Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6762B7A828CA11F0876475E1DAE4EC9C.roa
File: 6762B7A828CA11F0876475E1DAE4EC9C.roa (raw, json)
Hash identifier: n3l9sydMExTf9q6J9paQ+j1NTvhNtlnF10wNoZqKaoM=
Subject key identifier: DC:F5:A8:AB:9A:48:5C:57:AB:AC:7B:E4:B7:32:6D:8A:DE:94:49:99
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 017ECC
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6762B7A828CA11F0876475E1DAE4EC9C.roa
Signing time: Sun 04 May 2025 09:30:24 +0000
ROA not before: Sun 04 May 2025 09:30:19 +0000
ROA not after: Wed 03 Jun 2026 09:30:19 +0000
asID: 984
IP address blocks: 154.90.135.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 11 May 2025 11:57:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 97996 (0x17ecc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 4 09:30:19 2025 GMT
Not After : Jun 3 09:30:19 2026 GMT
Subject: CN=681733af-71f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:14:4a:62:4e:d4:68:70:2b:00:36:68:95:a0:
21:63:c2:64:e9:86:9b:a5:e8:32:d8:74:85:aa:90:
dc:15:a2:ae:af:d8:dd:42:f0:f7:5c:22:c9:50:e2:
14:3e:a5:6e:a5:0b:78:5a:2e:b4:e7:16:98:86:2f:
9b:4c:7b:d2:a7:ea:f3:17:cb:4d:04:a9:e2:ef:0d:
04:b4:95:52:70:23:18:b0:6e:22:94:7c:54:f6:44:
7f:3d:ef:3f:04:6a:b9:4b:1e:95:ff:07:61:9b:ed:
f9:4d:2d:69:89:9d:31:1c:84:4c:d9:0e:a1:54:79:
a0:be:0f:f1:a5:04:3a:a4:94:7f:6a:3e:35:7a:87:
41:5d:4f:39:f7:ae:ac:d2:11:64:74:67:33:07:d8:
9d:4b:db:68:80:10:a7:40:0f:d1:78:52:62:50:a3:
36:e2:57:df:a5:cb:5f:45:c9:ec:0a:51:6b:ae:a6:
b6:57:43:f6:74:9f:b8:63:01:fc:a4:bb:78:d9:f7:
7e:21:cb:07:35:08:ea:ec:ac:a0:88:da:3a:4e:c1:
b1:4f:47:bb:de:d6:d8:85:f8:41:9c:3d:f4:1b:ab:
9f:eb:28:b0:b5:27:e1:08:76:be:85:7c:7f:87:cc:
73:1e:5b:1f:68:9e:d3:7f:6d:77:d5:bd:a2:a8:81:
aa:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:F5:A8:AB:9A:48:5C:57:AB:AC:7B:E4:B7:32:6D:8A:DE:94:49:99
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6762B7A828CA11F0876475E1DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.90.135.0/24
Signature Algorithm: sha256WithRSAEncryption
20:82:38:6a:21:18:aa:aa:13:9d:40:b8:67:aa:41:5b:a9:42:
09:17:6a:2e:67:0a:7c:c2:ea:d1:d3:de:e5:a8:8d:71:51:68:
2c:25:61:06:3e:4a:66:ba:e7:8c:f5:8d:f6:c1:bf:ac:6d:e0:
3d:48:7c:2f:60:da:d1:77:ab:6e:3b:c9:b2:96:20:76:79:fb:
d3:74:23:88:28:95:9d:e7:47:02:c6:2b:12:b9:16:89:2e:a5:
65:e4:54:ab:b3:e2:e8:ce:24:c4:10:62:c6:cb:ba:62:b4:d9:
dc:f4:77:51:dc:31:a1:7d:cd:d1:35:b4:83:81:2c:be:40:fa:
83:4d:7c:f9:98:38:e2:0b:22:ca:ad:5a:4f:80:8b:f3:97:38:
d5:81:08:f1:47:53:2c:40:b3:c8:e1:4d:20:8b:ad:08:99:5f:
36:87:ff:b5:61:b8:90:74:55:e5:64:de:f9:96:e1:9c:d9:17:
e0:c8:d2:ac:05:0f:fb:d2:dd:20:9b:71:46:33:00:41:f4:a5:
f5:7e:6f:fc:8b:91:56:34:fe:89:22:fb:5e:8e:75:dd:51:e4:
99:40:85:8a:38:34:fd:d6:96:17:01:ca:f4:cd:d8:eb:8e:e3:
05:36:9c:dd:4d:6b:5d:db:7c:2b:25:99:0e:7c:a9:c6:23:fe:
91:91:2e:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 9 22:52:24 2025 by rpki-client