Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B331082425C311F086C93B9DDAE4EC9C.roa
File: B331082425C311F086C93B9DDAE4EC9C.roa (raw, json)
Hash identifier: xsx3CFyxQOjQGXQAgyKXlXAQGEggdQ6XBiDIE7IHNeI=
Subject key identifier: 45:24:12:59:B9:8C:8B:40:F6:43:7C:87:32:5C:AC:DE:74:3C:AC:AB
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 017D72
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B331082425C311F086C93B9DDAE4EC9C.roa
Signing time: Wed 30 Apr 2025 13:04:51 +0000
ROA not before: Wed 30 Apr 2025 13:04:46 +0000
ROA not after: Sun 26 Apr 2026 13:04:46 +0000
asID: 984
IP address blocks: 154.91.129.0/24 maxlen: 24
154.91.130.0/24 maxlen: 24
154.91.131.0/24 maxlen: 24
154.91.132.0/24 maxlen: 24
154.91.133.0/24 maxlen: 24
154.91.134.0/24 maxlen: 24
154.91.135.0/24 maxlen: 24
154.93.16.0/24 maxlen: 24
154.94.33.0/24 maxlen: 24
154.94.38.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 10 May 2025 00:07:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 97650 (0x17d72)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 30 13:04:46 2025 GMT
Not After : Apr 26 13:04:46 2026 GMT
Subject: CN=68121ff3-0ba7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:c3:48:e6:9c:80:12:5f:fb:d6:6b:ab:ea:71:
0f:b7:86:6d:5c:c7:db:81:9b:9a:2e:fc:8c:bf:20:
33:55:c7:e8:c8:68:c6:ea:dd:24:0e:ee:29:f9:1f:
2c:3d:a4:13:66:28:0b:cf:d6:ae:97:30:c9:f8:21:
8b:1d:59:29:e0:c5:b0:69:fa:7c:42:82:70:9d:33:
9e:c4:1a:6e:59:04:90:92:fc:21:b5:1e:3c:19:6b:
64:77:3a:83:c8:2f:97:5c:79:27:6e:bf:a4:bd:80:
ca:5e:32:cd:f5:9a:72:5d:d2:73:17:6e:45:9a:78:
31:c1:6f:b3:d3:fe:aa:da:e5:32:ae:35:f8:d0:a9:
d2:f1:ec:46:56:8b:8a:a4:ac:d2:5f:55:27:e6:6f:
a2:65:2c:33:cd:29:6f:8f:5b:79:b9:9f:8c:a0:d3:
db:30:52:27:e9:70:52:f1:98:be:ed:62:a2:c4:83:
2f:0e:2a:32:a6:8c:75:ae:f7:e5:20:fb:a0:92:00:
df:65:65:d8:d6:6e:47:88:35:24:52:bc:61:9a:b7:
59:4f:31:27:14:41:be:02:27:4a:1e:7a:f2:be:74:
47:ac:11:b0:ff:fd:99:cf:eb:70:41:f8:49:26:b9:
ea:14:0e:be:08:8c:30:9a:ce:29:5f:70:79:6a:79:
ec:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:24:12:59:B9:8C:8B:40:F6:43:7C:87:32:5C:AC:DE:74:3C:AC:AB
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B331082425C311F086C93B9DDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.91.129.0-154.91.135.255
154.93.16.0/24
154.94.33.0/24
154.94.38.0/24
Signature Algorithm: sha256WithRSAEncryption
3e:50:04:9e:ed:17:19:7f:83:d6:bf:c0:0d:47:3c:1e:af:74:
92:4d:05:9f:8c:fa:03:41:3c:1f:e2:60:1e:09:82:b0:9c:6d:
34:73:69:fa:e5:81:31:34:ad:f8:14:3e:d6:46:89:67:ea:4a:
ba:7b:8d:6e:fe:48:66:4d:d0:fe:0d:4e:6d:37:fe:49:72:db:
21:2a:b6:94:ca:f3:67:cb:44:39:08:ef:7a:c0:a8:ab:7d:2a:
d9:0c:8c:0c:a4:b4:90:f2:77:8d:ac:97:6f:f9:0c:42:e0:ce:
b6:ac:64:56:0f:c4:86:8b:e6:31:b4:9e:7b:77:4f:c5:f6:33:
4c:2e:4e:45:23:d8:07:c9:dd:5f:ff:46:c4:6d:ae:64:d6:c5:
2a:66:85:e0:6b:9b:5c:a6:12:9d:7d:e1:fc:98:f0:86:03:3a:
d2:a7:62:e8:8f:d5:5d:28:76:81:59:dc:37:f1:11:06:75:b9:
71:39:42:48:9b:0b:f7:18:98:f1:4c:20:e7:c8:c5:52:6c:6b:
b4:41:c3:61:46:eb:c6:ba:50:68:15:e1:87:ad:9b:cb:80:bd:
34:8d:80:0b:50:fb:9c:2e:87:50:60:b3:48:ea:f0:81:56:46:
4e:26:66:ce:c1:74:57:a6:ac:c0:15:7b:ef:e9:d5:09:51:25:
55:39:fe:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 8 14:35:14 2025 by rpki-client