Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/737430EA25C711F080460BB7DAE4EC9C.roa
File: 737430EA25C711F080460BB7DAE4EC9C.roa (raw, json)
Hash identifier: P8jrxehttr9TVUJ5hAVRXTe/YNtcDiqGH9+g1yY+9jA=
Subject key identifier: 87:CF:34:9E:5A:FF:46:8B:37:F8:B5:F4:6E:D7:23:CB:C7:1A:EB:69
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 017D7B
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/737430EA25C711F080460BB7DAE4EC9C.roa
Signing time: Wed 30 Apr 2025 13:31:42 +0000
ROA not before: Wed 30 Apr 2025 13:31:37 +0000
ROA not after: Tue 28 Apr 2026 13:31:37 +0000
asID: 984
IP address blocks: 154.80.152.0/24 maxlen: 24
154.80.153.0/24 maxlen: 24
154.80.154.0/24 maxlen: 24
154.80.155.0/24 maxlen: 24
154.80.156.0/24 maxlen: 24
154.80.157.0/24 maxlen: 24
154.80.158.0/24 maxlen: 24
154.80.159.0/24 maxlen: 24
154.80.160.0/24 maxlen: 24
154.80.161.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 12 May 2025 00:07:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 97659 (0x17d7b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 30 13:31:37 2025 GMT
Not After : Apr 28 13:31:37 2026 GMT
Subject: CN=6812263e-8653
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:11:e9:3d:ea:1d:c5:a1:b6:56:1a:d5:2e:c2:
af:85:76:3e:fe:75:6e:5e:ab:ba:3c:8e:ea:96:5d:
a1:d5:09:d6:dd:44:b3:85:80:86:4a:17:63:39:fa:
f2:2e:58:92:f3:8c:c2:f6:ae:1f:8e:fb:f3:53:04:
28:87:c2:dd:bb:9f:78:de:11:f3:c8:c7:13:69:23:
ba:bd:32:3f:1d:44:f4:3e:50:69:73:1b:e6:6a:80:
ab:2a:7c:27:1c:16:4b:bd:c1:14:fe:fa:b2:f3:0f:
b8:61:5f:20:4a:62:e2:a9:cf:60:cb:33:b2:ce:05:
65:f3:df:3a:f5:4b:12:60:3a:d0:80:7f:db:00:90:
86:bd:92:fb:05:00:f1:a8:11:79:a4:44:ab:c5:e1:
b6:44:8e:1c:5e:af:08:fc:25:bd:d8:b4:54:b1:74:
84:b5:fd:2f:8d:92:98:37:a0:16:07:eb:49:b1:9c:
25:27:ee:d1:33:5c:d4:3a:de:12:9f:ab:0a:64:cc:
ec:da:f7:0f:35:93:24:93:21:9f:21:f8:cb:7b:a2:
40:5f:64:c4:31:fd:f8:cc:9c:ba:42:2f:03:75:5a:
e6:ae:1c:66:97:b7:1b:fa:95:9d:31:69:1a:9b:56:
0d:bc:a8:b1:0a:ff:7b:a6:00:9e:3f:2b:8a:9a:e6:
59:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:CF:34:9E:5A:FF:46:8B:37:F8:B5:F4:6E:D7:23:CB:C7:1A:EB:69
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/737430EA25C711F080460BB7DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.80.152.0-154.80.161.255
Signature Algorithm: sha256WithRSAEncryption
98:a6:ba:45:e9:3a:60:c9:6b:d0:82:05:70:ed:da:2c:84:da:
38:96:54:c8:a0:06:0a:cf:eb:93:1c:06:22:3f:40:a5:60:31:
9d:11:65:c9:f7:71:35:3c:0d:f7:0e:f8:f6:84:f1:f3:33:23:
93:c0:52:d6:eb:f1:ef:7a:2c:69:fe:bf:a5:53:08:39:4b:48:
bd:14:d5:e5:55:ca:bf:c8:29:d2:50:97:6c:b5:d3:b1:ec:0f:
00:aa:84:9d:e5:e1:e0:4a:d3:5a:5a:ae:07:87:0d:55:21:fe:
c1:1d:69:00:ae:99:55:33:54:97:e4:06:d1:b3:ac:f7:e6:16:
a7:12:b8:f9:42:4e:b6:8f:ae:79:7e:18:48:1b:f4:56:5b:33:
fa:5d:3c:39:10:34:74:ff:d3:82:41:e3:ac:68:60:9a:b2:c0:
a5:19:1e:b5:e4:73:99:11:90:cc:37:96:f8:bc:87:0d:67:ff:
90:bf:58:a5:73:97:24:2d:59:bd:e9:38:a4:8a:a9:a9:a4:80:
dd:1f:2d:8d:72:15:1e:01:b2:b2:8d:a8:89:5d:6f:94:a0:52:
1a:7e:da:27:3c:62:10:86:e1:79:5e:78:50:ea:8a:07:c5:20:
6d:1f:de:dc:07:9e:67:f3:9f:e4:84:1f:4b:df:86:2d:47:a9:
29:fa:31:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 10 10:15:52 2025 by rpki-client