Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/001B36E4273811F08D7D87DDDAE4EC9C.roa
File: 001B36E4273811F08D7D87DDDAE4EC9C.roa (raw, json)
Hash identifier: xuF5W9+ydcqtW5S4ze8tyyLg0YD5d6vC4unWtitns5A=
Subject key identifier: 11:1D:14:AC:9D:89:DE:47:9B:4E:FA:BA:2A:10:43:C8:83:A3:A0:5E
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 017E5C
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/001B36E4273811F08D7D87DDDAE4EC9C.roa
Signing time: Fri 02 May 2025 09:29:53 +0000
ROA not before: Fri 02 May 2025 09:29:48 +0000
ROA not after: Mon 09 Jun 2025 09:29:48 +0000
asID: 203020
IP address blocks: 154.201.46.0/24 maxlen: 24
154.201.58.0/24 maxlen: 24
154.204.40.0/24 maxlen: 24
154.205.168.0/22 maxlen: 24
154.206.0.0/22 maxlen: 24
154.207.84.0/22 maxlen: 24
154.207.114.0/23 maxlen: 24
154.207.116.0/22 maxlen: 24
154.207.120.0/22 maxlen: 24
154.207.124.0/23 maxlen: 24
154.207.136.0/22 maxlen: 24
154.207.140.0/23 maxlen: 24
154.207.184.0/22 maxlen: 24
154.207.192.0/20 maxlen: 24
154.207.224.0/23 maxlen: 24
154.207.240.0/21 maxlen: 24
154.207.254.0/23 maxlen: 24
154.208.132.0/22 maxlen: 24
154.209.16.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 13 May 2025 00:06:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 97884 (0x17e5c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 2 09:29:48 2025 GMT
Not After : Jun 9 09:29:48 2025 GMT
Subject: CN=68149090-531a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:8d:fe:20:60:cc:e5:68:5b:7a:f7:59:7d:dd:
82:48:22:46:80:86:5a:25:50:cb:9c:43:d0:f2:7f:
0e:4e:cf:5b:66:68:a3:09:35:9b:bf:c4:58:74:bb:
1e:e0:b3:e4:35:6c:10:d9:96:97:3c:ad:4a:2f:d3:
73:b7:c7:d6:a2:8c:3f:25:d9:6c:07:82:cd:9a:1f:
db:ac:ce:42:40:45:e1:d3:a3:23:f3:5c:8c:7d:42:
18:3a:ee:90:6b:ea:fb:c2:2a:ad:cb:73:d3:85:94:
6b:01:7d:43:01:24:0d:df:a9:37:17:2d:66:b0:13:
88:62:90:24:0c:81:dc:d0:85:50:f4:fe:a8:ab:03:
ad:15:fe:83:d5:c1:ea:02:ec:ff:b0:02:f7:d5:bd:
04:2a:0a:28:c0:23:1a:af:f9:21:13:9a:86:6c:7f:
dd:79:65:8b:34:34:4c:98:43:87:fa:b0:9f:46:7e:
82:bc:f9:4f:c1:b9:18:2e:74:05:0d:9f:7d:df:1a:
37:b1:0d:3b:37:a6:2b:bb:9b:5d:a0:43:d8:a3:25:
9e:7e:7b:9a:3a:d7:1f:5e:c9:ca:ce:b4:62:29:8d:
9e:90:c4:4d:92:68:a0:e1:5f:49:06:b4:00:60:d8:
46:fd:42:2c:d3:8f:db:42:92:ee:f0:3b:a3:ff:54:
32:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:1D:14:AC:9D:89:DE:47:9B:4E:FA:BA:2A:10:43:C8:83:A3:A0:5E
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/001B36E4273811F08D7D87DDDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.201.46.0/24
154.201.58.0/24
