Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8909E20824E911F0A03ABCEBDAE4EC9C.roa
File: 8909E20824E911F0A03ABCEBDAE4EC9C.roa (raw, json)
Hash identifier: E3YwzWE9ed8ygmvCaWUQNxc9dSRF0pPqnmhXLSF4WEw=
Subject key identifier: CA:80:93:F9:EC:3A:7C:09:BB:95:3A:74:B9:89:C7:54:4A:B8:75:01
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 017CDF
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8909E20824E911F0A03ABCEBDAE4EC9C.roa
Signing time: Tue 29 Apr 2025 11:03:10 +0000
ROA not before: Tue 29 Apr 2025 11:03:05 +0000
ROA not after: Wed 03 Sep 2025 11:03:05 +0000
asID: 142403
IP address blocks: 154.209.5.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 17 May 2025 09:29:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 97503 (0x17cdf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 29 11:03:05 2025 GMT
Not After : Sep 3 11:03:05 2025 GMT
Subject: CN=6810b1ee-58ed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:17:dd:72:b8:b7:0d:17:04:a2:f3:55:ee:fc:
d4:97:9c:8a:c8:19:b1:fe:22:62:12:1e:50:81:83:
7f:8c:64:04:f2:a8:8c:24:24:84:18:c9:db:a2:a1:
ae:08:38:aa:8b:29:d2:13:5b:7a:91:24:83:ae:7a:
bb:3e:de:c4:0b:99:71:d4:46:a7:90:84:96:16:6b:
da:5b:8a:9d:af:42:93:eb:d5:65:d1:8c:ba:fe:b1:
82:4d:15:04:41:0d:5b:49:82:5a:1f:8c:6c:c2:72:
aa:28:74:43:26:6b:b7:93:17:ba:eb:f8:ff:a5:bd:
e5:83:97:7d:5b:e8:bd:05:51:0e:55:0e:dd:f5:52:
ae:a1:3d:01:34:43:38:c1:ad:6a:54:ef:7f:ff:9f:
d8:17:17:45:2d:4a:eb:2d:d7:c8:aa:d6:83:4d:35:
21:f0:69:f7:a7:bd:d5:44:7e:1a:f9:f7:15:aa:96:
05:11:25:b8:fa:d4:6e:17:00:4a:ac:d4:f7:32:6c:
2a:6e:88:f4:d3:dc:5b:a1:07:72:16:46:fc:4d:64:
ea:2e:a3:0e:7d:a1:b2:f0:ba:eb:a6:f4:b2:66:08:
0e:b2:ed:e5:46:8e:47:12:f5:5d:71:13:26:c2:bb:
18:a9:07:7a:f3:e9:98:fa:f8:c5:08:6b:65:2c:90:
fa:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:80:93:F9:EC:3A:7C:09:BB:95:3A:74:B9:89:C7:54:4A:B8:75:01
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8909E20824E911F0A03ABCEBDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.209.5.0/24
Signature Algorithm: sha256WithRSAEncryption
51:0a:c1:0d:8e:ca:aa:41:cc:bf:c6:fd:56:bf:16:23:f7:33:
06:cc:1f:aa:7f:08:ef:73:b0:56:80:02:77:e5:34:9c:89:04:
03:a4:ba:6a:59:8b:b2:1e:ec:91:e9:d3:e0:f1:d3:26:c8:2f:
63:4a:3c:23:cc:5d:35:62:50:12:95:33:91:aa:d2:71:c6:8b:
00:f8:c2:de:e5:a1:32:2d:0d:cc:be:e2:21:5c:19:3e:34:da:
96:eb:41:be:4f:f9:cb:ea:18:55:1c:30:78:10:db:92:62:48:
a2:5c:3c:23:aa:53:78:0d:f2:1f:8b:dc:27:4f:a6:4b:69:c0:
ea:44:60:14:ad:d2:2e:8f:8d:3b:ec:d4:9b:8f:07:ad:6f:b1:
2e:05:4c:76:73:fc:28:f4:28:0c:f0:6b:bf:e2:90:a7:19:cb:
ac:54:5c:2c:eb:b3:1d:23:84:fb:41:7c:ba:8f:d9:17:41:ba:
58:3d:bf:e5:92:bf:21:fa:e1:ce:2b:23:5c:09:56:7b:d4:9f:
ec:70:9e:5f:c6:d2:98:1e:2f:e3:e5:e3:b9:e3:d0:e4:ba:7b:
ea:0e:83:da:31:8f:23:c9:b6:fd:38:6f:30:e6:41:48:a5:42:
7e:3f:52:b5:5b:12:1d:fe:2a:dc:50:d1:78:4a:7a:9e:e6:4a:
30:89:4c:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 15 23:48:07 2025 by rpki-client