Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7E5FBDD62BBB11F08C83338ADAE4EC9C.roa
File: 7E5FBDD62BBB11F08C83338ADAE4EC9C.roa (raw, json)
Hash identifier: lvVMw9gMa4KGR7urcc1hqboNOrXA/rFWfQGIIvkJh4U=
Subject key identifier: BF:4A:60:4F:1E:CB:75:9F:DB:1E:C7:E0:D5:BA:2A:C7:45:CD:98:AE
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 017F6C
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7E5FBDD62BBB11F08C83338ADAE4EC9C.roa
Signing time: Thu 08 May 2025 03:21:13 +0000
ROA not before: Thu 08 May 2025 03:21:07 +0000
ROA not after: Wed 28 May 2025 03:21:07 +0000
asID: 9294
IP address blocks: 154.195.64.0/19 maxlen: 24
154.206.192.0/19 maxlen: 24
154.218.32.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 17 May 2025 09:29:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 98156 (0x17f6c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 8 03:21:07 2025 GMT
Not After : May 28 03:21:07 2025 GMT
Subject: CN=681c2329-6064
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:d3:9f:13:f6:9d:ba:1c:55:05:bb:cb:6a:0b:
90:ac:55:6b:c2:fe:cf:5d:cc:a0:b8:5f:67:5e:af:
3b:54:34:34:a5:f0:48:85:db:a8:07:72:99:85:73:
0d:1b:bb:18:8a:23:5d:d5:b9:9a:70:43:1d:e7:47:
f1:71:88:20:8f:c6:fc:e0:db:e6:a5:65:49:90:ae:
19:4f:61:c4:69:59:7c:0c:15:05:c2:75:52:cd:00:
9d:fb:e2:aa:9c:ef:cd:60:ab:92:f5:4a:18:1a:9c:
8f:f7:c2:b9:e2:57:d6:df:d7:c0:1b:b1:a8:75:8a:
49:82:d3:b0:46:13:d3:f6:fe:f4:8b:80:d4:1e:c2:
52:1e:bf:4f:fa:df:9d:b1:8d:14:75:4d:7e:0e:31:
a3:c1:af:33:5a:24:29:1c:53:cd:a3:e7:49:1a:43:
69:03:5b:31:3c:8c:3b:bc:c2:4c:e8:1d:f1:22:14:
dc:be:ea:4c:0e:e0:07:83:ba:bd:6e:a7:08:80:da:
a7:49:c0:5d:1f:b5:0a:a3:0b:f1:4a:fc:b9:fc:b8:
67:9e:33:49:a5:a6:77:41:5c:56:a0:87:d1:6a:82:
8e:82:73:d2:46:fd:55:6d:e0:65:0f:5f:3c:b3:4d:
50:48:30:9b:a7:d6:92:06:f3:27:a8:3c:c4:2e:e9:
0d:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:4A:60:4F:1E:CB:75:9F:DB:1E:C7:E0:D5:BA:2A:C7:45:CD:98:AE
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7E5FBDD62BBB11F08C83338ADAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.195.64.0/19
154.206.192.0/19
154.218.32.0/19
Signature Algorithm: sha256WithRSAEncryption
68:6a:11:e9:07:64:21:82:b9:27:bc:f0:d2:ff:27:7f:9e:0d:
0d:c1:20:0b:e3:3f:ca:3c:a9:99:25:d3:54:e4:f3:b4:17:b3:
6a:d3:99:a8:4b:05:ad:a3:1d:f6:e0:4f:26:6f:2d:19:2e:65:
a5:fb:7f:f4:a4:99:7f:dd:8f:05:ac:de:ee:66:08:10:e7:bf:
6b:3e:ae:2c:2d:5a:7a:50:cf:56:2b:35:43:d4:b7:d1:46:b2:
46:cf:39:64:ce:8c:8c:d8:d8:f1:04:1d:d4:0b:43:e6:fb:34:
ee:34:94:4d:72:f4:53:e0:3c:86:1f:39:1f:cc:6d:2a:25:6e:
72:ca:1c:02:10:d1:4e:4b:b1:d3:e5:55:a1:52:34:2b:72:c9:
50:ed:97:4b:9b:e3:91:6d:7d:5a:ca:35:4a:4b:77:e8:e3:ab:
b2:5f:dc:7b:8f:b1:36:98:fd:5d:a8:52:d5:62:2e:f8:4c:53:
4f:d4:ff:63:16:11:35:57:8a:a4:ad:ad:d0:52:e4:d7:c6:d9:
4d:69:74:e4:6a:08:a6:7f:8c:bf:3c:d8:06:cd:ff:24:f1:3a:
ea:41:70:01:98:cf:b1:f8:3f:87:f3:bf:e1:b0:25:0b:9d:35:
70:b5:20:42:9a:8f:14:22:ff:a0:47:30:d8:92:cb:d3:d3:27:
67:3d:52:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 15 23:46:59 2025 by rpki-client