Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8403FA3C274111F095DBAA9CDAE4EC9C.roa
File: 8403FA3C274111F095DBAA9CDAE4EC9C.roa (raw, json)
Hash identifier: PHUoBcs+R7wByBl3ZRyrFM8YKO1NwzfO8Zo5mfaBvgg=
Subject key identifier: 04:F7:5D:74:9C:44:3D:31:50:A6:D1:9D:E9:AA:F4:4D:71:7C:D0:F2
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 017E74
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8403FA3C274111F095DBAA9CDAE4EC9C.roa
Signing time: Fri 02 May 2025 10:37:59 +0000
ROA not before: Fri 02 May 2025 10:37:54 +0000
ROA not after: Sun 13 Jul 2025 10:37:54 +0000
asID: 25818
IP address blocks: 154.91.204.0/22 maxlen: 24
154.91.208.0/20 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 08 May 2025 00:06:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 97908 (0x17e74)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 2 10:37:54 2025 GMT
Not After : Jul 13 10:37:54 2025 GMT
Subject: CN=6814a087-9dfb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fd:55:91:3e:88:78:2a:d1:13:62:d9:ab:59:d5:
9d:61:c4:f2:23:58:25:3d:e9:46:93:e0:40:78:e9:
87:7b:3f:4f:65:5e:58:00:52:08:0c:39:b4:0f:5d:
90:08:2d:d6:0a:4c:f0:c9:8d:ea:52:03:32:8e:80:
e7:12:71:4e:58:72:c0:60:a6:5b:b6:67:f6:12:25:
d3:e9:e1:f5:0a:16:7a:96:c1:5c:ed:70:2c:d8:64:
1a:cf:73:44:5f:f1:e5:ce:94:a4:ca:de:fa:75:fe:
50:66:df:21:e8:73:50:ab:c7:e0:b1:35:a2:41:ec:
0b:c2:47:4b:32:e0:83:36:9e:94:bb:33:7d:88:e3:
5c:80:e9:6a:27:e1:7b:ea:98:d5:64:63:ee:17:74:
5f:4e:28:f5:54:93:7b:22:34:5e:7d:5c:38:67:a1:
8c:e0:14:08:34:c2:68:2d:ef:3f:29:c4:1b:d5:c1:
f6:99:a1:21:7f:af:40:ee:f8:36:56:d5:cb:03:63:
8f:4a:df:09:b3:b9:2a:d4:0d:ac:1a:2c:54:40:83:
3e:80:fa:f5:d2:d7:a3:dd:57:ef:87:bc:48:05:d1:
bd:1a:c3:a3:60:a1:9c:39:7f:22:93:f1:51:4a:b5:
0a:0a:97:44:95:4d:55:70:09:15:a6:51:5b:6d:07:
cc:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:F7:5D:74:9C:44:3D:31:50:A6:D1:9D:E9:AA:F4:4D:71:7C:D0:F2
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8403FA3C274111F095DBAA9CDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.91.204.0-154.91.223.255
Signature Algorithm: sha256WithRSAEncryption
62:b1:b5:c3:f4:5f:fc:13:9c:7d:7c:1e:82:0f:da:5b:50:86:
0e:8d:78:44:f7:85:f7:63:58:e2:13:54:ba:b4:26:a0:2f:e7:
db:89:9f:c0:9d:34:5a:89:66:30:ac:12:26:ae:d4:86:e3:5d:
b0:98:d5:68:e9:e9:8b:e9:79:48:b3:d4:4e:99:a6:5c:0c:3d:
8d:7a:6f:60:85:5d:ea:32:9c:f0:21:57:24:fe:20:e8:9d:7c:
b0:c2:39:45:cf:f9:12:1f:da:47:1f:76:26:ad:f0:aa:ef:e2:
2f:55:7a:6b:b0:71:93:c2:35:2f:f7:7d:de:a8:2e:49:c8:23:
9f:cb:c3:9c:60:e3:c8:55:b2:40:82:b9:93:ba:8b:5d:b0:5c:
af:01:fb:cb:44:fc:30:13:0d:8d:b6:38:04:53:60:6d:27:db:
91:0a:14:b6:fd:c9:32:ea:47:70:43:6e:d3:d7:5c:3b:a8:a4:
12:64:6a:cc:5a:ee:47:c4:53:08:26:92:5b:f4:06:c9:22:a0:
f9:c9:92:e7:65:4f:15:d3:a1:a0:ce:cf:43:d2:65:3f:b6:c4:
c7:2b:7b:80:8e:1a:f6:e7:26:3b:52:e0:a9:43:f7:6a:5c:0e:
c0:84:ef:39:f2:16:31:ad:cf:5b:43:b0:78:4f:72:a4:8a:97:
50:9e:78:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 6 23:06:34 2025 by rpki-client