Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A4F0AAD8274611F0BD5241BFDAE4EC9C.roa
File: A4F0AAD8274611F0BD5241BFDAE4EC9C.roa (raw, json)
Hash identifier: 80ZWLHbZW7aVmujFM86sXX1Z2MJeYLZiMl/OT85S8/E=
Subject key identifier: E1:FC:16:99:D0:CE:3F:6E:2E:04:D8:91:AB:71:EB:1F:91:BD:51:57
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 017E76
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A4F0AAD8274611F0BD5241BFDAE4EC9C.roa
Signing time: Fri 02 May 2025 11:14:42 +0000
ROA not before: Fri 02 May 2025 11:14:37 +0000
ROA not after: Wed 31 Dec 2025 11:14:37 +0000
asID: 329478
IP address blocks: 154.214.232.0/24 maxlen: 24
154.214.233.0/24 maxlen: 24
154.214.234.0/24 maxlen: 24
154.214.235.0/24 maxlen: 24
154.214.236.0/24 maxlen: 24
154.214.237.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 17 May 2025 09:29:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 97910 (0x17e76)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 2 11:14:37 2025 GMT
Not After : Dec 31 11:14:37 2025 GMT
Subject: CN=6814a922-e789
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:b9:b7:d2:c6:65:b6:16:58:85:8d:d7:c7:7a:
ee:24:09:d4:ab:2a:76:b0:4a:0b:73:6f:5b:c1:3b:
43:35:6c:49:56:f1:83:eb:e9:9e:1b:97:2f:70:18:
49:5f:c2:6c:3b:e4:91:69:44:4c:32:98:59:2c:b2:
7e:5d:05:44:ed:34:d2:87:ca:30:9a:c2:12:a2:e4:
be:10:be:5d:b5:0c:fa:12:a2:c5:e8:95:b4:fe:2a:
f1:e6:de:93:62:f4:4f:86:9a:17:5d:a0:f5:cd:2b:
c7:d7:63:80:c6:a2:56:2f:e3:ce:15:e8:4e:ba:a1:
f2:c6:8e:34:6b:cb:0d:4c:7c:fb:23:1d:b0:53:1c:
2c:dc:6c:b2:4b:a5:4a:42:cd:69:45:14:61:35:d7:
c4:11:cd:3c:a5:c2:bb:51:3c:db:a4:65:d8:27:5c:
a3:80:35:27:68:76:ce:26:12:a6:2e:6f:e4:fa:f1:
4f:49:66:49:69:4f:1d:c0:2e:ee:ff:09:66:db:05:
9d:c9:d0:52:20:88:f3:bb:96:0c:bc:7c:2a:67:85:
0a:ed:bf:bb:45:48:39:05:34:13:88:d2:d6:af:ad:
89:16:58:d0:87:c2:20:03:c3:f5:87:e7:be:26:bb:
5d:7b:f7:db:14:46:3a:2d:9c:51:cf:90:f3:a6:7c:
e5:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:FC:16:99:D0:CE:3F:6E:2E:04:D8:91:AB:71:EB:1F:91:BD:51:57
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A4F0AAD8274611F0BD5241BFDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.214.232.0-154.214.237.255
Signature Algorithm: sha256WithRSAEncryption
24:41:ed:fd:ba:bb:a6:55:f8:29:1e:5c:b9:be:3d:c4:dd:8d:
ab:98:26:56:d4:12:63:15:7d:45:8c:85:84:45:8a:d4:85:e4:
19:cc:d6:70:32:d1:6c:74:89:d7:bc:ba:9d:10:de:99:ec:5c:
da:d9:76:06:7f:63:8e:bf:d9:ce:68:12:6e:68:70:6e:56:38:
43:ed:a3:3f:fc:37:4c:a0:13:36:91:03:87:0e:70:1e:3e:b1:
3c:31:77:fd:f2:34:43:41:55:06:c0:4b:fe:26:6c:dc:59:61:
fc:8b:06:72:34:06:7b:36:97:42:eb:c6:1b:99:73:aa:2c:59:
85:f8:32:18:a4:e3:50:c9:b9:09:7f:7b:81:9c:f5:74:ea:71:
ad:e2:d5:82:c1:a3:cd:68:9b:49:93:ad:4d:67:11:9d:ba:8e:
24:22:38:3e:b2:b8:b3:76:87:96:5f:4d:ae:b8:f1:f6:77:ab:
a6:61:14:2d:b7:10:d0:c4:52:4e:d4:c9:b5:b4:1e:1a:10:e1:
8b:f1:a3:be:25:84:c4:6f:56:72:7c:bf:bc:0c:33:27:f9:9f:
55:a4:a2:57:c4:21:f8:dd:41:fc:eb:8d:ee:8f:77:db:c3:c3:
b9:85:28:82:aa:98:ee:b0:11:36:c9:58:22:5c:a8:74:cd:bc:
dd:be:bf:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 15 23:49:19 2025 by rpki-client