Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B1B32CD4243D11F0B3EADBE6DAE4EC9C.roa
File: B1B32CD4243D11F0B3EADBE6DAE4EC9C.roa (raw, json)
Hash identifier: vk3+CSLo6Yh/ISXJXsWqEENf/oPTU8/ktHKn4HMznzo=
Subject key identifier: 8D:CF:D6:7D:B8:2D:6D:A2:0E:75:D9:F4:DF:E5:3D:37:50:6F:2E:06
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 017C0B
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B1B32CD4243D11F0B3EADBE6DAE4EC9C.roa
Signing time: Mon 28 Apr 2025 14:33:05 +0000
ROA not before: Mon 28 Apr 2025 14:33:00 +0000
ROA not after: Fri 27 Mar 2026 14:33:00 +0000
asID: 984
IP address blocks: 154.90.25.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 12 May 2025 00:07:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 97291 (0x17c0b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 28 14:33:00 2025 GMT
Not After : Mar 27 14:33:00 2026 GMT
Subject: CN=680f91a0-da4e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:f3:06:40:8c:3c:64:9a:f8:5d:81:ee:6e:2c:
08:76:64:bd:f0:29:4f:53:a7:e9:46:f4:0d:0a:88:
cf:93:8f:36:5c:71:b2:44:ce:8c:79:e6:65:63:1f:
e6:4c:0d:03:1b:1f:43:95:88:69:8e:e4:c2:fe:a7:
40:1f:8b:f7:7b:1f:0b:6c:28:c3:e9:b7:ff:8e:87:
8f:09:61:4a:1b:28:64:03:c8:a6:46:94:8b:ea:ae:
02:f7:f4:f1:86:b9:a4:0f:08:2d:f7:b4:43:88:6e:
6c:f7:f5:93:9a:c8:eb:e2:16:7b:01:10:8a:91:17:
63:82:c3:62:15:e6:3d:20:a0:b6:09:82:58:8d:ab:
57:59:5d:d3:e0:8d:9c:e1:0d:3a:54:b6:f8:39:a6:
52:35:35:3f:1a:7d:e3:a6:25:d2:9b:99:ab:92:7f:
68:99:2d:1a:2f:18:46:f9:93:9f:92:21:55:68:f9:
4f:fb:4f:f3:40:19:60:e4:17:8e:e0:4d:37:d3:75:
ab:40:44:e4:87:d3:d3:b5:fe:20:d3:7f:eb:66:55:
1e:b7:66:67:ad:f1:2f:42:19:2b:4d:58:6d:d8:57:
c0:71:10:29:20:1a:ef:05:69:52:e1:3f:c5:72:72:
e8:06:dc:8d:92:a5:1e:fd:e8:4f:f0:a4:56:81:cc:
2d:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:CF:D6:7D:B8:2D:6D:A2:0E:75:D9:F4:DF:E5:3D:37:50:6F:2E:06
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B1B32CD4243D11F0B3EADBE6DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.90.25.0/24
Signature Algorithm: sha256WithRSAEncryption
4d:79:48:b3:56:ec:49:63:64:b7:ad:1a:b8:a8:67:da:92:9a:
78:39:f8:d6:9e:f0:41:cd:c7:c2:4b:59:78:59:d5:2d:54:c6:
96:aa:dc:90:66:d1:7f:2f:10:01:83:53:17:3c:89:55:b8:0b:
ac:f6:5f:5a:dd:f7:31:14:29:3c:fb:9c:eb:cd:75:8e:b7:36:
54:03:8d:78:74:36:07:35:ac:b0:6d:03:64:5b:38:90:36:bd:
71:2a:8b:f5:5a:d1:8b:67:a8:f4:f1:98:58:69:d5:5c:01:79:
c2:fe:c1:a8:08:1a:94:60:34:51:6e:22:6e:10:ef:cd:15:a4:
ad:6d:20:bd:cb:39:39:3b:4a:60:e4:97:86:a1:8b:ee:d4:e8:
55:3e:ea:fc:ba:1c:40:c0:cc:6a:71:8f:d1:4c:94:72:cc:51:
01:dc:cb:97:c8:47:ba:8a:59:02:a3:89:2c:a9:dd:ff:7d:4d:
f9:f7:1b:60:50:8c:52:0d:64:5e:da:8d:03:58:99:6c:0f:4c:
9e:c4:71:28:1e:c8:93:88:ec:5a:c4:48:3b:b2:cf:21:c1:11:
7e:6b:fc:97:80:9e:a6:24:84:2c:79:a9:d2:65:85:c5:ea:48:
09:6f:39:65:d0:2d:15:97:9e:c5:1e:bb:18:59:c6:bf:d5:66:
1a:b9:97:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 10 19:25:58 2025 by rpki-client