Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3644758025C811F0A7726CBDDAE4EC9C.roa
File: 3644758025C811F0A7726CBDDAE4EC9C.roa (raw, json)
Hash identifier: moRGv2NEHLLRJxOzPfZ6t75NXqdcqIwfqE7rZb8jCCk=
Subject key identifier: DA:85:C4:E2:70:9D:FB:89:9E:36:53:D3:34:D5:FB:E3:7B:E1:D9:7B
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 017D7F
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3644758025C811F0A7726CBDDAE4EC9C.roa
Signing time: Wed 30 Apr 2025 13:37:09 +0000
ROA not before: Wed 30 Apr 2025 13:37:04 +0000
ROA not after: Tue 28 Apr 2026 13:37:04 +0000
asID: 984
IP address blocks: 154.80.162.0/24 maxlen: 24
154.80.163.0/24 maxlen: 24
154.80.164.0/24 maxlen: 24
154.80.165.0/24 maxlen: 24
154.80.166.0/24 maxlen: 24
154.80.167.0/24 maxlen: 24
154.80.168.0/24 maxlen: 24
154.80.169.0/24 maxlen: 24
154.80.170.0/24 maxlen: 24
154.80.171.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 13 May 2025 00:06:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 97663 (0x17d7f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 30 13:37:04 2025 GMT
Not After : Apr 28 13:37:04 2026 GMT
Subject: CN=68122784-a9a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:84:14:50:7a:cb:42:7a:2b:db:19:e0:bf:36:
c2:4d:24:de:72:0b:63:b2:ba:2a:08:83:ce:dd:7b:
45:0c:87:9b:9f:47:36:18:f3:17:21:7a:e8:00:48:
db:c7:16:62:52:c4:bd:6a:cd:ef:14:74:a7:69:6a:
42:b0:df:e3:56:64:b3:2c:2a:81:56:b7:c0:fe:b9:
fa:1f:d7:f2:5d:f5:20:2b:ae:27:eb:b1:43:1b:78:
52:94:19:e2:83:d5:bd:ee:d8:bc:95:56:52:1e:83:
5c:9c:4d:ce:94:e1:3e:bc:88:ba:02:fd:96:73:c5:
04:49:e7:9f:e6:26:1f:1d:96:8a:30:50:84:62:87:
0c:2c:64:09:f8:26:81:9f:ae:13:1f:b9:23:a8:25:
04:fb:8b:97:19:09:bc:82:da:c8:d3:45:e8:79:64:
63:8e:0a:24:10:6b:3b:35:14:bd:74:42:4c:64:e1:
01:3a:53:e1:ac:cf:60:4a:9c:42:21:df:3e:bb:79:
00:72:bc:0a:7e:64:ea:e8:4a:06:d8:7f:78:89:b4:
cd:0c:01:c8:ae:ee:8c:14:49:25:ad:87:15:99:18:
3a:00:ed:ce:5a:f8:1b:56:c8:d5:b5:23:2b:a6:51:
6b:10:82:4b:c5:16:81:76:ba:da:da:9c:96:9b:72:
26:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:85:C4:E2:70:9D:FB:89:9E:36:53:D3:34:D5:FB:E3:7B:E1:D9:7B
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3644758025C811F0A7726CBDDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.80.162.0-154.80.171.255
Signature Algorithm: sha256WithRSAEncryption
5c:66:bd:e9:2d:53:03:84:3d:c5:67:a0:c5:b8:ab:0d:fc:16:
1f:ba:82:44:aa:d4:8f:4f:71:b2:8e:9c:75:81:78:63:2e:f5:
7c:95:bd:96:61:23:a5:cb:3c:0e:6a:d9:3d:df:00:ff:58:82:
b6:ea:5a:4d:48:63:87:2e:29:d7:16:86:90:c9:69:a8:a0:56:
e1:50:40:32:35:4e:14:42:d6:c5:a0:de:65:ff:71:b9:bf:bd:
42:62:79:cc:a7:c8:52:de:e0:ac:9b:8a:a2:bd:dc:0d:59:ee:
8b:85:ce:1f:da:60:5f:95:43:c0:58:d3:7a:fa:51:c0:77:7c:
7a:2e:4f:d2:08:69:1c:64:ea:2c:6f:35:fb:ed:7a:d2:e9:4c:
07:0e:cc:39:cd:18:1f:16:2d:73:50:fa:ad:f8:e6:68:d2:a8:
70:db:82:e6:25:ea:da:5f:1e:a0:f6:37:ef:ad:6e:13:bb:91:
56:a4:fa:67:95:6f:17:b1:c4:16:b9:38:c5:a6:0f:52:a5:1d:
79:aa:ae:52:46:b3:e9:c8:6c:49:d1:08:a0:fc:f9:b2:2d:1b:
0c:72:8d:8f:c3:3b:c9:15:16:48:3b:1c:a5:90:87:71:3e:f3:
17:0a:a4:ac:69:5c:ee:30:f3:e2:c8:f7:d6:5a:8c:8e:0b:3b:
68:fc:ae:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 04:36:11 2025 by rpki-client