Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9B7FDC821C9011F0828BEC87DAE4EC9C.roa
File: 9B7FDC821C9011F0828BEC87DAE4EC9C.roa (raw, json)
Hash identifier: MBKiGcZPWWMe9M1l5faNeamgD3ETu53yBCurfXle9ag=
Subject key identifier: 4E:EA:E6:9E:F1:34:78:49:B1:B5:2A:33:37:50:8F:B3:10:A4:B6:D2
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0179D8
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9B7FDC821C9011F0828BEC87DAE4EC9C.roa
Signing time: Fri 18 Apr 2025 20:06:26 +0000
ROA not before: Fri 18 Apr 2025 20:06:21 +0000
ROA not after: Fri 30 May 2025 20:06:21 +0000
asID: 62240
IP address blocks: 154.195.2.0/24 maxlen: 24
154.195.3.0/24 maxlen: 24
154.195.97.0/24 maxlen: 24
154.195.98.0/24 maxlen: 24
154.195.99.0/24 maxlen: 24
154.195.101.0/24 maxlen: 24
154.195.102.0/24 maxlen: 24
154.195.103.0/24 maxlen: 24
154.195.104.0/24 maxlen: 24
154.195.105.0/24 maxlen: 24
154.195.106.0/24 maxlen: 24
154.195.107.0/24 maxlen: 24
154.195.109.0/24 maxlen: 24
154.195.110.0/24 maxlen: 24
154.195.114.0/24 maxlen: 24
154.195.115.0/24 maxlen: 24
154.195.119.0/24 maxlen: 24
154.195.121.0/24 maxlen: 24
154.195.122.0/24 maxlen: 24
154.195.132.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 27 Apr 2025 13:23:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 96728 (0x179d8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 18 20:06:21 2025 GMT
Not After : May 30 20:06:21 2025 GMT
Subject: CN=6802b0c2-2aa8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:66:40:1f:8f:78:22:3f:f1:e4:d3:ea:f9:fc:
06:42:af:16:e0:81:42:d3:77:4a:5d:f9:ff:3e:62:
cb:d3:04:9a:05:07:d9:57:9b:49:12:80:7a:ee:10:
03:2f:c0:b8:a3:44:9f:2e:9a:21:95:e3:42:0e:8b:
24:20:c2:d7:00:d2:40:0d:ad:6c:ce:43:16:d4:4d:
69:b2:1a:14:73:0b:71:5a:31:e5:7b:a4:cc:76:62:
37:d8:9a:07:08:14:56:e2:bd:0b:4a:cf:50:4b:0c:
ca:da:f4:5a:1f:64:cc:72:c1:6a:64:d5:5c:a4:48:
cc:cb:26:94:43:53:2c:c3:c8:3a:4d:c8:f4:81:95:
4d:d6:45:ba:7b:2c:0b:52:1e:49:88:50:bd:5b:65:
fc:83:28:13:68:6b:34:7e:6f:c2:24:3a:ce:e0:ae:
b6:9c:d6:fe:0f:2f:4e:8b:21:50:52:e7:e5:51:ac:
3c:80:1b:0d:3b:fe:6d:f3:c0:14:92:7e:5a:08:3e:
37:16:79:34:45:de:db:72:3e:0e:1a:e0:64:fb:64:
5a:84:3d:b9:7e:8f:53:42:f7:1a:1e:28:bc:4b:9e:
d4:7f:b0:a1:26:b2:1c:90:47:75:9a:ab:e1:ab:da:
d2:bb:66:7c:36:19:79:22:66:7c:25:92:b3:8f:81:
2c:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:EA:E6:9E:F1:34:78:49:B1:B5:2A:33:37:50:8F:B3:10:A4:B6:D2
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9B7FDC821C9011F0828BEC87DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.195.2.0/23
