Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/73BCE52615EE11F0B25347E26DB8BCC6.roa
File: 73BCE52615EE11F0B25347E26DB8BCC6.roa (raw, json)
Hash identifier: eCWL/X8Gnh5pTkQv3kYYUUafnSpvI5chYInWi3iqphE=
Subject key identifier: EE:18:43:29:30:49:D7:A1:19:DC:FD:26:22:45:E0:E1:DB:1A:B7:B6
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0178BD
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/73BCE52615EE11F0B25347E26DB8BCC6.roa
Signing time: Thu 10 Apr 2025 09:30:34 +0000
ROA not before: Thu 10 Apr 2025 09:30:30 +0000
ROA not after: Mon 05 May 2025 09:30:30 +0000
asID: 395839
IP address blocks: 154.199.8.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 30 Apr 2025 00:06:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 96445 (0x178bd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 10 09:30:30 2025 GMT
Not After : May 5 09:30:30 2025 GMT
Subject: CN=67f78fba-8b63
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:40:d5:01:19:44:9b:59:52:20:23:ce:ea:4a:
bd:aa:9c:75:44:40:73:0c:47:da:5f:48:59:64:4d:
dc:2e:2f:a4:20:45:69:18:39:bf:47:d8:1d:73:45:
b6:c6:fa:32:56:80:a7:53:26:68:71:1f:69:0d:80:
d6:a5:84:7a:75:f3:c8:b3:94:4c:c7:86:ee:2a:36:
69:0d:e3:af:0f:fc:10:8e:24:99:10:5d:de:5f:55:
4f:33:83:6e:ba:03:8a:f2:14:45:98:4a:fc:fe:a7:
e5:d4:16:2b:68:22:52:91:1a:45:f0:bd:85:a0:5d:
05:22:a1:31:94:f6:be:3e:bd:27:37:0b:8f:69:96:
dc:a5:15:63:e1:1e:3d:31:5d:59:90:34:91:f7:2a:
06:b5:fd:ed:07:df:97:72:a5:7c:50:10:4f:c7:6c:
a6:cd:23:3e:3b:10:d5:d6:ce:9e:5e:f2:59:e4:c9:
e8:95:52:c5:33:21:58:99:95:6c:fb:97:50:e3:2d:
00:43:9b:38:c1:87:16:55:d0:78:a3:c2:4f:e8:d7:
f5:d1:91:6b:44:cc:a6:8a:61:90:86:91:07:06:9c:
b8:7c:f9:a0:10:85:a3:2a:87:18:c7:2b:e6:20:99:
88:d0:fa:c3:47:28:75:30:99:9b:89:e8:25:a7:1b:
5a:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:18:43:29:30:49:D7:A1:19:DC:FD:26:22:45:E0:E1:DB:1A:B7:B6
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/73BCE52615EE11F0B25347E26DB8BCC6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.199.8.0/23
Signature Algorithm: sha256WithRSAEncryption
63:9a:c4:8d:9a:5d:3a:af:a5:11:a4:46:6a:fc:39:0b:86:76:
d1:11:44:c6:bf:c8:61:fe:a2:3c:f7:3f:b3:56:92:9c:cc:22:
41:be:39:0e:ed:04:9a:26:1e:64:72:b7:bd:41:d3:84:f4:47:
01:65:43:d9:e0:7d:a1:35:1a:6d:df:a2:f6:8d:20:df:ac:63:
4e:c3:20:b2:31:da:f0:c9:df:82:a3:43:3d:e0:1a:0b:b5:26:
d1:4f:f0:59:56:79:a6:b2:a4:b0:7f:14:ad:f3:2d:57:f4:d2:
31:5d:f7:92:c4:71:34:c1:fb:05:94:92:e0:a4:44:b7:73:fc:
8f:23:93:fa:fc:78:b4:b5:54:0f:fc:33:58:62:10:01:b2:e8:
fa:04:d9:a5:02:78:0a:3f:34:19:31:52:0b:dc:01:7f:2a:30:
4d:f8:c7:1f:76:bd:ec:22:06:fd:af:c8:e7:13:13:8b:01:dc:
2d:1c:c6:96:09:fc:69:40:5e:b8:1f:c2:1c:77:5e:2f:33:47:
05:f4:05:1a:cd:92:88:98:67:8b:9c:b3:87:4e:85:64:94:a9:
fe:a8:5b:35:13:ee:e8:98:67:80:60:55:83:9b:5f:82:db:db:
c4:9e:37:3a:9d:e4:4e:c3:06:f8:3a:25:7d:1b:f7:44:fd:fe:
e6:31:df:99
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAXi9MA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjUwNDEwMDkzMDMwWhcNMjUwNTA1MDkzMDMwWjAYMRYw
FAYDVQQDEw02N2Y3OGZiYS04YjYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAtkDVARlEm1lSICPO6kq9qpx1REBzDEfaX0hZZE3cLi+kIEVpGDm/R9gd
c0W2xvoyVoCnUyZocR9pDYDWpYR6dfPIs5RMx4buKjZpDeOvD/wQjiSZEF3eX1VP
M4NuugOK8hRFmEr8/qfl1BYraCJSkRpF8L2FoF0FIqExlPa+Pr0nNwuPaZbcpRVj
4R49MV1ZkDSR9yoGtf3tB9+XcqV8UBBPx2ymzSM+OxDV1s6eXvJZ5MnolVLFMyFY
mZVs+5dQ4y0AQ5s4wYcWVdB4o8JP6Nf10ZFrRMymimGQhpEHBpy4fPmgEIWjKocY
xyvmIJmI0PrDRyh1MJmbieglpxtabQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFO4Y
QykwSdehGdz9JiJF4OHbGre2MB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC83M0JDRTUyNjE1RUUxMUYwQjI1MzQ3RTI2REI4QkNDNi5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBmscIMA0GCSqGSIb3DQEB
CwUAA4IBAQBjmsSNml06r6URpEZq/DkLhnbREUTGv8hh/qI89z+zVpKczCJBvjkO
7QSaJh5kcre9QdOE9EcBZUPZ4H2hNRpt36L2jSDfrGNOwyCyMdrwyd+Co0M94BoL
tSbRT/BZVnmmsqSwfxSt8y1X9NIxXfeSxHE0wfsFlJLgpES3c/yPI5P6/Hi0tVQP
/DNYYhABsuj6BNmlAngKPzQZMVIL3AF/KjBN+Mcfdr3sIgb9r8jnExOLAdwtHMaW
CfxpQF64H8Icd14vM0cF9AUazZKImGeLnLOHToVklKn+qFs1E+7omGeAYFWDm1+C
29vEnjc6neROwwb4OiV9G/dE/f7mMd+Z
-----END CERTIFICATE-----
Generated at Mon Apr 28 17:40:37 2025 by rpki-client on console.sobornost.net