Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/73D70C28108D11F0A5D481BF762E951A.roa
File: 73D70C28108D11F0A5D481BF762E951A.roa (raw, json)
Hash identifier: kHFpTje9VzBXXAlWgXI7xGYPpE3pB7Hrf5ko7jOM2UA=
Subject key identifier: 82:8A:85:3A:A4:A2:CB:39:F2:2A:61:67:23:FB:53:2E:71:45:BB:82
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 017791
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/73D70C28108D11F0A5D481BF762E951A.roa
Signing time: Thu 03 Apr 2025 13:13:38 +0000
ROA not before: Thu 03 Apr 2025 13:13:23 +0000
ROA not after: Sun 03 Aug 2025 13:13:23 +0000
asID: 18229
IP address blocks: 154.210.177.0/24 maxlen: 24
154.210.178.0/24 maxlen: 24
154.210.179.0/24 maxlen: 24
154.210.180.0/24 maxlen: 24
154.210.181.0/24 maxlen: 24
154.210.183.0/24 maxlen: 24
154.210.184.0/24 maxlen: 24
154.210.185.0/24 maxlen: 24
154.210.190.0/24 maxlen: 24
154.210.204.0/24 maxlen: 24
154.210.205.0/24 maxlen: 24
154.210.206.0/24 maxlen: 24
154.210.207.0/24 maxlen: 24
154.210.208.0/24 maxlen: 24
154.210.209.0/24 maxlen: 24
154.210.210.0/24 maxlen: 24
154.210.211.0/24 maxlen: 24
154.210.212.0/24 maxlen: 24
154.210.215.0/24 maxlen: 24
154.210.216.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 29 Apr 2025 00:06:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 96145 (0x17791)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 3 13:13:23 2025 GMT
Not After : Aug 3 13:13:23 2025 GMT
Subject: CN=67ee8982-16b7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:4d:63:f3:a7:25:1c:6d:39:20:86:af:60:47:
9c:7f:35:a0:b4:43:0e:ec:d7:af:ca:82:c3:7d:94:
fa:68:cf:31:a0:18:14:de:6a:18:27:06:7f:75:4b:
e9:27:88:4e:37:b9:a6:21:f0:69:1a:6c:56:03:82:
e0:61:ef:e9:01:c0:f3:07:40:45:ec:9d:ca:f2:5b:
0b:92:61:e7:a9:63:8d:6b:cd:68:8e:f9:5b:29:d2:
58:57:dc:30:8c:eb:0a:87:56:da:80:23:03:2d:19:
61:f9:21:87:90:97:a6:e1:9e:4e:3f:ed:bd:52:f5:
d0:23:cd:3a:a9:fb:69:a5:6f:ab:41:a4:2b:fe:3e:
34:e6:ff:81:c1:2c:ca:d5:6e:ab:fc:61:c7:c9:b2:
9f:f2:c9:92:fe:ab:ce:06:86:d0:cb:63:ce:38:8d:
cb:cc:9c:d4:66:ef:45:8d:22:b5:14:d8:4b:81:77:
a2:77:fe:73:e6:14:d2:1f:35:fc:72:4e:5c:6f:84:
81:f6:cc:9b:09:da:a6:54:04:32:c0:ad:91:38:23:
b4:5b:e0:e2:c0:d0:24:27:7a:1a:8c:52:ba:2c:0d:
e9:e1:de:df:00:7a:6e:6b:14:76:a4:64:a1:bc:06:
d1:72:92:ac:6f:04:f1:1e:6c:57:a3:68:3f:a0:55:
4b:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:8A:85:3A:A4:A2:CB:39:F2:2A:61:67:23:FB:53:2E:71:45:BB:82
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/73D70C28108D11F0A5D481BF762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.210.177.0-154.210.181.255
154.210.183.0-154.210.185.255
154.210.190.0/24
154.210.204.0-154.210.212.255
154.210.215.0-154.210.216.255
Signature Algorithm: sha256WithRSAEncryption
8e:ab:8a:a3:e4:d2:2b:d1:39:b0:f9:e5:b7:ec:2c:0e:47:f6:
e6:50:3a:65:ef:11:be:65:ce:a8:34:c2:fd:6a:ed:57:9e:0d:
03:50:c2:16:02:05:8e:19:a2:34:90:e4:de:8d:2c:89:82:66:
9f:ca:b5:54:ad:67:36:7d:61:8e:1b:cc:33:62:de:0b:dd:63:
19:ae:b1:49:ac:fa:96:42:22:a9:c4:dd:43:6d:b0:d2:58:1e:
f8:42:b7:f9:53:d0:9a:e8:c6:bf:32:9c:5a:a9:ff:92:96:34:
98:fb:a5:36:75:b0:c0:17:17:3c:2f:4e:5f:d4:c3:d8:25:de:
5c:72:a7:26:3f:fc:4e:03:84:c6:42:0c:64:ff:8e:6e:f9:66:
8a:53:8d:8a:56:31:68:69:11:fc:26:8e:7d:6f:b0:6d:84:af:
32:62:0f:3d:df:91:29:c8:61:17:95:48:ec:55:fb:4b:e4:1a:
6e:1f:91:27:e6:66:00:7d:df:6d:5e:fa:a9:18:97:1f:47:6b:
0d:c6:f4:8f:36:d4:b9:0b:d3:8c:dd:69:fe:d2:da:03:8e:18:
74:1e:95:d7:9a:72:38:46:7c:11:9c:0a:12:46:62:bd:78:8e:
5a:2c:43:97:df:4f:9f:b3:78:8b:d0:a1:74:ac:75:ee:84:be:
c6:90:17:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 14:52:46 2025 by rpki-client on console.sobornost.net