154.195.97.0-154.195.99.255
154.195.101.0-154.195.107.255
154.195.109.0-154.195.110.255
154.195.114.0/23
154.195.119.0/24
154.195.121.0-154.195.122.255
154.195.132.0/24
Signature Algorithm: sha256WithRSAEncryption
30:6b:d5:20:7a:6e:d9:5e:8b:9e:0c:41:a2:06:d5:71:6a:42:
df:8d:2f:06:4e:2b:03:66:ec:47:e2:f0:f6:8c:42:5c:6b:3e:
dd:f3:63:d6:bb:0b:64:48:0e:f6:98:02:40:8c:dc:91:45:f5:
29:18:4d:5f:db:d4:37:25:a2:83:ee:75:78:00:72:b3:24:71:
9c:c1:61:8d:43:a6:9e:67:0c:16:57:65:98:3e:51:0d:70:aa:
8e:73:c0:b2:37:36:71:d7:a0:e0:01:e4:5e:b7:ce:95:0c:45:
01:af:1a:d9:f2:63:f1:b2:21:33:3d:68:27:07:55:2d:54:5d:
4e:46:81:7b:a7:ac:a3:29:8e:e1:b4:03:84:3a:18:4b:d2:23:
88:46:aa:f8:97:39:28:8e:ea:66:06:65:3f:65:24:55:b0:89:
d3:2a:61:55:b5:50:23:af:78:bd:24:a9:5f:38:37:53:f2:03:
c2:89:2a:e4:2a:ad:34:a3:7e:b6:8a:ec:7e:8d:e4:8e:df:eb:
18:ac:93:47:5b:4b:8e:0f:61:76:a2:ff:04:2c:ba:7c:9a:ed:
3a:9f:de:1e:f9:4b:49:ea:34:7d:e3:58:96:9c:f1:c5:a6:f9:
a0:63:3a:14:80:9b:a7:39:bf:a1:21:34:7c:f5:99:46:68:be:
d1:cf:31:ab
-----BEGIN CERTIFICATE-----
MIIFzjCCBLagAwIBAgIDAXnYMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjUwNDE4MjAwNjIxWhcNMjUwNTMwMjAwNjIxWjAYMRYw
FAYDVQQDEw02ODAyYjBjMi0yYWE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAyWZAH494Ij/x5NPq+fwGQq8W4IFC03dKXfn/PmLL0wSaBQfZV5tJEoB6
7hADL8C4o0SfLpohleNCDoskIMLXANJADa1szkMW1E1pshoUcwtxWjHle6TMdmI3
2JoHCBRW4r0LSs9QSwzK2vRaH2TMcsFqZNVcpEjMyyaUQ1Msw8g6Tcj0gZVN1kW6
eywLUh5JiFC9W2X8gygTaGs0fm/CJDrO4K62nNb+Dy9OiyFQUuflUaw8gBsNO/5t
88AUkn5aCD43Fnk0Rd7bcj4OGuBk+2RahD25fo9TQvcaHii8S57Uf7ChJrIckEd1
mqvhq9rSu2Z8Nhl5ImZ8JZKzj4EsjQIDAQABo4IC7zCCAuswHQYDVR0OBBYEFE7q
5p7xNHhJsbUqMzdQj7MQpLbSMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC85QjdGREM4MjFDOTAxMUYwODI4QkVDODdEQUU0RUM5Qy5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMGkGCCsGAQUFBwEHAQH/BFowWDBWBAIAATBQAwQBmsMCMAwDBACaw2EDBAKa
w2AwDAMEAJrDZQMEAprDaDAMAwQAmsNtAwQAmsNuAwQBmsNyAwQAmsN3MAwDBACa
w3kDBACaw3oDBACaw4QwDQYJKoZIhvcNAQELBQADggEBADBr1SB6btlei54MQaIG
1XFqQt+NLwZOKwNm7Efi8PaMQlxrPt3zY9a7C2RIDvaYAkCM3JFF9SkYTV/b1Dcl
ooPudXgAcrMkcZzBYY1Dpp5nDBZXZZg+UQ1wqo5zwLI3NnHXoOAB5F63zpUMRQGv
GtnyY/GyITM9aCcHVS1UXU5GgXunrKMpjuG0A4Q6GEvSI4hGqviXOSiO6mYGZT9l
JFWwidMqYVW1UCOveL0kqV84N1PyA8KJKuQqrTSjfraK7H6N5I7f6xisk0dbS44P
YXai/wQsunya7Tqf3h75S0nqNH3jWJac8cWm+aBjOhSAm6c5v6EhNHz1mUZovtHP
Mas=
-----END CERTIFICATE-----
Generated at Fri Apr 25 22:09:58 2025 by rpki-client on console.sobornost.net