Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4568997C242B11F085A7ECEBDAE4EC9C.roa
File: 4568997C242B11F085A7ECEBDAE4EC9C.roa (raw, json)
Hash identifier: W8811HJO3D3KOtUyqLFdvrknyf5eAY0Arlqo2FbyA6o=
Subject key identifier: 64:46:01:59:A1:F6:CE:89:DE:2D:96:2E:87:18:E2:A4:2B:35:F4:0E
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 017BA0
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4568997C242B11F085A7ECEBDAE4EC9C.roa
Signing time: Mon 28 Apr 2025 12:21:12 +0000
ROA not before: Mon 28 Apr 2025 12:21:07 +0000
ROA not after: Sun 08 Jun 2025 12:21:07 +0000
asID: 44559
IP address blocks: 154.219.82.0/24 maxlen: 24
154.219.83.0/24 maxlen: 24
154.219.84.0/24 maxlen: 24
154.219.85.0/24 maxlen: 24
154.219.86.0/24 maxlen: 24
154.219.87.0/24 maxlen: 24
154.219.88.0/24 maxlen: 24
154.219.89.0/24 maxlen: 24
154.219.90.0/24 maxlen: 24
154.219.91.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 09 May 2025 00:06:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 97184 (0x17ba0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 28 12:21:07 2025 GMT
Not After : Jun 8 12:21:07 2025 GMT
Subject: CN=680f72b8-881a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:45:f7:61:79:e8:de:9f:d5:ac:09:d8:3c:a9:
a1:c5:d9:31:37:47:c7:c1:e5:93:58:8e:b2:da:86:
2a:22:19:52:0e:b0:e2:b6:14:36:5d:99:2a:03:7f:
9c:8f:90:34:b8:f1:d5:ff:ab:78:b3:ae:38:0c:0a:
cc:f1:b7:a9:42:c9:35:f2:8b:f8:58:8e:ee:48:76:
0e:aa:c4:10:24:22:b1:b9:be:06:69:e6:e6:4f:e8:
1b:b2:e5:15:88:f0:a2:49:13:63:1e:9f:33:d8:73:
ed:8b:f0:f4:38:27:88:71:36:af:66:28:7d:ed:ff:
82:0c:d4:66:ad:59:08:ea:5c:bb:33:fb:2e:29:47:
a8:a3:84:80:14:63:40:2c:2b:b0:00:6d:2e:a9:6f:
5e:c7:79:f1:b9:11:7e:b7:79:df:7c:e1:e6:57:7b:
df:71:d9:ee:06:c2:a4:6a:a9:31:7d:7c:58:17:01:
b4:e4:a3:00:f5:d4:98:49:46:26:5d:e3:ef:a4:4b:
97:c8:45:50:80:1d:c9:d3:b7:e8:d5:3f:98:00:de:
df:35:1e:bf:e8:e2:72:fe:29:8a:18:98:ef:96:f2:
51:45:1a:1b:3c:4e:89:2a:9c:4b:4a:39:3e:c9:6c:
c5:c5:49:0e:22:32:c0:d7:69:e3:25:5c:d6:26:7a:
fa:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:46:01:59:A1:F6:CE:89:DE:2D:96:2E:87:18:E2:A4:2B:35:F4:0E
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4568997C242B11F085A7ECEBDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.219.82.0-154.219.91.255
Signature Algorithm: sha256WithRSAEncryption
b1:06:c8:b3:01:1d:89:a1:c1:ae:1b:55:dc:f7:e7:84:57:79:
af:2a:41:64:1c:ff:0c:06:39:9f:8f:a6:9f:2f:c0:86:03:c6:
cf:54:d4:e8:23:6e:4c:8d:8d:7d:dc:60:5f:de:65:90:43:7f:
ae:6e:b7:1a:de:76:17:d5:43:a8:e4:75:09:51:3a:75:30:70:
e8:f7:df:47:3f:e4:8c:7a:ac:a7:93:71:eb:71:eb:a8:f8:54:
9d:29:6f:28:91:52:e6:d5:d4:c7:ad:25:3d:00:5a:f5:8a:b4:
8d:39:0c:d2:1a:d0:90:ed:67:07:59:06:a3:ce:5f:84:7f:b5:
76:2a:6f:f7:c6:5a:21:20:32:0e:cc:3d:d2:f5:bb:43:5b:11:
4b:18:bc:d8:d3:62:0b:f2:41:b0:a0:0a:69:b4:14:9c:91:81:
c6:45:10:0c:46:ab:bb:4c:46:2b:17:18:f0:9f:aa:28:a6:46:
62:05:5f:b0:a4:fa:dc:ec:02:49:dc:65:08:b5:6d:de:1f:08:
55:15:c6:91:2d:fe:8d:31:f6:76:59:ee:26:fc:4c:dc:03:6a:
15:cc:b7:de:81:36:48:8f:60:68:36:e4:a4:23:88:ec:85:5f:
e3:21:97:ac:1e:77:87:16:b0:08:fb:1a:f3:6c:00:ab:7b:ad:
c3:37:0d:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 7 11:35:07 2025 by rpki-client