Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/82F8B8F02B2711F0889D00B3DAE4EC9C.roa
File: 82F8B8F02B2711F0889D00B3DAE4EC9C.roa (raw, json)
Hash identifier: gf5/0UyCAEQcE8lCHSEK9rlD6Gz0FjcP2tP5iqChnrs=
Subject key identifier: DB:87:86:5D:30:84:F6:36:1A:08:07:3A:07:0D:36:1C:B8:69:CC:EC
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 017F4F
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/82F8B8F02B2711F0889D00B3DAE4EC9C.roa
Signing time: Wed 07 May 2025 09:41:55 +0000
ROA not before: Wed 07 May 2025 09:41:51 +0000
ROA not after: Sat 17 May 2025 09:41:51 +0000
asID: 149014
IP address blocks: 154.223.168.0/24 maxlen: 24
154.223.169.0/24 maxlen: 24
154.223.177.0/24 maxlen: 24
154.223.178.0/24 maxlen: 24
154.223.179.0/24 maxlen: 24
154.223.180.0/24 maxlen: 24
154.223.182.0/24 maxlen: 24
154.223.183.0/24 maxlen: 24
154.223.188.0/24 maxlen: 24
154.223.189.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 15 May 2025 07:24:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 98127 (0x17f4f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 7 09:41:51 2025 GMT
Not After : May 17 09:41:51 2025 GMT
Subject: CN=681b2ae3-e3c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:a7:30:d5:c8:8e:b7:ba:c3:38:b3:fc:ee:ab:
ec:18:a4:84:d9:d4:11:df:5c:b6:2c:26:03:6d:5e:
34:34:cd:98:c2:c2:58:43:3a:e0:fa:07:cf:6a:ab:
66:10:2b:87:22:07:5b:9f:56:d2:b0:c2:a9:95:ac:
df:55:d9:bb:95:ff:40:01:2e:93:e5:dd:27:0f:1e:
dc:73:97:16:75:e3:16:ca:5e:16:01:e2:98:e2:04:
4a:d2:91:2a:66:e4:ba:1c:a5:54:bf:1d:87:95:f5:
d8:67:9f:99:9a:e9:11:30:cd:37:d4:64:ee:85:b1:
b1:7e:75:6d:be:18:c5:8e:b8:b1:78:62:73:42:a7:
d2:a7:7b:d2:36:4e:83:31:8b:b6:b3:0c:9b:98:a1:
ad:26:7f:86:9a:9e:6a:b4:a3:26:a1:e8:d9:36:9b:
31:44:a7:ff:8a:21:4a:dc:15:b6:83:e4:95:50:14:
bf:5a:bc:93:8e:36:d8:38:e2:80:fc:8d:56:58:05:
fc:99:7b:00:f4:51:10:f4:a2:3f:ea:e7:1f:e1:fb:
46:bd:bf:f2:fc:56:b1:5c:df:ee:24:7d:fa:6d:16:
f5:00:47:49:ea:db:ec:ec:5d:1d:1d:8f:95:86:65:
4a:3b:a5:5f:84:2d:3e:56:fc:a5:7a:6d:a7:9a:af:
c0:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:87:86:5D:30:84:F6:36:1A:08:07:3A:07:0D:36:1C:B8:69:CC:EC
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/82F8B8F02B2711F0889D00B3DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.223.168.0/23
154.223.177.0-154.223.180.255
154.223.182.0/23
154.223.188.0/23
Signature Algorithm: sha256WithRSAEncryption
20:6d:5e:87:8d:3c:ff:dd:0c:5d:7e:2d:6a:2d:b2:ed:a7:69:
a5:2e:23:c3:64:9d:fb:2e:67:0d:8b:50:3e:ba:aa:0a:da:a6:
dc:13:75:a1:89:4b:f8:56:78:64:62:5b:68:90:65:15:e4:65:
7f:f3:bf:50:70:ac:85:cd:d7:28:de:d5:eb:b6:30:71:62:66:
7e:91:14:75:79:d8:c1:57:63:f1:dd:f7:67:b4:90:5d:b7:dc:
2e:82:b0:20:9a:45:a5:07:88:36:60:a4:cf:d0:c8:63:87:7d:
ba:5f:7b:9f:12:fc:9d:da:96:32:71:8b:b9:32:a3:04:d4:9a:
a9:f0:5d:a2:a5:45:f1:bd:98:03:c0:03:ca:69:be:a4:21:3b:
db:a1:0b:98:20:03:25:e5:c6:eb:b8:b5:eb:55:8d:01:18:99:
4a:17:98:36:c4:16:5e:49:87:c0:af:54:e8:c2:43:83:8b:94:
7c:47:7a:54:d8:3b:5f:3c:f3:a7:0b:8d:73:ad:8f:fd:ad:92:
96:aa:8f:54:7b:73:61:91:3d:c1:df:f0:43:d6:1c:c8:8e:a4:
62:11:00:18:aa:82:c4:0d:7f:87:a2:29:a6:25:ca:d5:0b:1e:
49:ab:d3:2e:72:a7:66:88:83:7e:b8:2f:d0:27:a9:db:f3:b0:
f8:3e:e2:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 13 13:23:43 2025 by rpki-client