Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B49319F6298211F0820E0EB5DAE4EC9C.roa
File: B49319F6298211F0820E0EB5DAE4EC9C.roa (raw, json)
Hash identifier: eQU23nnxfrUH7R1W0IuFPQouvh0tlX351C/blkEAvx0=
Subject key identifier: D7:A6:0B:22:1F:14:9C:0D:AD:45:C6:38:8C:E8:7E:B7:68:47:F5:AB
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 017EE3
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B49319F6298211F0820E0EB5DAE4EC9C.roa
Signing time: Mon 05 May 2025 07:29:40 +0000
ROA not before: Mon 05 May 2025 07:29:36 +0000
ROA not after: Mon 09 Jun 2025 07:29:36 +0000
asID: 54801
IP address blocks: 154.204.0.0/24 maxlen: 24
154.208.12.0/22 maxlen: 24
154.208.16.0/20 maxlen: 24
154.212.128.0/24 maxlen: 24
154.215.0.0/24 maxlen: 24
154.218.0.0/24 maxlen: 24
154.221.0.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 17 May 2025 09:29:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 98019 (0x17ee3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 5 07:29:36 2025 GMT
Not After : Jun 9 07:29:36 2025 GMT
Subject: CN=681868e4-6f0b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:ea:1f:6f:aa:95:2c:67:07:8a:53:e1:db:8a:
46:91:5b:53:ce:86:e8:90:10:5e:04:7c:84:ac:d3:
da:60:f7:f8:23:81:17:31:5d:58:56:39:ef:f9:ac:
24:bf:91:d4:82:7a:f2:3a:cc:46:c6:55:db:01:a0:
ea:4d:f9:8a:4d:2d:14:88:23:89:b4:67:86:35:b5:
82:d4:5a:b9:ed:73:a9:a8:39:ff:36:ab:87:ca:48:
38:93:4c:cc:2b:ae:27:55:c5:24:c5:8c:35:f2:be:
c3:bf:ed:69:b8:85:16:03:15:23:58:25:5f:79:08:
32:35:65:4e:a7:9f:a6:9e:29:b1:47:34:71:b6:07:
c7:4f:4c:cc:62:07:63:8a:06:40:d3:19:72:86:a1:
68:bb:15:5b:6d:1a:74:06:ea:73:38:b2:f6:38:c3:
9f:5b:3d:bb:87:8f:6b:2b:6a:89:ef:1e:20:3b:af:
53:b7:94:e6:de:fd:7c:13:55:01:42:de:89:58:da:
4a:17:a4:35:3a:cd:6b:ad:b7:4c:4f:55:5a:40:28:
4b:c0:f1:ba:01:58:e3:0f:21:e6:b2:80:d5:3c:d9:
1d:a4:43:4d:9e:44:9e:4e:0e:8d:5b:4d:25:71:47:
07:26:fb:59:e9:15:05:2b:fc:9d:ce:4b:03:3b:6e:
18:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:A6:0B:22:1F:14:9C:0D:AD:45:C6:38:8C:E8:7E:B7:68:47:F5:AB
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B49319F6298211F0820E0EB5DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.204.0.0/24
154.208.12.0-154.208.31.255
154.212.128.0/24
154.215.0.0/24
154.218.0.0/24
154.221.0.0/24
Signature Algorithm: sha256WithRSAEncryption
54:dc:b1:c1:27:d2:e7:9b:38:92:f8:d2:6d:76:7b:1e:0f:94:
e0:25:ec:89:1a:0a:68:cc:d1:ab:52:0d:2e:b8:76:56:77:75:
a8:21:9c:a2:68:35:f0:62:a9:7c:70:ab:b4:c5:a7:6b:c7:be:
66:e2:06:9b:32:57:3f:ea:03:3b:ea:6a:4c:59:26:9e:a1:69:
17:f2:30:b4:b9:63:93:de:42:ad:37:6a:9d:94:7a:d6:9f:e4:
0b:3e:0d:63:c5:4b:f4:3c:73:32:9a:f4:65:db:37:28:10:71:
13:4d:af:1d:f8:5c:8b:49:0f:5c:7c:43:61:69:0e:64:c0:a4:
fc:65:1a:ae:1d:71:f5:77:87:44:96:54:3d:9d:57:3d:a3:8a:
5f:99:a5:a3:9e:bb:7d:ea:82:09:50:aa:94:0e:b8:6c:62:86:
99:c3:bd:cf:cb:bd:7f:ef:b8:25:19:20:3b:af:0a:87:49:f2:
fc:af:8b:33:59:b7:d2:f2:ba:b4:e7:15:e7:f4:fd:b7:19:3a:
5a:d8:04:68:af:bc:ec:97:53:d6:19:e5:2d:22:48:67:2e:22:
88:48:d1:2f:cc:1a:93:8f:ee:e5:a4:75:99:12:08:cf:48:c7:
96:91:c2:1b:71:59:71:32:22:fd:c9:50:ec:37:7e:26:60:dd:
e8:d5:e7:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 15 23:55:55 2025 by rpki-client