Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C7B3EA2E1C9E11F088C884E4DAE4EC9C.roa
File: C7B3EA2E1C9E11F088C884E4DAE4EC9C.roa (raw, json)
Hash identifier: R2vFIDfmvsQigPBrQ+o03/KrZS02jwrb12Mmqs8lXwQ=
Subject key identifier: D6:17:7B:58:C7:6E:0E:7E:7C:B7:FA:A7:DD:DE:D0:D1:DB:10:7C:D7
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0179F0
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C7B3EA2E1C9E11F088C884E4DAE4EC9C.roa
Signing time: Fri 18 Apr 2025 21:47:53 +0000
ROA not before: Fri 18 Apr 2025 21:47:48 +0000
ROA not after: Sat 31 May 2025 21:47:48 +0000
asID: 44559
IP address blocks: 154.203.216.0/24 maxlen: 24
154.203.218.0/24 maxlen: 24
154.203.219.0/24 maxlen: 24
154.203.220.0/24 maxlen: 24
154.203.221.0/24 maxlen: 24
154.203.222.0/24 maxlen: 24
154.203.223.0/24 maxlen: 24
154.203.224.0/24 maxlen: 24
154.203.225.0/24 maxlen: 24
154.203.230.0/24 maxlen: 24
154.203.231.0/24 maxlen: 24
154.205.224.0/24 maxlen: 24
154.205.225.0/24 maxlen: 24
154.205.226.0/24 maxlen: 24
154.205.227.0/24 maxlen: 24
154.205.228.0/24 maxlen: 24
154.205.229.0/24 maxlen: 24
154.205.230.0/24 maxlen: 24
154.205.231.0/24 maxlen: 24
154.205.232.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 27 Apr 2025 00:06:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 96752 (0x179f0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 18 21:47:48 2025 GMT
Not After : May 31 21:47:48 2025 GMT
Subject: CN=6802c889-5484
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:c9:0e:e4:19:f1:b1:b6:91:b3:fa:fd:66:21:
f6:24:5a:b9:99:df:f9:31:3e:47:e4:d0:6d:72:61:
30:36:17:3b:cd:ce:76:19:80:5e:56:07:72:61:65:
ad:29:a9:63:37:e9:a6:c0:89:29:a3:2f:86:6f:98:
75:e3:82:46:f9:b2:49:f7:df:46:01:bb:d5:ef:1d:
ba:dc:8d:75:3f:69:d9:08:f4:57:92:2d:f9:66:9e:
b1:ab:67:32:0b:4c:fc:66:4f:37:c0:b1:a8:50:95:
0b:9a:7e:22:35:96:32:d8:c1:4f:c9:d2:c2:05:b1:
c3:8e:65:f2:a2:a7:53:9d:ad:4e:88:b0:c7:dd:57:
bc:c2:20:c4:b6:1d:ce:97:01:67:1a:b8:61:8f:af:
03:6e:e5:f7:ce:1b:87:ba:c9:c4:db:f7:92:24:19:
ef:8b:1d:11:03:e6:03:b4:3e:b9:1f:3b:16:e5:86:
9d:3e:ed:22:81:5c:e9:c3:2e:31:4e:f2:17:23:70:
9f:7a:8e:14:a5:28:96:04:00:54:9f:1f:61:53:b5:
42:66:1e:5f:47:2d:67:fa:d7:94:2f:59:1a:30:15:
2a:92:7a:00:4e:59:a3:cb:97:94:eb:f3:88:a1:9e:
4f:65:79:e6:41:85:53:6f:de:86:cd:84:f2:b3:66:
4b:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:17:7B:58:C7:6E:0E:7E:7C:B7:FA:A7:DD:DE:D0:D1:DB:10:7C:D7
