Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5CA837922CB811F0BA0ED1ABDAE4EC9C.roa
File: 5CA837922CB811F0BA0ED1ABDAE4EC9C.roa (raw, json)
Hash identifier: JjclWz91F3e8tK0cGMPGhZ4IkaSlBSO+CLyzmGQevd8=
Subject key identifier: 33:B2:16:F2:27:8B:AF:6A:F7:32:8C:57:B5:41:A8:92:42:32:FC:88
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 017FA5
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5CA837922CB811F0BA0ED1ABDAE4EC9C.roa
Signing time: Fri 09 May 2025 09:31:19 +0000
ROA not before: Fri 09 May 2025 09:31:14 +0000
ROA not after: Fri 15 Aug 2025 09:31:14 +0000
asID: 9294
IP address blocks: 154.199.192.0/20 maxlen: 24
154.204.16.0/20 maxlen: 24
154.205.32.0/20 maxlen: 24
154.206.224.0/20 maxlen: 24
154.208.176.0/20 maxlen: 24
154.210.240.0/20 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 17 May 2025 09:29:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 98213 (0x17fa5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 9 09:31:14 2025 GMT
Not After : Aug 15 09:31:14 2025 GMT
Subject: CN=681dcb67-f86b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:ea:67:ba:ca:28:7f:86:e9:51:c6:df:5c:ae:
d9:5d:e2:7d:97:03:c6:ff:41:c1:46:19:12:0c:ed:
b6:4f:7f:18:be:e7:f6:ff:36:9e:7e:ff:40:40:74:
99:62:35:32:fd:cf:fb:9b:15:20:e1:cd:0a:b8:76:
fe:76:31:5a:4c:1e:95:f6:12:8f:31:40:cf:36:80:
df:65:3f:9c:44:8a:d8:69:d2:77:88:bc:e8:a7:4e:
e8:2e:49:99:e6:12:42:d6:43:d6:a4:44:be:c3:7a:
61:6c:3a:08:09:ab:54:ba:6d:03:21:6a:b7:f2:63:
23:79:dc:a6:71:ae:f1:88:e5:44:1e:5a:4b:1f:ed:
7c:6e:f7:32:34:8f:ba:59:a8:a6:76:80:34:93:d4:
a4:59:80:ad:b9:4d:49:08:5c:e9:c5:8a:7f:52:e6:
cc:e7:e4:16:1c:3f:88:2d:e5:80:e4:82:67:6c:26:
d1:c7:de:29:d6:d6:4f:fb:d8:3d:2f:f1:65:7b:6d:
e9:41:fb:59:48:9d:8f:52:d7:35:ed:ba:47:55:6d:
3b:f9:5b:51:2b:41:c6:19:f7:78:8c:70:e6:67:7c:
4b:88:54:d3:95:d8:f0:23:c9:c1:78:80:b8:6e:9a:
68:05:94:9d:ed:48:f4:d7:37:c0:ba:3e:9d:6d:af:
c4:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:B2:16:F2:27:8B:AF:6A:F7:32:8C:57:B5:41:A8:92:42:32:FC:88
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5CA837922CB811F0BA0ED1ABDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.199.192.0/20
154.204.16.0/20
154.205.32.0/20
154.206.224.0/20
154.208.176.0/20
154.210.240.0/20
Signature Algorithm: sha256WithRSAEncryption
5b:8c:c5:86:8e:ec:b6:3f:3d:c2:e4:8a:dd:c7:e5:0c:33:7b:
35:f0:61:66:d9:92:4c:27:6a:ca:87:c6:6c:81:61:09:9c:79:
71:20:49:45:5e:05:78:b5:31:b8:98:b4:05:63:a8:2c:13:5f:
af:fa:b5:b3:f5:10:b5:ce:1e:7c:8f:90:68:bb:e8:b9:20:7a:
c3:53:8f:ea:8d:32:0e:bc:dc:de:ee:ba:f4:a4:79:81:5a:64:
09:6f:46:b1:8a:7b:25:c7:c2:0a:c7:34:84:13:2b:c6:ef:a1:
f8:b4:3c:83:e1:ac:f5:fe:79:e8:38:b4:04:c6:04:bd:69:4d:
02:1b:b6:eb:76:76:da:76:85:87:3e:30:ef:b6:f8:d6:ec:4b:
ea:16:ad:35:db:9a:ce:3c:9d:4e:20:97:4f:f0:79:cc:bc:44:
a8:f8:5f:a9:f2:52:16:d7:90:ef:07:3b:fb:6b:0d:37:f8:50:
70:b1:2d:4a:96:67:ca:95:69:33:df:9a:6e:1b:81:3d:9e:34:
43:0d:08:28:a5:16:fe:60:f1:2e:55:cb:07:11:16:e9:2f:91:
0e:f1:e9:2b:c8:de:26:53:07:ef:de:36:10:dd:f4:c3:d9:15:
97:9f:6e:86:32:b1:b8:a5:86:52:dd:96:9c:c6:8c:22:11:0d:
79:c2:ac:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 15 23:47:05 2025 by rpki-client