Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1060385C2CAF11F08F5812EEDAE4EC9C.roa
File: 1060385C2CAF11F08F5812EEDAE4EC9C.roa (raw, json)
Hash identifier: Z8Bc84MnZEAmJ2Bepedt88tv7yr5eMCjLHB9MppDB/M=
Subject key identifier: 4E:C0:D9:3F:58:73:90:9F:FA:A2:54:8B:81:54:43:EF:D0:E6:65:9E
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 017FA3
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1060385C2CAF11F08F5812EEDAE4EC9C.roa
Signing time: Fri 09 May 2025 08:24:46 +0000
ROA not before: Fri 09 May 2025 08:24:41 +0000
ROA not after: Fri 08 Aug 2025 08:24:41 +0000
asID: 9294
IP address blocks: 154.199.192.0/20 maxlen: 24
154.204.16.0/20 maxlen: 24
154.205.32.0/20 maxlen: 24
154.206.224.0/20 maxlen: 24
154.208.176.0/20 maxlen: 24
154.210.240.0/20 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 17 May 2025 09:29:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 98211 (0x17fa3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 9 08:24:41 2025 GMT
Not After : Aug 8 08:24:41 2025 GMT
Subject: CN=681dbbce-5e1d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:4c:32:60:c3:36:8a:73:0b:da:18:f9:35:f4:
d5:b5:1d:d9:74:c9:66:5e:22:30:5c:81:c0:f3:71:
85:f0:e6:eb:67:0a:1b:2d:45:7f:bb:4f:fa:3e:0a:
09:8e:09:fe:df:63:2f:de:77:21:9b:e6:7b:02:7c:
2d:f0:5d:41:77:ad:27:7b:dd:79:5c:e2:09:33:37:
fe:71:d5:8c:6d:47:2d:0a:3b:0e:91:62:7b:b3:a1:
6b:f0:7d:a1:09:62:31:ae:6d:cf:19:34:3d:cb:9d:
52:37:4a:49:ac:b3:62:eb:56:51:00:8d:a8:bf:05:
17:de:b4:6a:25:fa:df:37:2d:21:25:91:c2:40:48:
2b:2d:bd:a5:3c:9a:09:48:e9:f6:24:49:f0:2e:96:
c7:81:4e:45:01:9a:5e:4c:80:93:68:d6:38:a0:e5:
09:3f:a9:36:bd:14:79:21:85:2f:52:25:4b:a5:c4:
1a:68:79:dc:ef:7c:6e:d2:ed:9b:2b:e8:4c:3e:e7:
ed:b7:c2:d8:25:84:ae:e1:18:40:0d:69:fa:c6:fa:
7a:0f:5e:3a:95:c3:94:4d:0c:1e:d7:6d:70:5b:b8:
cc:7a:a2:ec:0f:62:cc:8c:4f:3e:35:9b:d4:a4:9e:
96:cd:7f:03:f6:96:7c:08:c7:45:c1:c7:f7:0f:49:
b0:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:C0:D9:3F:58:73:90:9F:FA:A2:54:8B:81:54:43:EF:D0:E6:65:9E
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1060385C2CAF11F08F5812EEDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.199.192.0/20
154.204.16.0/20
154.205.32.0/20
154.206.224.0/20
154.208.176.0/20
154.210.240.0/20
Signature Algorithm: sha256WithRSAEncryption
84:85:09:37:a9:83:77:02:d0:cc:fe:52:bc:9b:33:bd:0e:99:
51:7c:45:b1:9c:51:48:9f:fd:c8:ce:15:61:1c:ea:7f:fa:29:
64:96:a1:e3:01:19:12:e8:d9:f9:f0:0c:4a:d7:2e:53:cc:39:
f8:60:af:54:fc:4d:38:2d:0d:b5:1a:ea:24:44:fd:da:84:28:
8d:7b:e4:8e:d5:0b:3c:3a:00:ec:86:a4:39:f3:77:54:e7:86:
fe:46:c3:cd:b5:40:00:64:4b:ee:62:d3:0a:ec:ec:00:85:1a:
d6:ff:94:e5:eb:d4:54:d0:5a:47:71:a1:2f:3f:b7:db:37:68:
15:ca:a4:f6:8e:6b:dc:a9:49:6c:9d:d4:45:0f:6c:3c:e5:46:
27:bf:b4:42:75:92:d2:a8:51:00:1f:bc:90:bf:28:92:f2:55:
61:f7:1c:e8:fd:8f:10:ba:84:82:46:e8:9e:1f:08:c5:47:d6:
38:34:45:e3:86:57:35:7d:09:e0:c9:dc:c5:b7:9a:72:2d:a6:
de:5b:73:ce:64:34:3d:2d:ed:bd:da:d1:d3:18:11:36:02:56:
8b:4c:f6:2e:e8:91:35:2b:ec:e9:b2:97:6b:86:a5:b6:45:e0:
55:12:bf:bc:db:23:7f:4e:2b:70:46:ca:c5:f2:9a:35:6d:e4:
fe:75:ca:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 15 23:47:03 2025 by rpki-client