Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/179CC2A230A111F08119CED2DAE4EC9C.roa
File: 179CC2A230A111F08119CED2DAE4EC9C.roa (raw, json)
Hash identifier: lqG8QpJls1XXqBWp0lVHdDVEWvUgMXBNf0JEcTJggxI=
Subject key identifier: 5B:A9:00:21:FB:5A:27:FC:A0:F2:21:F0:F2:81:23:63:CE:95:44:FB
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 018083
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/179CC2A230A111F08119CED2DAE4EC9C.roa
Signing time: Wed 14 May 2025 08:54:50 +0000
ROA not before: Wed 14 May 2025 08:54:45 +0000
ROA not after: Tue 27 May 2025 08:54:45 +0000
asID: 54801
IP address blocks: 154.213.176.0/20 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 17 May 2025 09:29:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 98435 (0x18083)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 14 08:54:45 2025 GMT
Not After : May 27 08:54:45 2025 GMT
Subject: CN=68245a59-5cf8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:5e:5f:c7:58:e2:5d:dc:7d:c1:56:26:84:ff:
a4:7c:b2:ca:80:d9:22:1e:4b:86:60:19:4e:1c:48:
1f:15:99:90:01:bb:99:50:17:c3:5c:8f:ba:d8:6d:
f6:77:b6:87:53:d6:99:db:8c:1f:47:41:68:d0:57:
ea:8b:b7:25:eb:71:a0:2b:53:3a:ea:5e:89:1c:c9:
43:03:45:10:c2:08:42:9e:2b:e2:2b:f2:a2:09:da:
53:e1:27:a5:24:f7:79:b5:30:d3:c8:7c:9e:f9:6b:
ea:63:e7:90:05:12:c9:96:13:8a:66:72:96:dc:ac:
fb:8d:c9:20:5e:0b:cd:ad:c1:df:a5:6f:61:ea:46:
31:3c:de:21:be:49:e6:50:1e:58:a2:06:41:46:31:
60:0c:f3:aa:fd:87:d6:da:56:91:dc:35:dd:54:a5:
7d:0c:ac:9b:f2:01:2d:0d:a3:d8:f4:99:09:41:ad:
b7:5f:23:05:86:75:f4:0c:68:87:2d:6e:7d:e5:05:
90:7e:84:64:3f:f0:4e:4e:3b:18:51:13:07:ab:83:
6a:98:8b:88:d5:9f:e2:b4:d6:98:6f:84:c1:04:7d:
76:54:ab:68:4e:ce:58:64:82:b3:fe:d0:81:9f:2a:
00:f0:28:71:5b:92:bd:ff:db:13:82:42:9f:67:3a:
af:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:A9:00:21:FB:5A:27:FC:A0:F2:21:F0:F2:81:23:63:CE:95:44:FB
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/179CC2A230A111F08119CED2DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.213.176.0/20
Signature Algorithm: sha256WithRSAEncryption
8e:38:0f:5e:e7:02:08:47:c4:09:3d:7a:d3:aa:34:b8:73:94:
bb:7b:00:68:47:6a:39:6c:8a:f7:a0:6a:21:5a:05:58:3f:41:
c8:f5:9c:13:2a:03:3c:37:d7:6e:ff:a0:05:f8:b9:47:a8:3b:
00:cc:b1:ea:4d:ad:c4:3a:73:af:ad:ed:5e:eb:4a:52:0c:00:
ff:17:3a:29:c9:3d:65:60:de:cf:ea:e3:85:28:5f:00:4f:a1:
c2:0c:1e:d9:f1:ad:eb:ea:ad:7a:43:2e:b7:0f:0c:ce:d3:5a:
e5:48:52:2c:00:88:ef:11:68:c5:f0:2d:6d:f0:d7:98:33:54:
35:96:ee:b8:22:f5:8c:4c:5e:84:a6:c5:32:a2:56:0a:5a:49:
36:00:3f:66:21:5c:e7:f4:c2:0a:35:95:77:c0:69:01:3e:b8:
85:fa:c4:77:54:2e:09:c8:0a:d1:ab:c5:f5:c9:bb:93:ca:a4:
76:a4:93:85:d5:90:69:82:22:a4:77:ee:4b:17:f0:38:57:ce:
6e:07:b2:68:5e:77:7c:96:58:f1:2a:3f:68:54:fe:fd:cb:47:
1e:90:66:34:0c:29:f8:56:69:23:11:e6:89:38:4d:60:89:e9:
08:e4:c7:e7:40:4b:7f:36:76:b2:df:84:a5:c7:62:61:dc:54:
5f:90:a3:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 15 23:47:56 2025 by rpki-client