Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C35E35FA109211F0B792C262762E951A.roa
File: C35E35FA109211F0B792C262762E951A.roa (raw, json)
Hash identifier: 0qtc9+L+kLZUPJixbqRMq11PnAxvbh7rXz50+a/2wik=
Subject key identifier: 5B:BE:71:67:72:65:AE:26:AC:7C:2F:05:B2:AE:81:7F:C3:3A:29:B6
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01779F
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C35E35FA109211F0B792C262762E951A.roa
Signing time: Thu 03 Apr 2025 13:51:38 +0000
ROA not before: Thu 03 Apr 2025 13:51:33 +0000
ROA not after: Sun 03 Aug 2025 13:51:33 +0000
asID: 150008
IP address blocks: 154.206.21.0/24 maxlen: 24
154.206.24.0/24 maxlen: 24
154.206.25.0/24 maxlen: 24
154.206.26.0/24 maxlen: 24
154.206.27.0/24 maxlen: 24
154.206.28.0/24 maxlen: 24
154.206.29.0/24 maxlen: 24
154.206.30.0/24 maxlen: 24
154.206.31.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 30 Apr 2025 00:06:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 96159 (0x1779f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 3 13:51:33 2025 GMT
Not After : Aug 3 13:51:33 2025 GMT
Subject: CN=67ee926a-5e79
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:be:43:94:4a:b2:cf:52:86:f3:5e:70:4e:a8:
13:94:a2:09:bf:33:18:b8:e1:fe:ad:d0:e0:01:60:
70:29:5c:ba:cd:6c:66:70:25:b3:1a:ed:f5:e4:b8:
df:4b:b9:0e:85:89:dd:e1:49:fa:c2:ed:49:ef:55:
e0:8b:31:5e:c3:31:67:ff:2c:94:d7:0f:c2:22:00:
e7:f2:7b:53:ae:f2:92:8f:c9:ab:33:1a:38:68:97:
40:5b:44:65:f2:b6:e7:80:6d:a7:17:45:f5:f8:ab:
83:3a:0f:43:40:c4:d7:59:4c:2b:c9:18:f8:41:f4:
bd:6d:d1:c5:48:6d:3f:ef:8b:d5:88:20:b6:30:a1:
43:c0:4a:bb:8e:58:96:e4:20:48:3d:3f:9c:38:7d:
67:28:f5:1d:ff:1a:cd:72:65:1c:8c:70:1a:00:05:
65:02:67:2d:f7:e2:c3:c1:da:a9:b1:77:8b:d1:87:
1c:00:79:ce:7a:48:b3:0f:16:53:a5:e2:23:73:32:
af:18:1b:10:79:98:3c:16:f2:51:10:97:8d:3f:f7:
49:24:89:9f:ae:ff:2b:84:1e:fd:1a:b7:a2:58:53:
8a:0f:5f:c9:e6:e3:da:28:86:fc:95:b0:27:6d:31:
93:06:2d:be:58:38:e4:8d:cb:f4:22:c6:d8:eb:0b:
0a:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:BE:71:67:72:65:AE:26:AC:7C:2F:05:B2:AE:81:7F:C3:3A:29:B6
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C35E35FA109211F0B792C262762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.206.21.0/24
154.206.24.0/21
Signature Algorithm: sha256WithRSAEncryption
56:96:40:6d:5e:0d:ec:9f:03:0e:c5:b2:90:c4:b5:a4:01:93:
e8:04:47:53:6b:e0:a7:8c:3d:7d:45:78:a8:7a:7a:82:ca:65:
c8:67:b7:f0:31:12:0d:a4:78:3d:9c:dd:f0:c3:b4:b5:64:a1:
c2:c6:c3:15:2b:7f:de:b0:92:43:b2:21:eb:13:0c:2a:92:46:
24:c9:c3:29:ed:4e:2f:71:fa:47:2c:84:53:32:7c:2e:28:29:
a6:93:df:27:ea:ad:cd:25:7f:68:91:97:6e:79:81:81:06:ce:
5a:a2:36:51:e0:7c:90:81:ea:c6:a7:6c:7d:58:a3:08:c3:77:
6b:88:c1:97:ff:98:fb:12:f1:46:bc:f2:3e:8f:dc:81:5e:5b:
36:dd:e2:44:6b:56:1f:ad:cd:56:1f:51:70:da:e5:c7:c6:1a:
ed:4c:df:89:f8:40:c7:8f:08:5e:07:a4:cf:d3:ac:45:cc:94:
10:c6:a4:88:8a:16:b2:68:0f:94:f4:b6:1b:25:88:00:d7:c8:
f1:ca:95:7c:ad:d9:51:e4:bf:28:7c:6d:7f:3e:76:d3:8a:e3:
0f:c5:33:56:d9:03:93:f0:39:ed:16:45:88:53:c3:b6:13:75:
42:40:c6:95:58:83:48:a6:d1:65:0c:5c:aa:3f:e0:53:16:2e:
ff:ec:72:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 22:57:24 2025 by rpki-client on console.sobornost.net