Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C350BA882B1D11F0966B28F1DAE4EC9C.roa
File: C350BA882B1D11F0966B28F1DAE4EC9C.roa (raw, json)
Hash identifier: EAfKfrwkMBiHFOsaGtDMoIagGkhSXtf5gFxtj6ekRTk=
Subject key identifier: 56:5E:C7:E2:F6:B7:11:C7:1D:8F:60:D7:3B:3C:84:9D:39:14:05:FF
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 017F47
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C350BA882B1D11F0966B28F1DAE4EC9C.roa
Signing time: Wed 07 May 2025 08:32:08 +0000
ROA not before: Wed 07 May 2025 08:32:03 +0000
ROA not after: Wed 11 Jun 2025 08:32:03 +0000
asID: 60223
IP address blocks: 154.81.179.0/24 maxlen: 24
154.81.182.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 17 May 2025 09:29:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 98119 (0x17f47)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 7 08:32:03 2025 GMT
Not After : Jun 11 08:32:03 2025 GMT
Subject: CN=681b1a88-854f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:53:f3:c4:df:ce:ee:29:ec:61:a1:aa:64:2c:
93:42:01:d3:da:a9:02:83:fa:14:8f:b1:b9:be:9c:
6c:b6:4b:73:e6:ee:17:fd:ac:79:48:bd:bd:ed:23:
21:7b:99:35:49:1e:f9:69:bd:6e:c0:b3:54:23:4b:
98:f6:fa:95:a8:4a:30:05:de:dd:16:a6:85:f4:8f:
c4:f4:24:f2:82:b5:9e:cc:35:88:47:dd:25:14:d6:
6d:06:b5:9b:de:12:f4:ca:04:0a:ff:b1:45:77:76:
fb:17:c5:e3:14:13:1f:37:8c:6d:56:10:c2:0f:7e:
7d:14:68:49:67:1c:89:e8:a3:13:0b:cc:eb:e2:2e:
bb:0d:08:6c:99:ca:08:d9:07:a1:0c:d8:48:fc:ed:
63:b8:d6:25:45:81:68:8b:4e:a6:b2:e9:9f:c7:27:
7e:29:a6:9b:66:7d:88:97:6a:cb:e7:25:45:4b:db:
12:b4:7b:86:9b:a8:68:bb:c7:7f:26:af:91:7d:78:
11:d1:7a:9f:9d:db:5c:50:79:cb:90:d6:53:57:1b:
34:e6:8d:6a:8e:d1:de:74:83:71:79:75:b4:0c:bf:
81:2e:a1:b6:d1:4e:e3:2f:9e:fb:b3:3c:48:ad:8a:
3f:e5:c5:ad:8e:8d:84:fa:82:2f:c9:93:cd:5c:21:
c6:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:5E:C7:E2:F6:B7:11:C7:1D:8F:60:D7:3B:3C:84:9D:39:14:05:FF
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C350BA882B1D11F0966B28F1DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.81.179.0/24
154.81.182.0/24
Signature Algorithm: sha256WithRSAEncryption
bf:b2:7d:a0:c3:05:41:b7:ea:96:27:ee:78:ab:3d:01:c3:0d:
ff:82:a8:98:5a:eb:c2:fb:e3:f7:8a:a9:d3:b6:7a:b1:06:4c:
3c:a5:3f:21:e4:cc:da:cc:64:ba:5d:20:0d:7a:7e:e6:b5:fe:
26:7b:10:33:56:4c:95:25:ca:60:37:34:6f:6d:f3:b0:be:64:
b1:9d:63:33:04:b4:d3:d1:48:f7:bd:ac:45:9e:b9:51:98:f9:
00:c3:ed:c7:e4:8a:93:f1:d2:39:ca:22:b3:f4:c0:58:31:23:
b6:bb:99:c7:bf:59:28:61:61:95:ab:e2:6b:8f:18:27:ff:84:
37:52:47:8d:d5:e6:eb:9b:68:ff:14:04:fc:c2:04:6c:67:6e:
07:c5:ba:3a:ec:c7:59:a4:b0:66:60:7e:b9:27:9a:78:fb:f8:
28:ce:b0:5a:63:a4:58:27:be:94:82:89:c8:5e:1a:14:75:8b:
40:76:ba:7c:5d:42:f4:1a:28:d4:bb:00:27:9f:12:43:c2:05:
6a:62:39:a9:2a:ef:e4:f5:08:d2:75:86:17:9d:22:5c:46:e2:
bf:09:c7:28:44:b7:c0:16:26:47:a1:45:7e:5c:c5:1a:4a:f2:
32:42:53:55:4d:a3:e0:8d:42:5d:0d:ec:85:8a:ff:62:29:65:
63:c4:72:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 15 23:51:21 2025 by rpki-client