Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5479C9DE245F11F09EE022C5DAE4EC9C.roa
File: 5479C9DE245F11F09EE022C5DAE4EC9C.roa (raw, json)
Hash identifier: oN3LtVSP0TBn6HR0KFPM31yZSyIgSZ7xkKq9KcUDjmw=
Subject key identifier: 21:31:7C:B3:3A:61:9E:72:BD:D4:B4:B5:DE:15:31:3A:31:03:5D:04
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 017C65
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5479C9DE245F11F09EE022C5DAE4EC9C.roa
Signing time: Mon 28 Apr 2025 18:33:51 +0000
ROA not before: Mon 28 Apr 2025 18:33:46 +0000
ROA not after: Tue 28 Apr 2026 18:33:46 +0000
asID: 984
IP address blocks: 154.215.210.0/24 maxlen: 24
154.215.211.0/24 maxlen: 24
154.215.212.0/24 maxlen: 24
154.215.213.0/24 maxlen: 24
154.215.214.0/24 maxlen: 24
154.215.215.0/24 maxlen: 24
154.215.216.0/24 maxlen: 24
154.215.217.0/24 maxlen: 24
154.215.218.0/24 maxlen: 24
154.215.219.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 12 May 2025 00:07:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 97381 (0x17c65)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 28 18:33:46 2025 GMT
Not After : Apr 28 18:33:46 2026 GMT
Subject: CN=680fca0f-20be
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:5d:da:cb:8a:b2:d3:5c:f1:9e:dd:b4:53:4d:
dd:94:11:ba:f0:2e:1c:8a:dd:5d:25:39:45:73:11:
ca:e9:64:a9:25:c5:bc:01:e9:68:e1:2c:b8:97:09:
49:00:42:ed:4c:e0:fb:f0:ec:b6:91:fb:7d:34:87:
ee:72:a5:f1:b7:cb:4c:31:c7:cc:03:dc:26:9a:22:
14:da:0a:da:d1:2d:21:80:d0:a7:03:1e:3c:8c:bd:
31:a4:bc:3a:a5:75:5e:1d:22:13:0a:d5:f1:79:10:
08:bd:b1:b5:3c:ae:8d:c8:c9:cd:27:ed:ac:e7:d1:
5b:e5:fe:2c:a5:c8:88:15:a1:48:50:f8:49:ac:9a:
43:a7:d5:53:d2:53:68:4b:e8:53:71:6f:72:a3:06:
06:eb:74:93:72:a3:0b:69:48:bd:5c:4a:99:0b:d6:
35:a4:b1:0f:a2:70:51:41:ef:90:00:c9:d6:59:b4:
94:d0:fc:45:54:bb:e5:aa:93:e0:96:3b:d8:66:b5:
68:9e:de:24:6f:e6:ac:6a:07:6f:f0:fb:28:8a:0c:
83:76:10:22:c5:03:50:17:29:fa:e7:05:b4:58:19:
0b:6c:80:e7:40:99:83:50:a5:6f:46:a4:28:15:fe:
12:57:6c:48:84:8a:a3:24:d6:be:4f:81:94:92:73:
f5:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:31:7C:B3:3A:61:9E:72:BD:D4:B4:B5:DE:15:31:3A:31:03:5D:04
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5479C9DE245F11F09EE022C5DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.215.210.0-154.215.219.255
Signature Algorithm: sha256WithRSAEncryption
a7:60:e9:98:70:0f:45:10:84:1e:da:88:25:12:4e:de:06:7b:
d0:00:3c:6b:76:e5:30:d1:da:cc:1b:47:93:a9:1c:16:a0:3f:
b1:72:c7:6c:14:0d:3f:f6:79:8d:d1:ee:0d:a0:c3:68:e7:e4:
ea:94:56:1c:ca:06:6a:b8:d0:9a:9c:55:5f:38:ef:75:4b:bb:
f0:cf:e5:0b:36:a6:a0:26:6b:55:c2:11:1f:1a:57:f6:44:95:
30:19:62:90:ef:79:cc:63:ed:da:93:4f:c5:04:c8:c8:b1:c2:
28:9c:9b:5d:ee:4f:3d:3a:f4:34:28:72:bf:62:84:8e:db:4d:
24:71:c1:8b:a8:fb:a2:8b:ed:ca:01:4c:17:36:3c:a4:c5:86:
f1:a9:b8:79:5e:95:7c:cb:52:5f:31:22:6a:6d:af:49:f6:0f:
54:f0:11:3f:16:98:36:76:96:2a:ed:e2:03:b3:0e:5e:3a:60:
3e:55:f3:4d:99:6d:82:e3:8d:e9:12:93:aa:59:0c:92:7e:2d:
07:a0:84:8a:2c:5c:f6:62:82:ad:a0:e7:e8:68:ce:12:52:4b:
2e:19:af:81:8c:2a:0f:38:86:a8:47:8c:2f:df:8d:d5:85:96:
8f:24:b9:9a:1e:8a:ed:08:6e:f1:99:ad:54:13:90:d0:d8:16:
66:c6:e7:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 10 19:26:06 2025 by rpki-client