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C7B3EA2E1C9E11F088C884E4DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.203.216.0/24
154.203.218.0-154.203.225.255
154.203.230.0/23
154.205.224.0-154.205.232.255
Signature Algorithm: sha256WithRSAEncryption
a1:5e:b0:4a:3b:13:32:ee:57:b2:c1:a1:e1:2c:c4:7b:8c:9b:
e0:af:ab:7f:53:e9:0a:10:56:73:fa:30:fc:87:fa:17:1a:d9:
f2:f6:74:16:b4:06:97:e9:13:38:33:e1:3c:96:ff:0a:4b:1f:
f0:e6:46:7e:fd:e3:c5:38:0f:5b:7b:be:f9:2b:ea:7f:1d:b8:
9c:16:7e:8d:8d:9b:05:e8:9c:bc:f9:23:db:5f:06:39:dc:62:
f7:cc:36:03:3d:2b:5d:b9:99:14:55:9d:e5:33:cc:5f:f9:78:
0d:47:02:df:0f:d8:ab:e0:2d:b7:ac:2a:88:2b:de:18:d5:13:
25:2a:d9:fb:36:ad:35:82:04:a1:55:a5:4e:df:8d:48:fe:44:
3a:44:65:ec:c0:fc:a0:63:bd:5f:a2:07:52:41:2c:d8:5d:7d:
db:0c:13:9a:c2:48:0c:8d:1c:5d:68:b7:90:07:11:7a:36:d4:
69:72:75:ae:31:20:38:46:25:b9:12:fe:25:e5:db:f9:51:27:
3a:03:a4:dc:32:c7:c1:50:bd:18:04:0c:29:9a:93:06:61:2c:
34:c6:e2:6a:a2:49:58:62:31:f6:90:04:18:1d:ff:2d:8e:88:
f6:c4:f6:c9:94:0b:8b:22:46:8c:c6:b9:fe:2f:74:c4:69:2c:
07:9d:a5:77
-----BEGIN CERTIFICATE-----
MIIFpjCCBI6gAwIBAgIDAXnwMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjUwNDE4MjE0NzQ4WhcNMjUwNTMxMjE0NzQ4WjAYMRYw
FAYDVQQDEw02ODAyYzg4OS01NDg0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAockO5BnxsbaRs/r9ZiH2JFq5md/5MT5H5NBtcmEwNhc7zc52GYBeVgdy
YWWtKaljN+mmwIkpoy+Gb5h144JG+bJJ999GAbvV7x263I11P2nZCPRXki35Zp6x
q2cyC0z8Zk83wLGoUJULmn4iNZYy2MFPydLCBbHDjmXyoqdTna1OiLDH3Ve8wiDE
th3OlwFnGrhhj68DbuX3zhuHusnE2/eSJBnvix0RA+YDtD65HzsW5YadPu0igVzp
wy4xTvIXI3Cfeo4UpSiWBABUnx9hU7VCZh5fRy1n+teUL1kaMBUqknoATlmjy5eU
6/OIoZ5PZXnmQYVTb96GzYTys2ZL7wIDAQABo4ICxzCCAsMwHQYDVR0OBBYEFNYX
e1jHbg5+fLf6p93e0NHbEHzXMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9DN0IzRUEyRTFDOUUxMUYwODhDODg0RTREQUU0RUM5Qy5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMEEGCCsGAQUFBwEHAQH/BDIwMDAuBAIAATAoAwQAmsvYMAwDBAGay9oDBAGa
y+ADBAGay+YwDAMEBZrN4AMEAJrN6DANBgkqhkiG9w0BAQsFAAOCAQEAoV6wSjsT
Mu5XssGh4SzEe4yb4K+rf1PpChBWc/ow/If6FxrZ8vZ0FrQGl+kTODPhPJb/Cksf
8OZGfv3jxTgPW3u++Svqfx24nBZ+jY2bBeicvPkj218GOdxi98w2Az0rXbmZFFWd
5TPMX/l4DUcC3w/Yq+Att6wqiCveGNUTJSrZ+zatNYIEoVWlTt+NSP5EOkRl7MD8
oGO9X6IHUkEs2F192wwTmsJIDI0cXWi3kAcRejbUaXJ1rjEgOEYluRL+JeXb+VEn
OgOk3DLHwVC9GAQMKZqTBmEsNMbiaqJJWGIx9pAEGB3/LY6I9sT2yZQLiyJGjMa5
/i90xGksB52ldw==
-----END CERTIFICATE-----
Generated at Fri Apr 25 12:57:32 2025 by rpki-client on console.sobornost.net