Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BCE49E82272E11F08F6ECD9FDAE4EC9C.roa
File: BCE49E82272E11F08F6ECD9FDAE4EC9C.roa (raw, json)
Hash identifier: A/e+T0CN8VDzoTLGvtCb80+YQsT6zj7fKEC1AZUYypA=
Subject key identifier: 09:33:97:A5:A0:E9:B8:07:6E:49:D4:72:01:B3:C0:66:71:F7:B5:F3
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 017E46
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BCE49E82272E11F08F6ECD9FDAE4EC9C.roa
Signing time: Fri 02 May 2025 08:23:34 +0000
ROA not before: Fri 02 May 2025 08:23:29 +0000
ROA not after: Sun 08 Jun 2025 08:23:29 +0000
asID: 272092
IP address blocks: 154.83.29.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 17 May 2025 09:29:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 97862 (0x17e46)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 2 08:23:29 2025 GMT
Not After : Jun 8 08:23:29 2025 GMT
Subject: CN=68148106-c413
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:da:94:0c:b7:08:16:91:28:f5:20:e9:a7:f1:
a8:e9:16:1c:a1:22:38:59:39:39:fe:73:cd:d6:7c:
a6:52:62:1f:b6:6f:f1:c1:ee:2b:21:29:be:9a:7c:
6f:31:8e:cf:35:b6:99:8a:b1:d5:fe:7a:1d:d2:94:
09:d4:8b:5c:22:94:ed:f0:ae:c1:40:ed:df:1f:80:
d8:25:83:e1:d4:d0:16:f0:7a:cb:4f:a0:1a:24:0b:
38:bb:2c:77:34:b7:8a:98:3c:8d:65:83:7f:c9:6a:
aa:2b:1b:39:d3:48:93:13:d1:82:f8:33:c8:c1:b6:
7a:a7:1f:eb:be:db:03:93:57:1d:29:76:b1:69:b0:
f9:87:a0:f6:ef:e4:fd:0a:77:90:63:82:05:c4:9b:
74:a0:ad:58:35:52:d6:92:0d:b5:cd:03:8f:8b:2c:
02:27:10:6c:19:2a:dd:26:f5:51:2b:52:6c:4a:1d:
b9:05:10:bb:08:9a:b1:ef:7a:ce:73:1b:bd:99:eb:
41:aa:94:65:01:b7:61:b8:23:4b:64:9b:e6:ec:22:
d9:bf:a0:20:5c:1c:e2:5b:71:87:3a:e7:09:f5:5a:
d0:cb:c8:f0:a1:73:af:c6:2c:07:06:cd:81:88:c4:
81:4d:b9:ed:03:9f:1c:2e:09:7a:b6:63:b1:13:2b:
6e:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:33:97:A5:A0:E9:B8:07:6E:49:D4:72:01:B3:C0:66:71:F7:B5:F3
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BCE49E82272E11F08F6ECD9FDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.83.29.0/24
Signature Algorithm: sha256WithRSAEncryption
14:7e:72:3d:27:d0:4e:2c:1a:32:3a:a0:d0:dd:82:8b:ee:ee:
c7:4b:ca:b0:75:9f:c7:46:4b:15:bb:b2:9a:9d:a2:5a:28:61:
9c:66:ce:91:ee:a7:9b:9c:51:c9:14:34:b2:8c:25:4d:a5:d0:
3b:b5:b9:6c:62:fd:fc:7a:56:b5:7b:ef:14:ad:22:b5:49:df:
d9:77:62:15:43:66:4d:5d:47:2e:2c:13:6d:43:b4:85:23:5d:
43:2e:c4:f6:75:d1:49:d5:87:4b:56:c8:c3:2f:9b:4c:4a:a5:
f2:4e:25:a8:4a:4e:5f:7d:5a:0f:85:f4:a9:2b:54:66:9a:69:
e2:df:1d:29:44:94:e8:fd:94:08:dc:ee:3f:33:92:3c:04:4c:
11:53:dc:76:89:23:a0:b1:f6:ad:d6:55:0a:5c:c3:a1:8d:83:
6d:6f:9a:a2:cb:52:7f:79:a1:a8:c6:22:b4:fb:83:fe:69:34:
f7:23:5a:65:13:54:e2:ec:34:06:38:42:be:76:a7:f2:f7:7a:
e1:20:e9:a8:a5:c9:c6:c2:e7:cc:3a:65:15:90:0c:fe:31:de:
2d:14:7d:01:41:fd:bc:4d:a7:45:ae:31:b8:26:5a:77:37:f6:
dd:05:32:8d:c0:fd:a4:d0:f0:ac:49:3f:a1:94:4b:e5:a3:53:
6a:56:2e:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 15 23:45:50 2025 by rpki-client