Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9010A7122BCE11F0ABD0A594DAE4EC9C.roa
File: 9010A7122BCE11F0ABD0A594DAE4EC9C.roa (raw, json)
Hash identifier: UHL1NB4jLfYL1so7OxZuiKRgle9Y8422GSQiuqYNFUs=
Subject key identifier: EA:F2:A2:92:47:F5:E3:D8:81:D2:8F:E4:34:8B:D6:ED:FD:B7:EB:97
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 017F74
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9010A7122BCE11F0ABD0A594DAE4EC9C.roa
Signing time: Thu 08 May 2025 05:37:43 +0000
ROA not before: Thu 08 May 2025 05:37:39 +0000
ROA not after: Wed 28 May 2025 05:37:39 +0000
asID: 200373
IP address blocks: 154.193.152.0/22 maxlen: 24
154.193.158.0/23 maxlen: 24
154.199.14.0/23 maxlen: 24
154.199.68.0/23 maxlen: 24
154.213.160.0/21 maxlen: 24
154.213.193.0/24 maxlen: 24
154.213.194.0/23 maxlen: 24
154.213.196.0/22 maxlen: 24
154.213.202.0/23 maxlen: 24
154.213.204.0/24 maxlen: 24
154.222.132.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 17 May 2025 09:29:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 98164 (0x17f74)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 8 05:37:39 2025 GMT
Not After : May 28 05:37:39 2025 GMT
Subject: CN=681c4327-494d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:74:0a:a8:bd:0c:c0:5d:47:59:3a:63:12:3c:
44:c6:9f:d1:87:9e:53:20:68:0b:09:53:68:7c:84:
bb:48:4c:a0:20:e4:13:b1:06:a8:3a:69:00:c6:7d:
a5:c5:3f:29:81:4f:5b:cd:08:79:c9:0f:70:92:9e:
1d:87:79:0e:6c:ca:e6:bf:04:4e:c9:63:d4:79:bc:
e7:28:f7:d5:18:72:c8:50:e8:09:e6:ad:db:dd:51:
ca:c0:39:de:82:5d:3d:19:a3:c8:29:a9:6d:7b:a8:
f6:29:e7:1c:21:63:f4:87:7f:b6:c6:94:32:6a:cc:
71:53:33:cc:a9:42:96:89:21:e8:26:eb:79:54:f3:
28:e7:8d:15:09:83:db:cb:f0:cc:c0:6d:ff:63:0c:
94:42:e6:3d:ce:4d:ac:03:0c:1e:48:38:01:3e:70:
dd:09:fc:57:d4:a8:db:aa:f5:0a:ae:26:af:ae:20:
1b:32:b6:fb:90:04:9d:71:1c:42:46:27:21:a3:06:
d6:8e:d7:1d:38:ec:27:99:9c:d2:db:0c:f7:07:9b:
c4:63:da:d8:24:ba:e2:a1:ca:ba:98:72:2b:67:fd:
81:82:75:cb:80:b7:8b:e7:23:60:a4:e0:ca:31:71:
b6:1d:4f:c6:3a:c9:87:b9:f8:cb:0f:f1:eb:4d:f3:
24:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:F2:A2:92:47:F5:E3:D8:81:D2:8F:E4:34:8B:D6:ED:FD:B7:EB:97
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9010A7122BCE11F0ABD0A594DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.193.152.0/22
154.193.158.0/23
154.199.14.0/23
154.199.68.0/23
154.213.160.0/21
154.213.193.0-154.213.199.255
154.213.202.0-154.213.204.255
154.222.132.0/24
Signature Algorithm: sha256WithRSAEncryption
a4:8d:80:44:06:3f:ad:f0:cd:d7:2b:9c:7e:c0:db:3d:ed:71:
35:86:4d:87:f8:4b:18:a3:ee:53:74:c8:57:e6:e5:4b:50:c2:
d6:f4:c0:7d:61:f6:42:00:0d:d4:b1:5a:2e:5b:13:af:9c:e4:
27:03:c8:84:1a:50:c7:ea:b3:9c:14:af:3f:c8:03:0d:0b:eb:
44:ec:58:5c:2e:d9:e9:76:66:e7:d4:7f:54:6f:71:76:91:19:
6a:61:f7:1d:fa:f4:b3:79:f9:62:3d:a8:dc:ee:66:bf:68:32:
58:73:9b:50:ea:3e:f7:7c:6f:f4:db:50:74:80:93:a4:16:59:
16:0f:b4:cf:bc:a1:89:e9:f1:ff:cd:23:56:24:50:92:ba:e5:
9c:79:ea:08:41:5a:be:91:07:ee:7c:45:1f:a6:89:eb:4c:8a:
89:29:52:bf:b7:cc:96:76:22:39:dc:5a:58:e4:fc:c5:64:4d:
c9:d9:4a:11:57:4d:c6:ab:d9:e7:43:86:e4:a8:b2:e0:b3:5d:
1a:4f:e7:b7:27:42:f4:a6:b6:c3:ab:7d:5e:98:76:f4:48:a9:
38:65:1d:27:70:9c:ff:a4:d1:2e:b6:dd:5a:1f:94:1c:0f:a0:
79:2d:4e:ef:85:7c:8f:96:e1:db:c6:c8:3b:23:86:98:30:42:
dd:82:84:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 15 23:55:42 2025 by rpki-client