Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/81D2EBEC1C9C11F084683FD5DAE4EC9C.roa
File: 81D2EBEC1C9C11F084683FD5DAE4EC9C.roa (raw, json)
Hash identifier: lbB4ZYDGmQX0Jzh2ChwAB3nIE43+a9lHBYXKVXTIr/U=
Subject key identifier: 08:5C:39:43:57:3D:65:71:C2:ED:C6:2E:F9:F6:CC:61:E3:3B:EF:4D
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0179EC
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/81D2EBEC1C9C11F084683FD5DAE4EC9C.roa
Signing time: Fri 18 Apr 2025 21:31:37 +0000
ROA not before: Fri 18 Apr 2025 21:31:32 +0000
ROA not after: Sat 31 May 2025 21:31:32 +0000
asID: 49505
IP address blocks: 154.205.244.0/24 maxlen: 24
154.205.245.0/24 maxlen: 24
154.205.246.0/24 maxlen: 24
154.205.247.0/24 maxlen: 24
154.223.198.0/24 maxlen: 24
154.223.199.0/24 maxlen: 24
154.223.200.0/24 maxlen: 24
154.223.201.0/24 maxlen: 24
154.223.202.0/24 maxlen: 24
154.223.203.0/24 maxlen: 24
154.223.204.0/24 maxlen: 24
154.223.205.0/24 maxlen: 24
154.223.206.0/24 maxlen: 24
154.223.207.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 30 Apr 2025 00:06:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 96748 (0x179ec)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 18 21:31:32 2025 GMT
Not After : May 31 21:31:32 2025 GMT
Subject: CN=6802c4b9-dfdb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:c8:83:e1:a9:91:31:c4:f5:5d:82:4a:12:b8:
00:5b:ec:a7:09:be:16:a7:02:04:33:a7:3e:97:cc:
8f:09:d8:74:4c:0a:67:68:82:1a:aa:5d:e0:bc:64:
c7:19:86:27:66:ca:e3:5d:6c:23:1d:45:2f:b2:26:
b6:52:3b:bc:b3:f8:ac:2b:0e:5f:37:bd:13:9e:3d:
a2:c3:f0:5b:2c:ee:c8:7b:24:e8:a7:27:4e:b6:a6:
9b:9d:91:15:01:d4:e2:3d:55:7c:ee:a7:f7:44:53:
63:0c:2c:2e:77:75:42:06:1a:11:48:cc:64:cf:b6:
15:b4:96:1b:9c:f2:d0:47:db:61:02:56:cb:01:66:
d7:87:f8:ad:09:0e:f5:08:ce:b9:3a:91:95:a8:de:
c9:30:98:b8:58:6f:68:e8:e5:0b:27:5a:c8:cd:48:
32:8d:c5:53:6f:0d:4a:21:02:43:d7:12:81:f2:90:
3a:29:2b:32:01:09:5d:d1:a4:3a:3d:05:38:bf:84:
ab:8f:fd:bd:3b:73:e3:18:cb:de:d9:f7:df:29:62:
3a:ac:c3:98:09:f1:b0:14:f0:0f:b0:ce:9c:94:ed:
f8:71:03:c0:0e:13:84:05:07:bb:78:95:1b:5f:f0:
3e:38:60:cf:5e:87:87:48:39:b5:bc:4a:5f:5d:9f:
d5:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:5C:39:43:57:3D:65:71:C2:ED:C6:2E:F9:F6:CC:61:E3:3B:EF:4D
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/81D2EBEC1C9C11F084683FD5DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.205.244.0/22
154.223.198.0-154.223.207.255
Signature Algorithm: sha256WithRSAEncryption
81:d1:ff:22:7b:ba:ea:fd:c5:3d:8d:d2:2d:f3:48:85:c7:2b:
e6:1b:2e:35:09:9d:04:b1:6d:33:fc:5e:81:5b:17:80:81:54:
f5:23:4f:7b:21:d4:2e:04:81:12:2b:41:5e:37:0f:a0:d4:51:
c2:61:5f:c9:56:e0:74:b0:21:81:b2:a7:13:e1:ed:c4:67:49:
b6:ae:6a:b4:fc:9d:fb:f2:08:79:7d:c8:f5:55:70:2a:b3:cd:
fe:83:56:7f:8d:59:5d:01:11:88:f8:39:42:1c:5a:78:a8:e6:
07:50:b6:94:53:ab:dc:1e:7f:e2:60:6a:36:ea:4c:09:0f:13:
76:d2:ed:8a:14:09:6e:94:19:03:e5:bd:a2:33:1c:13:3a:5a:
17:98:74:50:d1:a7:40:99:dc:1c:34:4f:1c:52:64:6b:7f:62:
f2:a9:00:5e:92:88:3d:7f:ea:02:32:7e:5a:04:0e:2e:55:ad:
ce:48:be:6a:de:55:15:5b:2a:e8:92:c0:d9:f2:b1:a5:b1:dd:
1d:61:60:51:34:32:ab:0e:f4:9c:d1:7a:03:1c:d6:a4:7d:4b:
f4:cd:21:23:fd:b8:ec:4d:82:b9:80:8d:de:8e:1c:52:36:df:
fc:17:80:e9:61:45:9c:36:ed:70:37:e3:3c:f6:47:3d:82:b9:
b7:58:32:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 22:56:26 2025 by rpki-client on console.sobornost.net