Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9B2EC6C22FF411F0AEDE9DCDDAE4EC9C.roa
File: 9B2EC6C22FF411F0AEDE9DCDDAE4EC9C.roa (raw, json)
Hash identifier: zS+mfDbnTnB68uwGcIwtnx8Xx26EcopECiXmWdMcjFw=
Subject key identifier: B1:5C:CE:59:F1:D9:8D:61:09:2D:8E:A2:48:29:5B:C6:77:CC:13:C1
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 018064
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9B2EC6C22FF411F0AEDE9DCDDAE4EC9C.roa
Signing time: Tue 13 May 2025 12:20:07 +0000
ROA not before: Tue 13 May 2025 12:20:02 +0000
ROA not after: Thu 19 Jun 2025 12:20:02 +0000
asID: 14315
IP address blocks: 154.92.1.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 17 May 2025 09:29:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 98404 (0x18064)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 13 12:20:02 2025 GMT
Not After : Jun 19 12:20:02 2025 GMT
Subject: CN=682338f7-c511
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:95:19:61:97:c4:c7:cb:66:a1:75:95:eb:c9:
c8:58:26:ce:e1:be:b0:95:ef:1d:b5:86:6f:dc:90:
eb:fc:7d:7a:b5:5b:e9:e4:06:d5:eb:5d:16:93:e0:
92:5e:9f:80:d3:63:ee:8c:d9:1f:f2:c2:31:b6:ff:
bc:82:85:e2:9f:98:f4:63:2f:c0:f3:e5:07:51:85:
b1:6e:00:b4:f2:06:e8:13:88:3b:72:f5:8d:5a:91:
aa:28:04:0a:c9:47:c4:cd:d2:02:9c:8e:e8:50:ab:
84:bf:f8:ec:32:0f:1a:48:1b:f7:df:2c:56:ed:9f:
07:b1:09:61:be:78:c3:02:62:a3:fc:69:41:c1:2c:
36:61:07:0c:7e:1a:a3:b9:9f:b3:a5:bd:09:fb:67:
f0:ab:13:56:0f:55:6f:16:43:3c:71:da:54:77:73:
fb:3e:46:18:ff:ad:1e:47:45:02:48:4d:0c:c9:e4:
d0:5c:86:ff:1e:3d:42:43:51:1d:5b:25:df:6b:c0:
e0:57:96:3a:8d:cc:b9:db:e4:7f:1a:cf:28:ec:a1:
39:bc:ed:9b:64:3d:2c:28:79:53:e1:97:30:82:02:
46:6b:0e:36:52:53:8c:cc:5f:05:6b:d7:f1:46:ef:
d6:f0:34:39:65:08:89:69:ac:f0:9f:c8:98:fd:9d:
f1:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:5C:CE:59:F1:D9:8D:61:09:2D:8E:A2:48:29:5B:C6:77:CC:13:C1
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9B2EC6C22FF411F0AEDE9DCDDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.92.1.0/24
Signature Algorithm: sha256WithRSAEncryption
b4:d8:74:7b:ad:5a:73:2b:ab:31:17:30:dd:56:c7:39:6e:cf:
17:12:9b:59:d8:fa:95:10:42:6a:18:db:64:57:e4:3b:6e:4a:
63:ab:78:53:2a:0a:ba:03:54:cf:7d:a8:4c:ca:c2:e6:91:c5:
aa:ca:dd:f7:fa:fa:6a:36:09:de:b1:ef:ef:5c:6b:90:79:9e:
8f:2d:92:36:62:67:ab:f1:02:f5:17:0b:56:d9:4a:45:17:76:
25:9e:2f:9c:29:c1:47:2b:f3:f1:30:50:4c:92:6a:30:d2:b9:
df:ad:fe:e2:a1:d0:8e:38:07:cc:dd:29:8b:68:73:23:dd:e1:
6a:28:c0:39:cf:16:6e:e3:80:d4:94:00:e7:4f:6f:de:f3:f9:
d7:b9:dd:bd:57:d9:85:c6:a8:81:76:43:cf:e0:a8:c7:0a:aa:
08:5c:77:7b:28:d3:b9:a5:aa:21:a0:ff:76:62:04:42:7f:00:
2f:70:2f:f8:67:a6:d4:33:51:85:c3:42:f5:38:87:0a:a4:a1:
bc:cd:8c:26:24:82:89:aa:a7:f0:d3:e0:ff:d6:a1:45:b5:2b:
0d:63:ee:a9:21:22:e6:bc:32:f9:42:d1:05:7a:3f:01:4b:66:
32:f1:34:9b:8a:db:47:39:54:a1:1a:9d:b9:5e:cf:81:10:b2:
26:3d:20:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 15 23:51:14 2025 by rpki-client