Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6DF6595E265811F0A439DF88DAE4EC9C.roa
File: 6DF6595E265811F0A439DF88DAE4EC9C.roa (raw, json)
Hash identifier: fr8nFW74qL311m1oRVWjZVqXQk+grVT8SOuhRZlpuNk=
Subject key identifier: CB:27:2A:6A:98:65:17:FC:A6:C2:82:6B:27:78:79:1D:19:AB:C3:6A
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 017DC8
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6DF6595E265811F0A439DF88DAE4EC9C.roa
Signing time: Thu 01 May 2025 06:49:30 +0000
ROA not before: Thu 01 May 2025 06:49:25 +0000
ROA not after: Fri 01 May 2026 06:49:25 +0000
asID: 984
IP address blocks: 154.221.83.0/24 maxlen: 24
154.221.87.0/24 maxlen: 24
154.221.91.0/24 maxlen: 24
154.221.95.0/24 maxlen: 24
154.221.101.0/24 maxlen: 24
154.221.104.0/24 maxlen: 24
154.221.108.0/24 maxlen: 24
154.221.109.0/24 maxlen: 24
154.221.110.0/24 maxlen: 24
154.221.111.0/24 maxlen: 24
154.221.113.0/24 maxlen: 24
154.221.114.0/24 maxlen: 24
154.221.117.0/24 maxlen: 24
154.221.120.0/24 maxlen: 24
154.221.123.0/24 maxlen: 24
154.221.126.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 12 May 2025 00:07:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 97736 (0x17dc8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 1 06:49:25 2025 GMT
Not After : May 1 06:49:25 2026 GMT
Subject: CN=68131979-e24c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:8a:c7:c4:dd:2a:99:8e:84:a7:68:ba:a0:95:
b1:ca:1f:17:98:43:20:db:24:bf:85:44:13:92:42:
67:7e:e1:ef:e5:89:dc:ba:8b:48:7d:40:2b:85:70:
b6:2a:6c:85:e6:9e:ab:84:e1:f0:51:a9:9e:12:22:
21:38:c5:e1:dd:a7:9a:f4:4e:ac:0f:c8:b0:ac:9e:
11:fd:89:34:45:f8:cb:b5:42:fa:e1:c6:f2:85:a7:
af:78:e6:e1:61:9c:77:c3:d6:98:bb:4b:4b:1d:3a:
48:f1:2b:6f:ab:8f:ce:53:e9:89:34:e6:bd:d6:d1:
1d:86:b5:96:cb:1f:4e:d2:c0:44:50:ae:2f:4f:64:
1a:86:49:cf:d7:ca:54:3b:fe:0f:c5:64:f5:f2:d2:
8e:b9:c8:4d:3f:3e:95:52:7e:e2:14:29:90:e8:13:
2f:23:c6:2d:44:6b:eb:28:64:40:4e:4b:41:ee:99:
5a:2c:80:9b:e7:a2:62:b5:d9:0e:9c:77:a1:89:0c:
fe:89:7e:09:8d:9b:5e:6d:b2:d7:8c:55:21:99:ef:
14:be:19:34:46:fd:df:4c:50:89:8c:04:a6:69:67:
79:c8:25:ed:43:6e:0e:c2:d3:aa:2f:a4:f2:08:02:
cf:5e:fe:42:6b:8f:3c:9a:7b:72:86:7e:de:51:1a:
e4:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:27:2A:6A:98:65:17:FC:A6:C2:82:6B:27:78:79:1D:19:AB:C3:6A
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6DF6595E265811F0A439DF88DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.221.83.0/24
154.221.87.0/24
154.221.91.0/24
154.221.95.0/24
154.221.101.0/24
154.221.104.0/24
154.221.108.0/22
154.221.113.0-154.221.114.255
154.221.117.0/24
154.221.120.0/24
154.221.123.0/24
154.221.126.0/24
Signature Algorithm: sha256WithRSAEncryption
b2:ab:df:cf:48:95:4a:05:4d:0c:8f:2a:d1:a0:c9:79:45:15:
29:eb:06:9e:73:c5:39:83:2b:7b:82:bc:8a:bb:f7:bb:42:ab:
98:e9:30:d4:19:09:91:cf:44:58:62:b8:35:39:44:72:ce:7d:
78:2d:d5:e9:44:32:8a:49:70:0e:b2:b3:5f:55:ae:dd:04:5d:
e2:af:7d:62:7c:bb:55:4d:d2:4d:5a:54:d9:a9:72:3f:fd:16:
90:1f:51:d1:e6:d2:32:e7:75:48:6d:82:b9:6f:88:ab:7d:d2:
01:e9:c3:d3:3a:04:76:69:26:50:bd:39:29:5c:2e:12:6b:fc:
05:97:61:5b:95:91:08:b2:50:f5:05:24:69:c6:5d:63:ef:8e:
5a:99:c8:c0:bf:b6:9c:7e:c1:9d:73:41:30:b4:49:c6:7a:e9:
f7:16:7a:74:8d:84:92:57:f1:f6:f2:34:18:68:e9:d0:83:db:
90:0c:7b:f5:35:f5:69:cb:52:ec:cb:99:60:83:ce:6c:8d:a5:
ac:71:f5:7e:a6:98:d1:78:9b:82:a8:ab:c9:ff:f7:4a:4d:79:
c8:03:6e:28:ce:a4:69:1f:1f:5b:1f:45:d2:61:ac:54:0e:46:
23:6b:91:fc:50:53:69:6d:b5:19:5c:b3:f5:d3:91:4f:37:01:
b3:84:87:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 01:24:58 2025 by rpki-client