Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8CD4F5E41D0011F08DD72781DAE4EC9C.roa
File: 8CD4F5E41D0011F08DD72781DAE4EC9C.roa (raw, json)
Hash identifier: VL/eV64AQ+ImjwZjMmhRCFmJBTIbDJARSCzG4bKTp0w=
Subject key identifier: AA:16:E0:0C:5E:BD:0A:5D:5B:DA:9B:46:34:7B:9C:14:A6:EC:E7:73
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 017A15
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8CD4F5E41D0011F08DD72781DAE4EC9C.roa
Signing time: Sat 19 Apr 2025 09:27:45 +0000
ROA not before: Sat 19 Apr 2025 09:27:40 +0000
ROA not after: Mon 28 Apr 2025 09:27:40 +0000
asID: 5065
IP address blocks: 154.86.96.0/24 maxlen: 24
154.86.97.0/24 maxlen: 24
154.86.98.0/24 maxlen: 24
154.86.99.0/24 maxlen: 24
154.86.100.0/24 maxlen: 24
154.86.101.0/24 maxlen: 24
154.86.102.0/24 maxlen: 24
154.86.103.0/24 maxlen: 24
154.86.109.0/24 maxlen: 24
154.86.111.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 26 Apr 2025 00:06:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 96789 (0x17a15)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 19 09:27:40 2025 GMT
Not After : Apr 28 09:27:40 2025 GMT
Subject: CN=68036c91-05db
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:b2:88:2c:2b:e2:1f:08:1f:a3:40:d0:6e:15:
2b:c5:4c:17:ea:dd:0b:fb:fe:2b:4c:6d:36:72:25:
63:94:5c:22:d9:3f:6d:3b:f0:82:99:46:1f:e9:73:
36:43:7c:c2:13:a4:ec:b2:7c:9b:95:62:f2:27:34:
11:a1:c5:34:06:cc:17:89:d3:86:6d:59:69:28:ab:
f3:46:f9:8b:15:15:bf:44:7d:85:22:77:df:52:23:
93:a8:e3:96:69:57:6e:43:c9:88:97:6f:c7:ca:0f:
00:d1:e3:5d:de:04:61:3a:54:49:95:6b:5a:f4:93:
9e:51:6d:3e:0e:20:71:21:c5:ee:8d:63:5f:1a:12:
e8:55:8d:ae:72:11:ee:7d:51:ea:6a:06:f2:3b:7e:
bc:67:f2:2d:ba:30:b8:32:c8:06:52:43:7a:f3:5f:
47:9e:f6:2f:9e:82:a2:85:8d:6c:3e:51:34:87:43:
48:c1:fc:25:e4:de:16:c3:c3:c0:a1:7d:90:26:89:
7f:cf:96:0d:d6:84:8d:c4:74:4f:8b:36:97:bc:80:
54:26:5d:35:28:84:dd:b3:3f:ef:bf:a3:7d:4d:10:
72:2e:71:26:67:60:d2:97:68:d7:90:47:07:6b:48:
7c:f3:0a:33:77:5c:64:76:9e:14:2b:49:60:c1:6e:
44:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:16:E0:0C:5E:BD:0A:5D:5B:DA:9B:46:34:7B:9C:14:A6:EC:E7:73
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8CD4F5E41D0011F08DD72781DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.86.96.0/21
154.86.109.0/24
154.86.111.0/24
Signature Algorithm: sha256WithRSAEncryption
ce:39:a1:0f:e0:00:23:ee:9f:46:a1:0a:87:bf:58:5f:bf:cb:
fa:29:1e:1d:d1:3c:f8:6a:78:4d:94:b9:95:20:c1:68:75:60:
1e:1d:2c:fb:94:24:e9:a6:50:c8:10:00:e4:a1:35:24:db:1c:
12:2d:65:88:98:7a:35:bd:30:06:4a:b6:ae:64:6c:99:d3:31:
92:84:6f:50:5d:6b:37:4c:95:56:6a:a6:12:04:c4:71:02:ea:
5b:3d:c2:71:c3:32:38:e4:a9:b9:d9:c9:7d:cf:a8:35:ad:ed:
6a:b4:3b:ea:0b:04:3f:d1:ed:0a:47:72:c5:62:f3:8c:13:71:
43:90:72:47:ee:b4:40:38:42:a3:d4:0e:95:8e:3f:bb:c0:7f:
52:46:56:d5:4c:72:20:ed:91:87:a4:82:5d:85:65:f2:b6:07:
40:6d:fc:47:1a:54:63:af:a0:29:3b:7e:fb:1d:90:04:06:78:
d8:b1:90:16:2b:2e:6a:a9:b7:98:6a:e2:3d:d3:f3:58:15:ee:
00:cb:6b:62:ae:d2:85:ce:1c:ad:76:87:01:95:d2:a0:9a:0d:
28:6e:cd:04:28:35:b9:45:f3:26:6c:94:9c:50:4d:b1:dd:a9:
65:d0:66:a6:58:fc:58:d1:d0:d7:b5:29:e1:2c:ad:8f:7f:89:
be:a9:37:48
-----BEGIN CERTIFICATE-----
MIIFkDCCBHigAwIBAgIDAXoVMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjUwNDE5MDkyNzQwWhcNMjUwNDI4MDkyNzQwWjAYMRYw
FAYDVQQDEw02ODAzNmM5MS0wNWRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAt7KILCviHwgfo0DQbhUrxUwX6t0L+/4rTG02ciVjlFwi2T9tO/CCmUYf
6XM2Q3zCE6TssnyblWLyJzQRocU0BswXidOGbVlpKKvzRvmLFRW/RH2FInffUiOT
qOOWaVduQ8mIl2/Hyg8A0eNd3gRhOlRJlWta9JOeUW0+DiBxIcXujWNfGhLoVY2u
chHufVHqagbyO368Z/ItujC4MsgGUkN6819HnvYvnoKihY1sPlE0h0NIwfwl5N4W
w8PAoX2QJol/z5YN1oSNxHRPizaXvIBUJl01KITdsz/vv6N9TRByLnEmZ2DSl2jX
kEcHa0h88wozd1xkdp4UK0lgwW5EEwIDAQABo4ICsTCCAq0wHQYDVR0OBBYEFKoW
4AxevQpdW9qbRjR7nBSm7OdzMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC84Q0Q0RjVFNDFEMDAxMUYwOERENzI3ODFEQUU0RUM5Qy5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQDmlZgAwQAmlZtAwQAmlZv
MA0GCSqGSIb3DQEBCwUAA4IBAQDOOaEP4AAj7p9GoQqHv1hfv8v6KR4d0Tz4anhN
lLmVIMFodWAeHSz7lCTpplDIEADkoTUk2xwSLWWImHo1vTAGSrauZGyZ0zGShG9Q
XWs3TJVWaqYSBMRxAupbPcJxwzI45Km52cl9z6g1re1qtDvqCwQ/0e0KR3LFYvOM
E3FDkHJH7rRAOEKj1A6Vjj+7wH9SRlbVTHIg7ZGHpIJdhWXytgdAbfxHGlRjr6Ap
O377HZAEBnjYsZAWKy5qqbeYauI90/NYFe4Ay2tirtKFzhytdocBldKgmg0obs0E
KDW5RfMmbJScUE2x3all0GamWPxY0dDXtSnhLK2Pf4m+qTdI
-----END CERTIFICATE-----
Generated at Thu Apr 24 18:04:07 2025 by rpki-client on console.sobornost.net