Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BE03D3BC245611F09698088EDAE4EC9C.roa
File: BE03D3BC245611F09698088EDAE4EC9C.roa (raw, json)
Hash identifier: 4csewi7THppE9HOF43ytoigR04uUZmi+AhFf9wC+yIo=
Subject key identifier: 14:19:E0:52:23:36:E3:D1:58:35:F1:64:68:96:E9:70:1F:FF:71:CC
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 017C41
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BE03D3BC245611F09698088EDAE4EC9C.roa
Signing time: Mon 28 Apr 2025 17:32:23 +0000
ROA not before: Mon 28 Apr 2025 17:32:18 +0000
ROA not after: Wed 04 Jun 2025 17:32:18 +0000
asID: 202656
IP address blocks: 154.221.56.0/24 maxlen: 24
154.221.57.0/24 maxlen: 24
154.221.58.0/24 maxlen: 24
154.221.59.0/24 maxlen: 24
154.221.61.0/24 maxlen: 24
154.222.1.0/24 maxlen: 24
154.222.12.0/24 maxlen: 24
154.222.13.0/24 maxlen: 24
154.222.14.0/24 maxlen: 24
154.222.15.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 30 Apr 2025 00:06:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 97345 (0x17c41)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 28 17:32:18 2025 GMT
Not After : Jun 4 17:32:18 2025 GMT
Subject: CN=680fbba6-ebd8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:68:49:69:8e:29:98:f1:1c:a2:29:25:c1:d2:
dd:08:63:b9:00:9a:45:6d:75:59:3f:f2:be:5e:b9:
a3:4c:ae:e4:97:a9:62:b2:18:78:3b:e7:46:b9:7d:
ab:cb:a7:c1:f8:25:2a:6a:90:6f:0d:00:bf:34:72:
27:ee:1d:43:0b:3e:f7:20:79:16:ee:f2:e2:af:10:
37:f0:80:77:30:5d:fa:48:c4:84:1f:ff:69:dd:57:
1f:3d:a4:96:75:47:de:dc:d1:9e:f7:4f:c5:4c:6e:
a6:6a:6a:2b:ab:6e:6a:90:03:77:2f:b2:6b:41:e5:
08:36:21:2a:ee:62:9c:2d:44:4b:77:53:b2:16:15:
30:b9:7c:ad:2f:46:33:ba:a5:9d:9f:c5:74:8a:78:
22:50:7b:19:f1:89:c9:73:59:a0:c3:56:2c:ad:c2:
c5:fd:b8:dc:ee:20:92:b6:ba:28:a6:f0:35:02:d4:
b4:37:fe:2d:2e:66:d5:aa:b1:e3:ae:f3:24:87:41:
98:e3:7d:51:2c:79:9e:5c:b3:d9:33:00:da:f6:f2:
b0:41:44:d2:51:c4:88:60:0d:15:53:2f:60:32:ee:
9b:8e:34:4e:52:6b:2e:fb:8f:49:e6:15:37:fc:08:
e6:9c:5e:86:20:f4:8d:74:d2:77:04:db:29:3b:ec:
6e:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:19:E0:52:23:36:E3:D1:58:35:F1:64:68:96:E9:70:1F:FF:71:CC
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BE03D3BC245611F09698088EDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.221.56.0/22
154.221.61.0/24
154.222.1.0/24
154.222.12.0/22
Signature Algorithm: sha256WithRSAEncryption
06:38:11:fd:20:38:07:e6:c1:ed:80:3c:6c:d6:7f:84:75:f3:
8e:dc:59:92:4e:1b:89:b2:c8:61:51:3c:1c:78:68:f5:dd:52:
02:82:64:05:ed:e2:03:fd:d4:03:2f:0d:04:35:0f:07:08:26:
8f:6b:ac:0e:42:72:32:80:d2:d8:90:2a:72:d9:05:7e:b0:40:
da:20:49:9a:e0:c1:c1:bc:7f:b9:8c:6c:c8:f0:d8:6a:41:f3:
ef:71:ef:49:b8:02:16:27:76:f9:8d:88:6b:9d:b5:4a:85:f7:
0a:c6:4b:b2:6f:94:95:05:86:a2:32:34:85:55:a1:06:be:a0:
b4:a2:fc:95:43:93:0c:af:88:84:5c:9a:74:bd:a9:9b:91:d2:
47:c1:29:ba:b6:74:0f:bc:a4:07:d0:11:36:ba:d3:db:d3:72:
5f:21:d9:25:cf:98:52:fe:9d:56:ea:1f:67:5f:f4:c6:9d:0c:
56:e5:65:95:0e:9e:7d:f9:e1:da:5b:d8:f7:d0:4f:46:9c:d7:
b1:c1:59:11:0f:ea:43:c3:b5:47:d5:bb:77:87:8a:5a:0d:06:
06:9a:dd:1c:fa:25:02:f8:12:10:e0:ac:42:c7:08:92:fc:38:
22:54:84:0c:cd:91:1c:b2:d6:91:fd:06:25:0d:fb:c3:f6:b5:
03:9a:c4:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 22:57:19 2025 by rpki-client on console.sobornost.net