Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/30BD66E82F3311F0843375BDDAE4EC9C.roa
File: 30BD66E82F3311F0843375BDDAE4EC9C.roa (raw, json)
Hash identifier: gAitxbSq+pbCw6mrJ6dJqa0mL0yIH/t2usAfArvA3oY=
Subject key identifier: A4:1A:33:C1:EA:DF:A1:55:26:95:3D:AE:8E:FA:8A:63:69:0F:CC:81
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01801B
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/30BD66E82F3311F0843375BDDAE4EC9C.roa
Signing time: Mon 12 May 2025 13:15:36 +0000
ROA not before: Mon 12 May 2025 13:15:31 +0000
ROA not after: Tue 20 May 2025 13:15:31 +0000
asID: 18013
IP address blocks: 154.215.2.0/23 maxlen: 24
154.221.2.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 17 May 2025 09:29:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 98331 (0x1801b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 12 13:15:31 2025 GMT
Not After : May 20 13:15:31 2025 GMT
Subject: CN=6821f478-cabb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:aa:10:bc:ff:99:0d:59:72:1f:d9:c6:2c:cc:
af:5b:02:5a:f3:7b:f9:87:55:e4:e8:c0:e0:1b:07:
55:d8:6b:1b:da:61:56:98:a1:b2:3b:3e:a6:14:79:
bb:c8:ad:9c:3b:e7:a9:06:11:47:cd:68:f5:86:2e:
86:90:84:91:d4:7e:7a:9c:87:9c:7d:a8:a2:9e:81:
aa:7c:78:f8:bb:24:6c:59:8e:e4:f9:1d:e4:48:20:
41:55:3b:cf:f8:c8:6b:f8:61:83:fd:81:f0:20:79:
3d:51:88:57:1a:8f:61:e4:68:81:4d:c8:98:97:06:
ec:97:50:77:c9:19:6e:88:14:b5:37:a8:79:dc:e3:
44:4a:4c:a0:00:91:68:f2:a5:03:9c:f4:3b:5a:c3:
e5:b6:44:ec:39:91:11:bf:c1:e1:3a:09:fe:a9:40:
78:d6:72:a7:76:39:b1:c6:fc:4a:27:65:d8:de:4e:
29:da:da:03:88:d5:90:53:0a:a7:f4:8e:22:78:a5:
79:59:cc:f3:eb:bd:12:c2:4b:8f:28:b7:66:58:b0:
32:fe:69:dc:c1:cb:af:b7:f9:64:a2:4c:0b:d3:2f:
90:5c:7f:f5:89:74:22:0e:3f:0a:a1:6e:25:1c:e6:
32:46:5c:66:f1:76:fe:37:f4:7d:9d:45:0b:b7:49:
a9:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:1A:33:C1:EA:DF:A1:55:26:95:3D:AE:8E:FA:8A:63:69:0F:CC:81
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/30BD66E82F3311F0843375BDDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.215.2.0/23
154.221.2.0/23
Signature Algorithm: sha256WithRSAEncryption
9c:d5:aa:e9:bd:44:e4:64:87:6f:8f:0d:48:5d:a4:a4:f1:c8:
e6:09:11:7c:59:3a:d5:58:c5:34:d9:c3:78:1c:b4:26:32:5a:
5b:3d:e1:0b:c4:f6:32:21:4f:30:42:0a:31:8e:a5:69:6a:49:
6b:4e:53:84:99:60:ae:0d:19:cd:49:30:cd:be:6a:f6:a2:b1:
18:5c:f6:13:c6:56:3a:45:0b:c4:48:a9:c8:27:ad:2b:e9:19:
4b:18:5b:8a:df:1d:c5:eb:7a:28:bf:4c:05:4e:12:31:d9:39:
f7:dc:59:53:f7:1d:12:69:c2:56:12:53:d0:96:44:1a:13:2e:
3b:8e:8a:21:f4:e1:19:8c:4d:02:7c:37:ae:60:a7:54:7b:60:
64:4a:38:7b:59:bf:88:23:57:07:b9:af:92:0b:be:e1:64:1a:
72:39:e3:0e:cc:44:04:0e:7b:54:8e:a7:e0:e7:65:12:08:e9:
b8:23:19:6e:3c:85:70:61:f7:24:98:79:0d:16:a1:f6:ff:55:
6d:2f:3a:1c:8b:0d:5a:31:b8:46:9a:2b:1d:e4:39:a9:bb:bb:
72:47:e8:70:4b:91:80:ad:b4:5e:db:25:03:59:e0:84:1a:23:
66:50:56:3e:42:ca:2b:21:6e:03:06:7c:3c:96:8b:cc:36:0d:
af:45:ed:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 15 23:48:08 2025 by rpki-client