Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0E903F2425AF11F09295C397DAE4EC9C.roa
File: 0E903F2425AF11F09295C397DAE4EC9C.roa (raw, json)
Hash identifier: G4ngSEvJgx1jMJojFwGNNtYpev70oypJwbZ2xRYHKaA=
Subject key identifier: E5:8D:57:BC:09:2F:3A:07:92:87:CE:AE:2C:81:C6:B2:F8:06:C1:34
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 017D44
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0E903F2425AF11F09295C397DAE4EC9C.roa
Signing time: Wed 30 Apr 2025 10:37:05 +0000
ROA not before: Wed 30 Apr 2025 10:37:00 +0000
ROA not after: Tue 11 Apr 2028 10:37:00 +0000
asID: 17561
IP address blocks: 154.199.33.0/24 maxlen: 24
154.199.35.0/24 maxlen: 24
154.199.37.0/24 maxlen: 24
154.199.40.0/24 maxlen: 24
154.199.42.0/24 maxlen: 24
154.199.43.0/24 maxlen: 24
154.199.44.0/24 maxlen: 24
154.199.45.0/24 maxlen: 24
154.199.46.0/24 maxlen: 24
154.199.48.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 11 May 2025 11:57:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 97604 (0x17d44)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 30 10:37:00 2025 GMT
Not After : Apr 11 10:37:00 2028 GMT
Subject: CN=6811fd50-9593
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:cd:5f:b7:8b:2a:fb:19:cd:aa:c8:f2:b0:8a:
98:e5:bb:1e:ae:f7:ff:be:29:56:ba:cb:4b:a0:0f:
6d:cd:e1:99:52:54:35:ff:42:62:eb:68:c3:32:b2:
4b:ea:58:a1:4f:b3:20:78:21:4b:33:c8:f7:85:af:
30:6d:ad:e8:0f:e9:f9:9a:39:74:9d:13:c1:cf:ab:
d2:08:79:a7:8b:a5:fb:a8:9c:39:88:00:76:90:1e:
85:b0:fe:e6:08:4a:c3:b1:d9:5e:2b:cc:bb:54:e8:
0b:09:d9:13:f3:ac:4e:6d:09:9a:11:84:88:64:1a:
c8:cc:e1:6c:fd:ff:4a:1a:44:94:60:95:21:9c:71:
60:9c:5e:87:34:03:0f:c2:66:d6:70:0b:85:1c:eb:
24:c8:48:15:25:1a:c0:99:09:d4:3f:bc:aa:ff:b3:
9d:f3:78:c1:1d:72:a9:4e:25:42:5a:ff:cd:94:fc:
12:be:db:03:8f:16:d5:8b:76:1d:f5:f7:46:53:51:
05:53:96:29:18:91:52:24:16:af:bb:85:06:5f:76:
1a:f0:73:83:39:2c:74:2e:57:4f:dc:f5:75:4d:1e:
ff:4e:5a:cd:7d:4f:dd:1c:e7:d5:37:e6:a0:45:14:
5b:99:ba:1a:e3:e5:96:54:f2:0c:a7:6b:74:f9:f8:
2e:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:8D:57:BC:09:2F:3A:07:92:87:CE:AE:2C:81:C6:B2:F8:06:C1:34
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0E903F2425AF11F09295C397DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.199.33.0/24
154.199.35.0/24
154.199.37.0/24
154.199.40.0/24
154.199.42.0-154.199.46.255
154.199.48.0/24
Signature Algorithm: sha256WithRSAEncryption
9d:d6:08:1e:00:c2:28:38:94:36:59:4f:61:3a:e6:de:77:93:
b0:1f:1b:7b:b5:c1:d4:87:3a:6b:33:1e:43:34:cf:6b:96:01:
24:f0:8a:14:fc:9a:de:f8:fc:d9:6e:d9:c2:4e:80:73:47:cf:
6a:72:ac:c8:6b:40:cd:1b:09:18:31:3a:42:2d:0b:d7:53:0b:
cb:07:e0:80:52:ef:60:32:10:db:ba:5e:9c:45:79:32:94:4a:
b7:e6:8a:5d:b6:84:fa:1c:37:15:59:84:a6:95:98:28:36:d6:
33:ed:1b:2f:87:fd:1b:42:79:ab:c4:c3:41:e8:fc:6e:eb:56:
14:30:82:e6:39:19:c4:b6:b1:8d:51:5c:63:71:d3:99:cb:92:
a4:e3:64:58:30:06:6b:ba:7f:21:bb:1d:ba:c0:38:58:28:e1:
7d:b6:28:51:8d:cd:3c:1a:ee:2a:90:e4:0c:76:9a:d0:81:46:
0a:3f:75:f8:3d:38:b9:4c:4b:a2:a6:5d:40:95:7c:57:d6:f5:
90:0a:bb:ee:a7:54:ee:9b:65:ed:d7:8e:5f:08:d4:da:cb:36:
26:00:0b:84:89:d6:8f:d2:bb:45:ea:5d:b2:58:54:24:49:f2:
0b:ab:03:76:9a:f4:c8:8c:a0:63:75:59:03:3a:57:8c:b2:d2:
03:26:bb:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 9 15:32:00 2025 by rpki-client