Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BEACB6B0265111F0A89488DCDAE4EC9C.roa
File: BEACB6B0265111F0A89488DCDAE4EC9C.roa (raw, json)
Hash identifier: 3Cd/uMA4y5t4JHMn7FSQDpK6s1zz7yB43q0W40ohCu8=
Subject key identifier: 32:A6:C1:08:B3:90:27:B5:DB:1E:F3:AD:0D:37:0A:35:58:81:FC:2D
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 017DB0
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BEACB6B0265111F0A89488DCDAE4EC9C.roa
Signing time: Thu 01 May 2025 06:01:38 +0000
ROA not before: Thu 01 May 2025 06:01:34 +0000
ROA not after: Tue 28 Apr 2026 06:01:34 +0000
asID: 984
IP address blocks: 154.221.142.0/24 maxlen: 24
154.221.143.0/24 maxlen: 24
154.221.144.0/24 maxlen: 24
154.221.145.0/24 maxlen: 24
154.221.146.0/24 maxlen: 24
154.221.147.0/24 maxlen: 24
154.221.148.0/24 maxlen: 24
154.221.149.0/24 maxlen: 24
154.221.150.0/24 maxlen: 24
154.221.151.0/24 maxlen: 24
154.221.152.0/24 maxlen: 24
154.221.153.0/24 maxlen: 24
154.221.154.0/24 maxlen: 24
154.221.155.0/24 maxlen: 24
154.221.156.0/24 maxlen: 24
154.221.157.0/24 maxlen: 24
154.221.158.0/24 maxlen: 24
154.221.159.0/24 maxlen: 24
154.221.160.0/24 maxlen: 24
154.221.161.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 10 May 2025 00:07:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 97712 (0x17db0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 1 06:01:34 2025 GMT
Not After : Apr 28 06:01:34 2026 GMT
Subject: CN=68130e42-b1a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:2f:c6:98:32:7b:b2:6c:33:a3:08:18:84:69:
50:b8:59:5a:80:43:7c:a3:6b:a8:30:01:8d:c9:b6:
e7:88:51:88:6b:6e:0a:20:31:b4:ba:7d:2c:4d:1e:
dc:99:e1:2e:9f:ec:d1:90:9a:eb:3a:a6:96:c6:85:
f6:f4:e5:13:80:b7:5f:34:54:eb:d2:be:7a:e9:c2:
f6:06:9f:e6:20:75:49:01:fb:ca:ee:93:1a:85:9b:
64:69:da:b4:96:e7:b5:a1:6c:37:e2:dd:91:53:6a:
6f:12:3a:da:76:f5:d6:06:ef:a2:64:7b:bd:38:99:
00:53:fd:6d:4d:e0:4d:e3:4b:d6:ee:38:82:90:6e:
3c:e7:5e:78:eb:f4:95:d0:50:96:3a:08:9b:2c:a0:
cc:a7:48:3e:54:0b:cd:5b:5f:33:f9:e0:fe:2b:40:
16:be:4f:7f:46:57:7a:60:b7:76:46:19:93:bf:cb:
af:55:d0:05:53:ad:07:30:59:86:f9:3f:8a:ef:02:
ab:c2:d8:cc:d5:08:50:ea:6f:bf:86:ad:f3:d2:3a:
25:04:b0:e9:f6:61:5c:84:74:43:66:2e:8c:df:25:
cd:4d:69:f9:c5:86:72:f9:d3:74:a8:7b:06:f6:0f:
22:8c:81:b8:56:ca:a9:fc:67:89:23:28:16:0e:a3:
4d:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:A6:C1:08:B3:90:27:B5:DB:1E:F3:AD:0D:37:0A:35:58:81:FC:2D
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BEACB6B0265111F0A89488DCDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.221.142.0-154.221.161.255
Signature Algorithm: sha256WithRSAEncryption
70:fd:a5:84:bf:7b:32:fb:ea:2d:f7:6b:70:ea:9b:3c:e1:82:
20:ff:61:24:63:6f:fc:66:bf:04:8a:2a:fa:31:91:8a:48:e4:
9a:78:9d:9f:b6:37:9f:af:a7:ae:bb:af:f1:e3:33:bc:33:07:
c7:df:ac:87:4c:74:8e:b8:2f:6f:4a:e2:77:d5:c3:20:89:8d:
9b:0d:80:41:e5:34:60:e1:7c:87:05:84:00:27:af:a3:fc:a8:
f8:4d:ce:29:4f:2a:e8:1b:fe:ad:41:37:d0:94:72:8c:d0:61:
38:22:df:60:01:13:c6:94:b3:26:90:72:a9:4b:f1:44:3e:84:
6d:72:76:80:76:f0:37:b9:71:57:f7:28:38:5d:ff:95:bc:4b:
cd:f7:15:af:9f:b3:df:51:ee:ab:ad:74:72:02:2e:33:41:c1:
fb:9e:bd:45:7c:96:62:90:6a:e8:02:96:3c:b9:58:b4:34:fe:
8c:c0:61:fc:70:2b:ef:3b:aa:a1:96:ae:c2:fe:e0:bd:0f:5a:
5b:d8:5a:60:9b:c8:3c:52:fd:55:54:16:1b:44:25:38:2e:6a:
8b:5b:fb:f4:01:23:75:90:02:b2:bf:b2:7f:6d:40:b1:49:af:
2a:e6:3c:ff:f9:ae:54:be:19:02:45:48:f9:04:29:91:44:74:
c8:61:8b:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 8 07:30:16 2025 by rpki-client