Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/163BF35C245211F08AC1A5ECDAE4EC9C.roa
File: 163BF35C245211F08AC1A5ECDAE4EC9C.roa (raw, json)
Hash identifier: B99n92KzOlXQSpsTT6sT6aLZOoPXcOpSsssCvTOgu0Q=
Subject key identifier: 79:81:F9:C3:E8:0D:33:71:02:C4:F5:FA:02:11:64:36:AD:98:02:9C
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 017C31
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/163BF35C245211F08AC1A5ECDAE4EC9C.roa
Signing time: Mon 28 Apr 2025 16:59:03 +0000
ROA not before: Mon 28 Apr 2025 16:58:58 +0000
ROA not after: Wed 04 Jun 2025 16:58:58 +0000
asID: 202656
IP address blocks: 154.219.197.0/24 maxlen: 24
154.219.207.0/24 maxlen: 24
154.219.211.0/24 maxlen: 24
154.219.222.0/24 maxlen: 24
154.219.230.0/24 maxlen: 24
154.219.232.0/24 maxlen: 24
154.219.245.0/24 maxlen: 24
154.219.247.0/24 maxlen: 24
154.219.251.0/24 maxlen: 24
154.221.60.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 30 Apr 2025 00:06:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 97329 (0x17c31)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 28 16:58:58 2025 GMT
Not After : Jun 4 16:58:58 2025 GMT
Subject: CN=680fb3d7-eb3c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:5f:f0:0c:16:b8:0d:d4:56:47:78:57:6d:61:
74:65:cd:65:f2:cc:72:a3:44:3f:9e:0f:08:7c:84:
aa:f2:a2:a0:81:59:cd:48:c2:0d:79:e0:79:f1:a4:
c3:e9:fc:2b:52:c8:0e:0f:6e:ac:28:d5:6c:2a:02:
e6:36:33:2b:66:e6:92:9a:93:95:39:a5:fc:2c:8e:
3c:d1:e3:d0:39:c5:bb:41:6b:a3:5e:e5:2a:c7:f3:
c5:bf:65:69:16:8c:83:da:d4:30:40:c1:90:60:85:
77:c2:16:32:b9:f1:04:dd:ba:90:13:1c:fd:ce:5c:
93:69:85:1f:07:2f:16:6c:ad:29:4e:fc:41:c8:51:
02:1a:15:e5:b4:91:fe:29:03:47:bd:94:3b:9b:e4:
41:98:2a:b8:2d:29:a7:9e:23:e9:f3:c9:30:1c:a5:
92:65:57:da:b5:2f:d3:af:78:7e:67:59:80:f1:e9:
9b:20:92:4c:29:3d:7b:51:e5:75:32:ad:9c:5a:0e:
76:54:12:db:7f:20:40:10:6a:07:44:61:9b:ae:52:
d1:06:e8:fd:32:00:9b:da:32:a5:8e:d8:7b:26:9f:
ec:22:38:dd:5a:c3:0b:35:16:28:ab:a4:52:d9:93:
d6:b2:48:73:fe:60:2f:48:35:be:8b:84:e5:0c:68:
0f:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:81:F9:C3:E8:0D:33:71:02:C4:F5:FA:02:11:64:36:AD:98:02:9C
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/163BF35C245211F08AC1A5ECDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.219.197.0/24
154.219.207.0/24
154.219.211.0/24
154.219.222.0/24
154.219.230.0/24
154.219.232.0/24
154.219.245.0/24
154.219.247.0/24
154.219.251.0/24
154.221.60.0/24
Signature Algorithm: sha256WithRSAEncryption
77:90:de:c3:e5:e9:27:6c:cc:f4:14:68:3a:11:71:34:ec:69:
fb:3d:7a:0c:c4:a2:31:e8:16:c1:13:57:9f:48:2b:36:80:2b:
5a:2b:d0:4e:ae:5a:17:ac:6f:a9:1c:55:36:ed:55:0f:de:92:
ef:08:b3:39:7c:71:6d:bc:33:61:0e:a0:2d:ec:30:07:10:bb:
3d:82:db:09:5d:ad:7c:ad:f9:55:13:b1:e0:cf:03:a1:19:1c:
df:9f:15:c7:54:71:36:8e:d4:e6:e9:b0:ff:a9:04:86:83:f4:
21:61:1b:af:1c:93:3c:e9:f1:f7:a0:7a:11:b4:71:e1:42:20:
e4:dc:59:30:24:cf:4a:68:34:de:d7:43:0c:96:c2:65:dc:9c:
05:cc:bc:fe:2b:64:74:03:05:cb:66:63:ab:1f:04:d5:f6:9a:
8f:7c:fc:73:ec:09:63:21:54:64:39:a5:45:ab:01:46:45:19:
3e:b9:d8:38:17:46:c1:03:9d:80:37:35:0a:06:8f:a5:9d:43:
9a:13:83:23:63:12:b5:1a:91:5a:4d:35:03:77:30:d2:5e:51:
cc:2a:fc:1f:43:42:a7:52:12:f3:6a:2e:03:c3:81:db:b1:1b:
7c:91:7f:46:85:3f:a7:d9:58:17:13:b4:15:3f:55:fb:c2:7d:
eb:17:d0:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 22:53:27 2025 by rpki-client on console.sobornost.net