Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/63A95FE8298A11F08FDD71E6DAE4EC9C.roa
File: 63A95FE8298A11F08FDD71E6DAE4EC9C.roa (raw, json)
Hash identifier: dtHcPEumrOU8Nxtmkh0BVwp4PY1VF+cYQgtyzORFrtA=
Subject key identifier: 73:04:FB:A5:7E:21:BF:CC:23:59:30:16:35:78:7E:BE:1A:15:D7:F2
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 017EEB
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/63A95FE8298A11F08FDD71E6DAE4EC9C.roa
Signing time: Mon 05 May 2025 08:24:41 +0000
ROA not before: Mon 05 May 2025 08:24:36 +0000
ROA not after: Mon 09 Jun 2025 08:24:36 +0000
asID: 141883
IP address blocks: 154.86.0.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 15 May 2025 00:06:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 98027 (0x17eeb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 5 08:24:36 2025 GMT
Not After : Jun 9 08:24:36 2025 GMT
Subject: CN=681875c9-e8d4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:53:a0:5d:ab:ea:85:4b:ea:3b:5c:c3:99:d7:
a9:8e:9d:99:18:6a:c1:1a:c2:18:c5:1f:a2:a8:fd:
81:b7:d4:06:1f:8c:8b:c5:e9:28:f0:1c:e4:9f:f7:
36:af:ef:05:77:fe:e1:49:d0:85:1c:fb:32:45:31:
3d:23:cd:4e:12:64:b7:df:4f:3f:4f:d6:e3:02:b0:
2c:1b:89:05:c7:35:c2:29:79:36:f7:e9:21:60:a6:
69:16:37:b5:1c:2a:6d:d0:26:72:46:14:6f:00:d7:
81:41:3e:cd:7b:5e:af:43:be:04:75:89:1f:77:b8:
e3:a5:ce:2d:13:8d:f5:79:6b:68:47:03:61:5c:54:
aa:3f:6f:02:a7:f4:4a:c6:11:c0:c0:55:b2:48:c0:
e0:ea:fd:cb:42:de:1e:80:73:87:49:64:36:f7:cd:
ec:91:a3:9e:65:d3:b9:e8:95:35:dd:d2:a7:78:f7:
6c:77:c0:c0:97:11:af:28:b0:d4:c3:cd:14:89:3b:
17:f4:08:02:2b:89:4d:6f:a0:57:b4:2a:0a:c9:e8:
cd:06:3b:ac:b9:d0:3c:94:b8:39:fb:d9:bc:e4:64:
1e:9c:cf:2d:0c:6f:8b:67:de:b9:fe:54:95:12:56:
99:04:18:ba:ec:84:f0:f3:a7:e6:f9:7e:17:31:cf:
71:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:04:FB:A5:7E:21:BF:CC:23:59:30:16:35:78:7E:BE:1A:15:D7:F2
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/63A95FE8298A11F08FDD71E6DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.86.0.0/24
Signature Algorithm: sha256WithRSAEncryption
bc:56:0a:60:d7:a6:44:04:0f:05:7c:20:52:b0:c8:df:73:83:
65:1f:af:74:ca:67:29:43:f3:62:5e:46:e6:87:ba:02:71:a7:
d5:0e:b5:05:35:5c:23:cc:7d:25:5c:65:05:33:cc:21:25:a4:
63:fd:a2:bf:4b:b5:d3:00:69:ea:b3:09:b5:93:d6:a2:4a:6e:
03:93:45:29:d5:f5:cf:34:c3:b3:fa:3e:03:ca:f7:ff:cb:09:
a0:12:b5:35:d8:ef:31:69:c4:d9:69:db:46:d0:3e:80:6c:aa:
c8:1b:13:87:08:70:56:b9:a4:04:f8:f1:fa:c5:4d:e0:c0:e6:
20:e3:14:0a:46:9f:7e:3f:d5:a2:8a:3e:c0:1a:3e:e8:07:93:
a4:bc:7c:8f:46:3e:de:e8:fc:b4:dd:79:1b:2e:1c:4f:43:8a:
80:2c:42:a1:15:f5:94:f9:5b:32:f9:24:52:5a:a7:75:9e:1e:
14:2f:56:30:3b:c2:f1:a4:5e:d0:31:aa:aa:4b:51:63:f4:d9:
6a:68:bc:6a:6e:04:13:b1:27:f8:9a:56:c8:00:10:1a:2c:c9:
93:fa:25:d4:64:27:dc:c1:d8:26:71:c9:a0:56:4e:89:5e:bb:
57:97:4c:cb:f8:6f:fc:4f:ca:97:f0:25:2c:d6:f0:d6:a5:ce:
0a:64:05:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 13 06:32:14 2025 by rpki-client