Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0DDDBEDA246F11F0B00559ACDAE4EC9C.roa
File: 0DDDBEDA246F11F0B00559ACDAE4EC9C.roa (raw, json)
Hash identifier: qUosug/z3PN5YQck5HFPUdTQilvwAM2MXplEuAxCE4Q=
Subject key identifier: 94:F1:2F:25:7E:3B:59:96:7D:B9:D6:86:06:82:AF:E0:71:C1:10:32
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 017C75
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0DDDBEDA246F11F0B00559ACDAE4EC9C.roa
Signing time: Mon 28 Apr 2025 20:26:24 +0000
ROA not before: Mon 28 Apr 2025 20:26:20 +0000
ROA not after: Wed 11 Jun 2025 20:26:20 +0000
asID: 138915
IP address blocks: 154.223.16.0/24 maxlen: 24
154.223.17.0/24 maxlen: 24
154.223.18.0/23 maxlen: 24
154.223.20.0/24 maxlen: 24
154.223.21.0/24 maxlen: 24
154.223.51.0/24 maxlen: 24
154.223.54.0/23 maxlen: 24
154.223.56.0/23 maxlen: 24
154.223.58.0/23 maxlen: 24
154.223.64.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 12 May 2025 00:07:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 97397 (0x17c75)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 28 20:26:20 2025 GMT
Not After : Jun 11 20:26:20 2025 GMT
Subject: CN=680fe470-e40a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:19:a9:2b:1f:cd:2a:e2:29:96:6a:8e:d2:ca:
c9:1a:29:13:8e:69:c5:01:62:ae:2b:b2:a5:3a:73:
1f:55:9c:7b:d5:17:70:d7:1c:46:a1:92:99:76:75:
c8:bd:ae:0d:3e:cf:0e:01:09:df:24:67:18:d8:94:
ca:67:5f:32:6c:aa:32:d9:25:cc:3e:da:03:9e:ee:
ec:5a:4b:9e:53:8f:8f:e9:90:9f:6d:48:1e:e2:55:
6a:38:8f:1d:23:29:a5:2c:5e:c1:74:89:cb:24:f6:
e0:17:56:f6:83:5c:22:76:b7:8b:93:80:56:65:5d:
84:e7:e3:fb:82:1f:a3:76:70:d2:3b:72:5e:b1:87:
ef:3b:1e:d2:29:2e:72:e4:67:9a:e0:da:ee:65:c0:
d6:07:ae:27:09:4c:0a:53:96:a2:3b:9f:79:aa:c9:
20:f8:3d:17:08:ba:32:06:59:fe:1f:50:0f:ce:be:
36:d6:f6:3c:63:67:49:ea:73:a7:ca:0b:d3:af:96:
f2:0b:a9:82:62:51:92:32:46:7f:a3:90:71:05:49:
fa:47:69:5f:7b:24:7a:30:0a:87:30:03:f0:84:15:
60:00:68:5e:47:1f:bc:4a:72:85:bd:6d:fb:a4:de:
26:3c:2a:ab:41:90:ef:25:22:66:ff:ed:7c:4b:3c:
3f:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:F1:2F:25:7E:3B:59:96:7D:B9:D6:86:06:82:AF:E0:71:C1:10:32
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0DDDBEDA246F11F0B00559ACDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.223.16.0-154.223.21.255
154.223.51.0/24
154.223.54.0-154.223.59.255
154.223.64.0/24
Signature Algorithm: sha256WithRSAEncryption
54:28:dd:0b:eb:ab:79:db:4e:8c:c1:12:de:56:22:9e:a0:5c:
ff:f9:e0:18:32:7c:95:2b:b6:11:c6:cc:c2:b5:17:6e:c6:77:
c9:b1:7c:16:e2:f9:c9:2b:37:42:ab:01:d2:e7:c7:a5:f3:37:
c2:3d:e8:04:ac:27:fd:b0:3c:7e:4a:4e:c6:4a:0d:40:ae:3d:
9c:91:b7:68:26:24:99:9f:3b:96:98:67:24:83:51:32:b5:1e:
09:4e:64:cf:5f:4e:26:fb:cf:42:5d:a7:40:24:ee:fc:2a:1c:
81:aa:b4:33:51:fb:94:7a:be:b3:61:c0:5e:9f:58:c7:ce:ed:
63:84:9a:23:d7:e5:ff:e7:2a:46:f3:58:83:ba:36:a2:32:28:
0b:7a:2e:fc:20:c2:4c:9c:1b:16:7d:68:b4:73:d5:36:7b:d9:
bd:28:db:43:43:d4:20:3f:c8:16:56:83:58:4c:8f:1f:50:10:
53:e1:ea:4e:9d:b9:d1:09:a1:8c:fe:aa:fc:d1:68:87:eb:e1:
36:4d:f8:88:c0:c6:4e:0e:93:01:1d:b7:67:d3:15:77:e9:1f:
2a:a1:60:7c:8f:66:4e:74:30:db:0c:11:29:32:50:a4:91:38:
22:0b:eb:b5:49:de:b5:3b:08:c6:55:fd:83:a3:14:17:6e:c9:
46:fa:88:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 10 13:18:26 2025 by rpki-client