Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FE8B803013C911F0BC340050762E951A.roa
File: FE8B803013C911F0BC340050762E951A.roa (raw, json)
Hash identifier: o1Nhbiqh9Zp+E4JYdh27+YexZahWUlTKGZgQlye30Mw=
Subject key identifier: 60:42:3A:1F:D3:92:32:1D:AD:4B:2E:EB:95:97:DA:E0:FA:B3:20:AB
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01780E
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FE8B803013C911F0BC340050762E951A.roa
Signing time: Mon 07 Apr 2025 16:04:33 +0000
ROA not before: Mon 07 Apr 2025 16:04:29 +0000
ROA not after: Sun 11 May 2025 16:04:29 +0000
asID: 211590
IP address blocks: 154.83.103.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 30 Apr 2025 00:06:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 96270 (0x1780e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 7 16:04:29 2025 GMT
Not After : May 11 16:04:29 2025 GMT
Subject: CN=67f3f791-da01
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:fb:28:0d:ef:98:0b:79:4e:56:2c:57:db:29:
ee:5f:ed:80:74:8d:bc:7a:92:69:e5:67:f0:b7:d2:
c4:fb:ad:6d:3b:cd:af:db:93:62:04:66:7c:2d:1a:
7a:6f:dc:b2:27:d4:6e:c5:ff:e9:41:97:b0:0e:e7:
01:ef:a5:24:93:0e:9c:1d:48:59:60:48:06:fe:80:
32:50:19:1e:d6:f7:1a:75:7a:af:9a:9f:51:73:55:
23:b7:95:55:12:ce:5c:0d:30:09:1c:41:de:33:f4:
fa:af:4b:61:ea:c4:37:3f:ca:95:33:21:1b:eb:0d:
5f:34:4f:2b:d0:7b:48:79:8b:98:83:91:d1:5e:19:
a0:ae:30:ea:69:0f:d0:25:66:76:9f:96:6d:54:d2:
d7:72:5b:be:9a:7b:67:1d:0c:a3:e9:6f:15:5c:86:
63:42:1e:7f:01:b3:d3:82:c9:b9:15:9b:79:37:30:
22:14:80:ba:40:04:be:47:d3:e7:ca:b5:0e:1e:a7:
ba:d4:db:40:2c:4b:d1:d2:4e:e7:58:01:e1:5a:e6:
f5:1f:ea:94:6a:8f:88:e6:a8:7e:01:7c:26:86:4d:
5a:35:86:06:fa:8a:5b:c0:9f:97:e0:4f:ff:c0:03:
98:6f:1f:e4:5b:7d:37:2e:ff:0e:10:7a:9d:74:92:
80:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:42:3A:1F:D3:92:32:1D:AD:4B:2E:EB:95:97:DA:E0:FA:B3:20:AB
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FE8B803013C911F0BC340050762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.83.103.0/24
Signature Algorithm: sha256WithRSAEncryption
8a:f0:ee:b6:bd:5d:72:83:95:f9:fb:f2:bf:55:ac:20:13:a4:
bd:32:75:47:98:49:33:1a:38:4f:d3:f2:57:38:bb:65:e0:63:
96:05:a8:dd:74:18:dd:1b:23:49:63:32:3c:6d:80:33:6d:5e:
85:ca:9e:3b:eb:03:f5:0a:ae:21:f8:0f:fb:40:f7:b2:00:49:
9d:90:db:b8:55:43:f7:17:a0:54:f4:05:f6:6b:91:e7:12:e3:
b5:9e:54:0d:41:8c:b9:92:a8:3b:91:8b:78:69:98:41:cd:bc:
e4:61:ea:64:9b:69:71:d0:e5:34:1d:86:6b:ba:8b:60:29:70:
9c:b7:c2:9d:e0:c2:5e:42:fc:12:62:04:ad:54:35:9f:9e:ad:
b1:94:17:ae:e6:bf:65:0b:41:5d:39:4e:7d:91:7c:01:30:75:
a4:c8:ae:ef:5e:a5:fa:94:3b:03:75:5f:b2:88:57:d2:c4:ec:
67:3e:51:51:0d:43:74:9b:d7:62:24:0f:69:31:95:92:d0:dc:
4e:39:0e:ec:d8:e7:9c:c1:4a:7f:76:96:4a:58:03:5e:6e:d0:
31:a5:2b:f6:92:df:de:6e:dd:c7:23:1d:1a:7e:64:e2:ae:88:
81:89:f9:89:b9:73:ce:ed:64:3e:04:c4:46:e6:fb:9e:54:b2:
d1:93:02:71
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAXgOMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjUwNDA3MTYwNDI5WhcNMjUwNTExMTYwNDI5WjAYMRYw
FAYDVQQDEw02N2YzZjc5MS1kYTAxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAt/soDe+YC3lOVixX2ynuX+2AdI28epJp5Wfwt9LE+61tO82v25NiBGZ8
LRp6b9yyJ9Ruxf/pQZewDucB76Ukkw6cHUhZYEgG/oAyUBke1vcadXqvmp9Rc1Uj
t5VVEs5cDTAJHEHeM/T6r0th6sQ3P8qVMyEb6w1fNE8r0HtIeYuYg5HRXhmgrjDq
aQ/QJWZ2n5ZtVNLXclu+mntnHQyj6W8VXIZjQh5/AbPTgsm5FZt5NzAiFIC6QAS+
R9PnyrUOHqe61NtALEvR0k7nWAHhWub1H+qUao+I5qh+AXwmhk1aNYYG+opbwJ+X
4E//wAOYbx/kW303Lv8OEHqddJKA/wIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFGBC
Oh/TkjIdrUsu65WX2uD6syCrMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9GRThCODAzMDEzQzkxMUYwQkMzNDAwNTA3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmlNnMA0GCSqGSIb3DQEB
CwUAA4IBAQCK8O62vV1yg5X5+/K/VawgE6S9MnVHmEkzGjhP0/JXOLtl4GOWBajd
dBjdGyNJYzI8bYAzbV6Fyp476wP1Cq4h+A/7QPeyAEmdkNu4VUP3F6BU9AX2a5Hn
EuO1nlQNQYy5kqg7kYt4aZhBzbzkYepkm2lx0OU0HYZruotgKXCct8Kd4MJeQvwS
YgStVDWfnq2xlBeu5r9lC0FdOU59kXwBMHWkyK7vXqX6lDsDdV+yiFfSxOxnPlFR
DUN0m9diJA9pMZWS0NxOOQ7s2OecwUp/dpZKWANebtAxpSv2kt/ebt3HIx0afmTi
roiBifmJuXPO7WQ+BMRG5vueVLLRkwJx
-----END CERTIFICATE-----
Generated at Mon Apr 28 22:58:15 2025 by rpki-client on console.sobornost.net