Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/93EEFE7E25C511F0BACF6AAADAE4EC9C.roa
File: 93EEFE7E25C511F0BACF6AAADAE4EC9C.roa (raw, json)
Hash identifier: 45cNn1lt0SQYzV7+KnJE0TWM6jfbnUN/9oyBa1fnA80=
Subject key identifier: 29:49:BB:72:5A:DD:43:AE:F6:35:64:FA:ED:B8:32:70:72:C2:11:C9
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 017D76
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/93EEFE7E25C511F0BACF6AAADAE4EC9C.roa
Signing time: Wed 30 Apr 2025 13:18:17 +0000
ROA not before: Wed 30 Apr 2025 13:18:13 +0000
ROA not after: Tue 28 Apr 2026 13:18:13 +0000
asID: 984
IP address blocks: 154.80.132.0/24 maxlen: 24
154.80.133.0/24 maxlen: 24
154.80.134.0/24 maxlen: 24
154.80.135.0/24 maxlen: 24
154.80.136.0/24 maxlen: 24
154.80.137.0/24 maxlen: 24
154.80.138.0/24 maxlen: 24
154.80.139.0/24 maxlen: 24
154.80.140.0/24 maxlen: 24
154.80.141.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 12 May 2025 00:07:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 97654 (0x17d76)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 30 13:18:13 2025 GMT
Not After : Apr 28 13:18:13 2026 GMT
Subject: CN=68122319-00d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:6e:47:da:26:58:5f:97:23:1c:50:76:d7:70:
8b:cd:c7:04:02:f7:17:2d:78:de:94:86:89:2a:41:
e4:27:7d:20:d8:af:d8:71:b6:0c:32:b2:26:47:b5:
51:bb:aa:0a:0f:d4:25:f4:1d:29:68:8f:c1:3e:e8:
53:2c:40:76:52:8f:16:25:f0:d3:27:2b:01:0b:b9:
7b:91:0e:c1:9c:ef:e8:8a:d5:f1:ae:9c:26:63:e5:
f4:f0:45:1f:4e:3c:ef:f9:0c:14:ab:5d:da:d7:83:
a1:84:38:4e:da:09:69:27:69:a0:e1:7c:83:f1:2f:
79:79:ac:ca:92:80:5f:1d:e4:65:33:1a:86:bd:1f:
2d:5f:c3:97:e3:9b:a2:2a:87:4d:95:37:95:d3:2a:
ed:48:0c:aa:ac:7c:8c:91:4c:9f:56:4d:29:01:4a:
c4:11:6e:35:5e:d2:b1:fa:77:2c:77:ea:f2:f4:02:
92:e8:de:f3:a4:36:e2:05:1b:cd:ba:84:09:29:fb:
80:69:08:00:54:36:a4:d4:6c:e1:47:d1:dc:ad:36:
04:a6:0d:4d:68:d2:a1:e1:36:5e:25:5e:8b:f0:66:
28:39:e5:da:c0:d2:60:df:14:b2:0f:7c:fb:ef:44:
df:89:b2:a6:6b:16:78:96:a5:f8:90:79:84:3a:1f:
ce:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:49:BB:72:5A:DD:43:AE:F6:35:64:FA:ED:B8:32:70:72:C2:11:C9
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/93EEFE7E25C511F0BACF6AAADAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.80.132.0-154.80.141.255
Signature Algorithm: sha256WithRSAEncryption
16:1f:cc:4c:75:e9:de:81:42:63:58:c5:eb:8c:55:c6:a8:ad:
29:c1:ac:42:7c:dd:b4:e8:36:83:94:09:be:d2:f4:e9:c2:d0:
e9:87:38:02:b0:54:b0:05:9d:f8:12:be:30:34:16:f3:4d:75:
c7:39:e6:2c:d6:bd:35:2f:05:7d:12:ba:e0:27:71:aa:a1:8f:
c1:fa:b7:9d:4d:ef:03:89:26:3f:43:fb:a3:1f:db:bf:5f:a2:
44:14:4a:5e:77:65:34:5d:d6:da:1c:55:6d:ea:38:72:36:0d:
69:34:a1:df:66:de:27:a8:56:98:6c:68:50:01:33:4f:99:f5:
91:60:9a:10:5f:48:4c:82:b7:3a:ba:88:c3:63:98:7e:1d:fe:
ea:c3:db:76:1b:92:47:5f:15:75:9a:1a:61:fe:e3:a9:89:9c:
a6:d3:ad:69:aa:c0:c4:6f:c1:54:67:ba:e2:16:80:3e:85:b1:
6c:2a:fe:95:0a:58:c8:41:7d:2d:1e:69:79:b6:b2:93:0c:9c:
c2:e7:4e:fd:a4:ca:cb:1d:88:f3:52:bc:9a:30:c6:fb:c2:1e:
c4:46:cf:e9:35:da:69:d9:93:e7:7c:eb:09:ed:96:d7:51:19:
86:ba:57:0a:0c:f2:f4:b9:27:20:a6:08:6d:56:fa:e5:a0:a8:
97:71:cc:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 10 03:49:55 2025 by rpki-client