Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A65954CE1E1D11F09300A0E5DAE4EC9C.roa
File: A65954CE1E1D11F09300A0E5DAE4EC9C.roa (raw, json)
Hash identifier: rOyLcupWsI6Kz0JabNf8h8r13yp0ZlE7SCcnMXt8gQg=
Subject key identifier: 3E:54:DB:0B:18:54:5F:FB:80:C3:24:30:6A:72:75:65:9A:F2:09:77
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 017A3C
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A65954CE1E1D11F09300A0E5DAE4EC9C.roa
Signing time: Sun 20 Apr 2025 19:28:35 +0000
ROA not before: Sun 20 Apr 2025 19:28:30 +0000
ROA not after: Sun 27 Apr 2025 19:28:30 +0000
asID: 5065
IP address blocks: 154.84.144.0/22 maxlen: 24
154.84.184.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 26 Apr 2025 00:06:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 96828 (0x17a3c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 20 19:28:30 2025 GMT
Not After : Apr 27 19:28:30 2025 GMT
Subject: CN=68054ae2-4f77
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:ee:4e:f2:39:49:0b:eb:c0:dd:2d:ab:2f:0f:
c2:db:75:d8:ff:5b:b1:03:47:97:9f:d8:1d:b6:d7:
03:93:16:f0:d3:cc:57:6d:62:0e:82:53:41:78:e6:
b1:6d:b4:9c:a7:a6:93:6a:c6:3c:00:6d:67:a5:55:
5a:1b:ca:31:26:6f:dd:34:c3:ea:a2:c5:4e:9c:7b:
26:f1:fd:76:1a:3f:0b:85:52:75:f2:d5:6a:be:ab:
4d:3c:40:18:03:d6:52:15:81:cf:fc:2e:58:9e:4c:
f3:f8:ac:7e:a9:22:b9:af:eb:4e:26:93:5e:62:5d:
22:9a:ba:7a:27:d1:45:c8:41:87:df:ca:bb:19:21:
af:21:aa:bb:f8:c7:cb:f8:47:d7:43:f5:90:81:cd:
79:cf:33:4d:9e:d4:44:a0:42:44:fc:38:3b:42:5a:
47:63:74:c5:1c:5c:6b:15:af:8c:75:c6:b7:0b:18:
6e:9f:91:3b:b3:1d:34:c2:9a:b6:1a:50:17:e3:92:
0c:48:c4:83:5b:3f:d6:75:68:25:9a:b5:05:d1:ed:
04:b1:41:b5:4c:11:9f:17:b7:1d:ad:c4:47:80:42:
7e:dc:4a:98:66:8c:e5:e1:e4:3e:25:c7:9c:80:00:
70:c1:2c:ed:44:91:08:b6:e8:ff:59:f0:63:a9:b6:
b8:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:54:DB:0B:18:54:5F:FB:80:C3:24:30:6A:72:75:65:9A:F2:09:77
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A65954CE1E1D11F09300A0E5DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.84.144.0/22
154.84.184.0/22
Signature Algorithm: sha256WithRSAEncryption
36:29:2a:91:47:71:34:ae:9d:98:71:ba:54:73:b0:f1:4d:82:
0c:76:66:95:72:86:14:e5:42:cb:ab:49:75:94:70:c8:be:48:
df:89:72:51:b1:e3:b1:cc:43:c9:ac:e7:41:01:8d:1d:51:3a:
56:46:2f:f2:58:25:a8:b0:52:be:62:b4:c9:f4:53:75:f2:bb:
b7:17:70:83:63:dc:5e:f7:c2:3c:2a:42:c6:a0:cc:f0:7b:a0:
c9:29:5d:9e:58:ee:b6:f2:e7:48:54:ee:27:f7:64:b2:44:ab:
b3:e0:fd:31:cf:09:66:9b:ee:de:f6:12:76:a6:0d:3e:26:00:
7b:3b:95:4b:ca:fc:dc:eb:00:57:46:41:12:c7:fa:1b:b4:7a:
63:bc:c3:f9:ee:64:44:1d:dc:9c:23:94:f5:78:a7:92:75:b7:
b5:67:51:e0:a8:34:9c:a7:c2:41:40:6d:94:6d:fd:3a:a0:6f:
7c:78:7c:0f:b1:7c:2e:7c:23:e4:92:02:23:4f:da:74:82:b0:
4a:fb:e7:8d:e5:dc:dd:bd:f0:89:dc:eb:be:aa:84:f2:2e:fc:
2d:c8:b6:d3:20:2e:56:33:43:e7:9a:67:35:48:9a:c2:51:ee:
50:6e:0a:36:f1:6e:0e:74:14:1a:c5:0f:fb:6e:4e:3f:0c:50:
5f:ee:7a:c4
-----BEGIN CERTIFICATE-----
MIIFijCCBHKgAwIBAgIDAXo8MA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjUwNDIwMTkyODMwWhcNMjUwNDI3MTkyODMwWjAYMRYw
FAYDVQQDEw02ODA1NGFlMi00Zjc3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA0u5O8jlJC+vA3S2rLw/C23XY/1uxA0eXn9gdttcDkxbw08xXbWIOglNB
eOaxbbScp6aTasY8AG1npVVaG8oxJm/dNMPqosVOnHsm8f12Gj8LhVJ18tVqvqtN
PEAYA9ZSFYHP/C5Ynkzz+Kx+qSK5r+tOJpNeYl0imrp6J9FFyEGH38q7GSGvIaq7
+MfL+EfXQ/WQgc15zzNNntREoEJE/Dg7QlpHY3TFHFxrFa+Mdca3Cxhun5E7sx00
wpq2GlAX45IMSMSDWz/WdWglmrUF0e0EsUG1TBGfF7cdrcRHgEJ+3EqYZozl4eQ+
JcecgABwwSztRJEItuj/WfBjqba4GwIDAQABo4ICqzCCAqcwHQYDVR0OBBYEFD5U
2wsYVF/7gMMkMGpydWWa8gl3MB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9BNjU5NTRDRTFFMUQxMUYwOTMwMEEwRTVEQUU0RUM5Qy5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQCmlSQAwQCmlS4MA0GCSqG
SIb3DQEBCwUAA4IBAQA2KSqRR3E0rp2YcbpUc7DxTYIMdmaVcoYU5ULLq0l1lHDI
vkjfiXJRseOxzEPJrOdBAY0dUTpWRi/yWCWosFK+YrTJ9FN18ru3F3CDY9xe98I8
KkLGoMzwe6DJKV2eWO628udIVO4n92SyRKuz4P0xzwlmm+7e9hJ2pg0+JgB7O5VL
yvzc6wBXRkESx/obtHpjvMP57mREHdycI5T1eKeSdbe1Z1HgqDScp8JBQG2Ubf06
oG98eHwPsXwufCPkkgIjT9p0grBK++eN5dzdvfCJ3Ou+qoTyLvwtyLbTIC5WM0Pn
mmc1SJrCUe5Qbgo28W4OdBQaxQ/7bk4/DFBf7nrE
-----END CERTIFICATE-----
Generated at Thu Apr 24 18:04:16 2025 by rpki-client on console.sobornost.net