlR9d8NFBLJ0TMxCvsf80ymmdFTY3e1h7KY3EEL8H87/cxoat83wPyMY3QR
piiYw1/DKty6iNk1LnQh0EPrAF98SQIDAQABo4ICszCCAq8wHQYDVR0OBBYEFHMY
TJk5+XGKq/0nPICLs7SVs5cDMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC8wQTNBMTZDRTFDOEMxMUYwQjg5NzZGRThEQUU0RUM5Qy5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMC0GCCsGAQUFBwEHAQH/BB4wHDAaBAIAATAUAwQAmsJSMAwDBAOaw5gDBACa
w6owDQYJKoZIhvcNAQELBQADggEBAHgSEhZeKcGNXL+9dHZ8WVXXkoo6GEDoGGFP
vCqQOb5dztthreutVHfVm2BR1uTxj+Nt7fG+K0l47PXk4wwKtCiKcQIlDcF3CkFu
/AKehmIcg1DCsJFOnZ5LnsUy7/NqxHXo42miRtFECP8mpBonYNTOjvVT+u1YYMqz
o6bE2HsH561FuX4/5rvDanFEx9b2Xb/S/liHr3STVb+OSQB8r+sSkgP6PsafGZSQ
M1dhg8DsD8ZCzNp1vmQgMVjiy80ZaUp5WhsAur5qBCB9WdjGi7aqZzk2C5e8OKSE
t6GAJpwPGtHulG4y+cWkvbcxN+6dU7YkT4QdCwQdpGdwHJYkyUg=
-----END CERTIFICATE-----
Generated at Fri Apr 25 22:09:08 2025 by rpki-client on console.sobornost.net