154.204.40.0/24
154.205.168.0/22
154.206.0.0/22
154.207.84.0/22
154.207.114.0-154.207.125.255
154.207.136.0-154.207.141.255
154.207.184.0/22
154.207.192.0/20
154.207.224.0/23
154.207.240.0/21
154.207.254.0/23
154.208.132.0/22
154.209.16.0/23
Signature Algorithm: sha256WithRSAEncryption
b9:e7:56:a2:4d:68:a1:f2:fe:be:9e:0c:2d:39:c0:93:52:c5:
d7:19:0d:eb:09:ee:b5:6c:1a:b8:de:90:31:eb:0e:54:54:a9:
ac:d9:bc:8d:cf:f4:94:17:d9:36:2b:50:a4:e6:a1:56:03:6c:
c4:c7:67:19:f2:03:a3:f1:a3:fc:7d:19:c8:c7:7b:6d:7b:91:
e4:70:ac:5d:21:00:1e:89:bb:e1:75:eb:30:df:1e:87:3b:81:
22:33:e5:44:23:08:2d:24:7a:f0:0b:38:34:c9:ae:cb:d9:db:
2a:40:4d:91:4e:e3:6b:a1:82:de:0a:9d:ac:dd:f6:35:7b:25:
99:cb:d6:13:b9:dc:19:ff:0c:1d:82:f7:50:a8:14:9f:77:74:
38:12:97:61:51:a0:05:57:c1:e3:75:c4:77:20:29:7b:73:93:
eb:24:4f:49:76:03:ac:cf:c6:e7:2c:44:6e:78:9b:16:cb:bf:
92:90:21:6d:8d:d9:bb:8b:e2:6a:4f:95:90:50:07:ee:e1:84:
00:06:d5:1d:01:d9:f3:fd:18:ba:e4:0e:bc:a6:eb:ec:70:f0:
ab:06:f3:22:b3:44:2e:4f:52:fd:88:95:f2:0b:ea:e6:07:5a:
c1:ec:43:b5:eb:78:07:43:d9:e4:07:5c:e3:44:4c:0b:ee:db:
f9:1f:65:4e
-----BEGIN CERTIFICATE-----
MIIF6TCCBNGgAwIBAgIDAX5cMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjUwNTAyMDkyOTQ4WhcNMjUwNjA5MDkyOTQ4WjAYMRYw
FAYDVQQDEw02ODE0OTA5MC01MzFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEArI3+IGDM5WhbevdZfd2CSCJGgIZaJVDLnEPQ8n8OTs9bZmijCTWbv8RY
dLse4LPkNWwQ2ZaXPK1KL9Nzt8fWoow/JdlsB4LNmh/brM5CQEXh06Mj81yMfUIY
Ou6Qa+r7wiqty3PThZRrAX1DASQN36k3Fy1msBOIYpAkDIHc0IVQ9P6oqwOtFf6D
1cHqAuz/sAL31b0EKgoowCMar/khE5qGbH/deWWLNDRMmEOH+rCfRn6CvPlPwbkY
LnQFDZ993xo3sQ07N6Yru5tdoEPYoyWefnuaOtcfXsnKzrRiKY2ekMRNkmig4V9J
BrQAYNhG/UIs04/bQpLu8Duj/1QyKQIDAQABo4IDCjCCAwYwHQYDVR0OBBYEFBEd
FKydid5Hm076uioQQ8iDo6BeMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC8wMDFCMzZFNDI3MzgxMUYwOEQ3RDg3REREQUU0RUM5Qy5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMIGDBggrBgEFBQcBBwEB/wR0MHIwcAQCAAEwagMEAJrJLgMEAJrJOgMEAJrM
KAMEAprNqAMEAprOAAMEAprPVDAMAwQBms9yAwQBms98MAwDBAOaz4gDBAGaz4wD
BAKaz7gDBASaz8ADBAGaz+ADBAOaz/ADBAGaz/4DBAKa0IQDBAGa0RAwDQYJKoZI
hvcNAQELBQADggEBALnnVqJNaKHy/r6eDC05wJNSxdcZDesJ7rVsGrjekDHrDlRU
qazZvI3P9JQX2TYrUKTmoVYDbMTHZxnyA6Pxo/x9GcjHe217keRwrF0hAB6Ju+F1
6zDfHoc7gSIz5UQjCC0kevALODTJrsvZ2ypATZFO42uhgt4Knazd9jV7JZnL1hO5
3Bn/DB2C91CoFJ93dDgSl2FRoAVXweN1xHcgKXtzk+skT0l2A6zPxucsRG54mxbL
v5KQIW2N2buL4mpPlZBQB+7hhAAG1R0B2fP9GLrkDrym6+xw8KsG8yKzRC5PUv2I
lfIL6uYHWsHsQ7XreAdD2eQHXONETAvu2/kfZU4=
-----END CERTIFICATE-----
Generated at Sun May 11 10:29:11 2025 by rpki-client