Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/67845C52268E11F09775F0E9DAE4EC9C.roa
File: 67845C52268E11F09775F0E9DAE4EC9C.roa (raw, json)
Hash identifier: WOS7N+BX2iY4D3CkxPpVGDErJB3cs/uU0jghNy65oVU=
Subject key identifier: 56:61:2B:F9:8B:5E:49:80:61:8D:66:06:3F:12:13:EB:07:84:A8:B9
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 017E08
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/67845C52268E11F09775F0E9DAE4EC9C.roa
Signing time: Thu 01 May 2025 13:15:52 +0000
ROA not before: Thu 01 May 2025 13:15:46 +0000
ROA not after: Fri 28 Apr 2028 13:15:46 +0000
asID: 17561
IP address blocks: 154.84.86.0/24 maxlen: 24
154.84.87.0/24 maxlen: 24
154.84.88.0/24 maxlen: 24
154.84.89.0/24 maxlen: 24
154.84.90.0/24 maxlen: 24
154.84.91.0/24 maxlen: 24
154.84.92.0/24 maxlen: 24
154.84.93.0/24 maxlen: 24
154.84.94.0/24 maxlen: 24
154.84.95.0/24 maxlen: 24
154.84.96.0/24 maxlen: 24
154.84.97.0/24 maxlen: 24
154.84.98.0/24 maxlen: 24
154.84.99.0/24 maxlen: 24
154.84.100.0/24 maxlen: 24
154.84.101.0/24 maxlen: 24
154.84.102.0/24 maxlen: 24
154.84.103.0/24 maxlen: 24
154.84.104.0/24 maxlen: 24
154.84.105.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 11 May 2025 11:57:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 97800 (0x17e08)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 1 13:15:46 2025 GMT
Not After : Apr 28 13:15:46 2028 GMT
Subject: CN=68137408-9da8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:e1:cc:89:7e:12:c5:5b:34:50:5e:b2:aa:d0:
1f:18:45:33:f3:ff:38:aa:fd:9e:01:b6:e2:8e:f6:
94:8f:74:39:50:29:c5:36:73:44:39:a9:5a:41:83:
80:62:e2:a6:2c:59:2a:de:be:69:2c:25:f6:bd:40:
9d:5a:2f:f5:ef:0e:a1:1b:b0:e7:0a:0f:93:b3:4b:
92:8f:60:db:ca:c9:16:0c:6b:fe:35:37:47:dd:fd:
24:6e:f6:ae:8a:5e:88:25:ef:09:0f:cf:47:de:b1:
a8:87:da:af:3e:b9:9d:f1:b0:8e:e0:77:cc:2c:20:
ab:4c:ec:17:b8:0f:91:39:2c:0c:f9:c1:96:bc:38:
54:2d:e2:1e:e8:7f:42:40:07:5a:65:f4:a1:f7:81:
0a:b4:29:88:5a:ea:37:59:04:9f:16:f8:9d:1b:78:
be:d0:2c:c9:59:df:0a:76:fa:a0:7d:f6:54:11:52:
e5:b4:27:cc:1d:85:a7:07:11:f9:95:25:f5:63:89:
61:d8:24:ee:ad:cb:e8:04:15:41:3c:66:31:52:05:
51:57:9c:b4:80:d1:04:59:f2:8d:6f:61:cf:18:d8:
57:45:02:54:5c:af:a8:f4:eb:e4:08:aa:7a:6e:47:
9d:ca:5b:d5:99:55:1b:89:dd:67:fd:1f:db:9a:04:
95:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:61:2B:F9:8B:5E:49:80:61:8D:66:06:3F:12:13:EB:07:84:A8:B9
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/67845C52268E11F09775F0E9DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.84.86.0-154.84.105.255
Signature Algorithm: sha256WithRSAEncryption
41:8f:a4:c0:96:d7:c0:a6:9c:02:b7:d4:55:58:e7:86:20:09:
84:c1:52:a2:b5:98:21:b9:2d:e8:23:43:2c:89:68:81:f4:74:
3f:b9:3d:40:44:ab:d0:ad:31:7a:70:23:64:d9:a9:0f:25:c5:
16:af:83:4a:90:62:12:00:4a:3e:56:dc:a2:41:6c:46:7d:0b:
f7:55:18:b0:72:e8:38:81:f3:85:7c:1b:9b:6c:93:9e:bc:27:
4e:46:70:9f:d0:20:d9:c2:3e:95:18:7b:fd:e3:d4:af:53:0f:
75:48:1b:bd:5c:bb:78:e5:71:3d:0d:b6:38:70:3f:20:ea:7d:
9f:5e:64:f6:5e:37:e8:c1:28:47:65:8f:86:d3:dd:01:69:b8:
5a:aa:4a:a6:cc:eb:e6:26:68:3d:f9:39:06:12:d1:37:25:9b:
4d:a5:5a:d5:63:82:ac:b6:f0:a9:44:56:c4:9b:6a:e8:a5:48:
55:55:ba:6f:e7:49:9c:d4:67:64:23:81:95:ea:e0:69:f1:ea:
ac:05:32:ad:66:f4:31:31:db:2b:95:71:ee:0a:26:f2:a1:4c:
88:2a:c7:4b:9e:87:d7:8e:ef:ec:ac:cd:1e:f8:70:08:ca:89:
63:7e:50:f5:b2:05:d1:f4:6d:e1:9f:57:23:05:02:18:fa:fe:
26:a3:ba:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 9 23:49:47 2025 by rpki-client