Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/44E8C38C13E111F09453395E762E951A.roa
File: 44E8C38C13E111F09453395E762E951A.roa (raw, json)
Hash identifier: arBeUdQ13jHt3aBHly3z7qAjuP8C83v76fAGabvnWQQ=
Subject key identifier: 35:BD:95:E7:38:14:05:10:32:9A:3B:C3:14:F8:DE:15:03:F7:06:D5
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 017821
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/44E8C38C13E111F09453395E762E951A.roa
Signing time: Mon 07 Apr 2025 18:51:10 +0000
ROA not before: Mon 07 Apr 2025 18:51:05 +0000
ROA not after: Fri 16 May 2025 18:51:05 +0000
asID: 203020
IP address blocks: 154.203.44.0/22 maxlen: 24
154.203.48.0/23 maxlen: 24
154.207.32.0/20 maxlen: 24
154.207.48.0/22 maxlen: 24
154.207.52.0/23 maxlen: 24
154.207.56.0/23 maxlen: 24
154.207.60.0/22 maxlen: 24
154.209.224.0/20 maxlen: 24
154.209.240.0/21 maxlen: 24
154.209.248.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 27 Apr 2025 13:23:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 96289 (0x17821)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 7 18:51:05 2025 GMT
Not After : May 16 18:51:05 2025 GMT
Subject: CN=67f41e9e-d4fa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:6c:aa:99:7b:b8:d0:43:f3:6d:c2:f4:be:e8:
62:5e:d2:04:8b:ea:a9:24:7a:fe:45:9a:56:5e:5c:
0f:6e:33:ee:8c:62:ae:94:e4:ca:88:ce:08:2a:c9:
c5:64:ae:67:45:04:9e:9a:ef:82:f5:96:22:c2:42:
18:41:2b:6d:b6:ef:4d:3f:29:72:32:34:65:80:31:
4d:17:dc:2d:75:df:47:89:76:07:a9:4c:4b:90:15:
6c:a9:de:1b:d7:b5:00:9f:00:18:c9:ee:0c:db:4a:
a4:12:8c:4f:60:a7:22:3f:68:96:e8:27:22:13:70:
3c:99:d3:17:a8:21:5a:4a:ea:70:2f:92:58:37:33:
f4:c6:c7:9d:e7:a1:b3:29:15:ac:11:c0:a4:fc:33:
92:f9:42:71:79:ab:9c:9c:c0:12:e5:8f:80:e4:80:
08:2e:c5:eb:2f:1e:30:4b:20:d6:88:d5:e3:72:ab:
fb:e7:88:97:e0:cd:96:f8:cf:9e:61:b6:3d:d1:a5:
3a:ee:48:b3:80:b9:ca:7f:53:d0:92:c8:b8:27:24:
5d:42:ff:e4:a3:2f:b3:05:61:74:ad:a7:5b:05:6a:
cc:ae:f4:ca:e1:92:3a:63:84:a7:cf:ae:dd:0c:4d:
41:e3:76:74:d2:0c:b9:a7:39:fd:30:56:a2:5e:74:
aa:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:BD:95:E7:38:14:05:10:32:9A:3B:C3:14:F8:DE:15:03:F7:06:D5
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/44E8C38C13E111F09453395E762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.203.44.0-154.203.49.255
154.207.32.0-154.207.53.255
154.207.56.0/23
154.207.60.0/22
154.209.224.0-154.209.249.255
Signature Algorithm: sha256WithRSAEncryption
8c:6a:27:a0:f5:2c:a7:eb:ea:4f:9a:db:0d:96:d0:cd:32:dc:
50:3d:9f:69:93:a1:90:f6:84:eb:02:ad:ba:d1:b9:5c:23:61:
51:a5:d1:99:d5:92:ac:ed:41:de:98:44:ed:22:11:f6:66:1d:
10:dc:a3:65:19:a8:ba:3b:b5:d5:e0:7b:5b:4b:52:d8:8c:c7:
16:57:66:8b:4c:e0:b7:bc:83:1e:76:1d:26:5a:95:25:7f:a0:
16:a7:96:92:6d:2b:73:80:ec:81:ee:a0:bd:d4:2d:9b:39:bc:
f8:2e:96:35:37:2e:db:93:54:9c:bf:bb:f2:49:75:9c:5d:60:
17:9c:39:b2:f6:b2:06:97:6c:fe:18:fa:e1:2c:e1:50:78:e2:
3d:ba:9a:6c:7c:a2:7c:bb:88:fb:b2:21:9d:28:42:d2:01:44:
db:ef:bf:c9:39:3e:6b:1c:55:8b:ba:8c:c8:1a:84:d6:f1:93:
ff:ca:6f:dc:90:bf:17:34:02:3e:ef:3b:4e:80:96:0f:50:1b:
e3:90:a0:04:44:ca:08:ca:2f:a4:b4:5a:b8:c1:16:9e:24:a7:
18:fd:a9:1f:2f:35:96:ff:0a:48:7d:5b:f4:52:99:98:c3:58:
fd:8e:be:55:a1:d2:ae:c8:6c:8f:d2:8b:99:38:28:28:2b:84:
b0:fd:cb:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 22:09:29 2025 by rpki-client on console.sobornost.net