Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C36E892024D611F0B4C266EFDAE4EC9C.roa
File: C36E892024D611F0B4C266EFDAE4EC9C.roa (raw, json)
Hash identifier: QRWlWUYQKBk+F6xhcGMxglue00HhpQQHt9YANb4WiDs=
Subject key identifier: DE:DE:16:E9:23:22:DB:B9:25:E8:65:0C:18:71:27:3D:BC:E3:12:60
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 017CC9
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C36E892024D611F0B4C266EFDAE4EC9C.roa
Signing time: Tue 29 Apr 2025 08:48:47 +0000
ROA not before: Tue 29 Apr 2025 08:48:42 +0000
ROA not after: Sun 15 Jun 2025 08:48:42 +0000
asID: 138915
IP address blocks: 154.205.141.0/24 maxlen: 24
154.205.144.0/24 maxlen: 24
154.205.146.0/24 maxlen: 24
154.205.147.0/24 maxlen: 24
154.205.148.0/24 maxlen: 24
154.205.149.0/24 maxlen: 24
154.205.150.0/24 maxlen: 24
154.205.151.0/24 maxlen: 24
154.205.152.0/24 maxlen: 24
154.205.153.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 13 May 2025 00:06:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 97481 (0x17cc9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 29 08:48:42 2025 GMT
Not After : Jun 15 08:48:42 2025 GMT
Subject: CN=6810926f-1106
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:93:1c:6f:63:37:2b:04:88:9d:cc:85:1b:a9:
e7:f3:0a:47:16:ee:51:cc:7e:07:8b:d3:38:8a:9b:
e5:a8:a5:ca:5f:03:b0:8b:e1:37:b0:6a:80:93:bd:
20:d7:84:b7:51:2b:e6:90:4a:04:89:ff:5a:80:c6:
ed:4a:b0:d8:6b:d2:db:71:08:84:0c:6d:f2:57:5e:
5a:e6:11:72:54:38:30:a6:62:7e:fc:1d:19:aa:41:
58:73:84:33:16:77:70:59:fb:1a:12:f2:9b:e7:ff:
a0:e9:4a:6a:e4:8c:69:d7:07:84:3f:61:9b:da:c9:
c3:cf:07:61:ae:3f:27:ab:d8:07:da:c1:83:69:2e:
15:11:8e:4d:5d:28:7a:12:8e:d5:be:77:ff:78:aa:
e6:53:63:87:3e:d4:b3:31:63:1d:59:50:fb:b8:dd:
4e:83:f2:70:53:23:d1:5d:29:4c:77:4d:9a:4c:b7:
bb:45:18:7b:d5:97:f7:0b:4e:5d:34:f6:5d:5e:94:
e6:52:97:18:d3:79:06:29:e2:68:27:e1:b3:d0:08:
37:d7:ad:46:51:9b:e1:8b:ec:fb:01:9a:6e:c4:15:
f9:af:4f:46:78:0d:4d:fa:a5:b4:cb:29:60:2b:3c:
a1:3b:0d:25:dd:46:b3:ff:58:e9:fc:40:d3:74:ad:
0b:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:DE:16:E9:23:22:DB:B9:25:E8:65:0C:18:71:27:3D:BC:E3:12:60
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C36E892024D611F0B4C266EFDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.205.141.0/24
154.205.144.0/24
154.205.146.0-154.205.153.255
Signature Algorithm: sha256WithRSAEncryption
0b:cd:f1:f5:c1:7d:86:91:39:06:31:60:39:02:6f:0e:14:96:
02:2b:4e:9a:ec:7f:a2:91:c7:57:b4:cf:b8:2e:c1:5a:bd:46:
5b:e6:1f:c8:79:60:df:12:04:7b:22:9a:73:c1:87:0b:d2:6d:
68:de:e5:42:11:fa:cc:37:95:18:69:63:ba:5c:c5:70:55:f4:
10:94:f0:fe:4e:ed:9c:0e:d4:fd:b2:53:f3:e0:4f:9d:0e:1d:
f6:41:29:5d:ae:bb:c0:28:05:c4:cf:93:2b:be:a7:00:5b:76:
10:4a:5b:40:94:7d:79:8e:a9:95:99:df:88:91:dd:7c:f7:3f:
3f:7b:bb:d3:1b:1d:72:c6:12:ca:f4:55:e2:01:98:6d:6b:87:
6e:70:e9:40:a2:99:30:a7:f2:bf:d4:30:fc:58:8a:c5:0d:3a:
13:b4:fc:a6:c6:28:08:bd:04:1e:95:2b:36:e5:3c:f9:05:4a:
73:ca:c7:40:ef:be:2b:4e:02:02:38:65:3a:06:d0:b7:84:6b:
94:27:eb:74:f9:73:6c:49:e5:c4:55:40:07:50:1f:d8:9c:37:
36:41:cd:b1:4a:cf:63:8f:85:f2:bd:e6:03:3e:48:28:31:fc:
94:66:ef:8c:41:4c:a7:a3:9a:5a:3e:cd:02:45:8a:04:0f:c9:
0e:0e:f3:7e
-----BEGIN CERTIFICATE-----
MIIFmDCCBICgAwIBAgIDAXzJMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjUwNDI5MDg0ODQyWhcNMjUwNjE1MDg0ODQyWjAYMRYw
FAYDVQQDEw02ODEwOTI2Zi0xMTA2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAuZMcb2M3KwSIncyFG6nn8wpHFu5RzH4Hi9M4ipvlqKXKXwOwi+E3sGqA
k70g14S3USvmkEoEif9agMbtSrDYa9LbcQiEDG3yV15a5hFyVDgwpmJ+/B0ZqkFY
c4QzFndwWfsaEvKb5/+g6Upq5Ixp1weEP2Gb2snDzwdhrj8nq9gH2sGDaS4VEY5N
XSh6Eo7Vvnf/eKrmU2OHPtSzMWMdWVD7uN1Og/JwUyPRXSlMd02aTLe7RRh71Zf3
C05dNPZdXpTmUpcY03kGKeJoJ+Gz0Ag3161GUZvhi+z7AZpuxBX5r09GeA1N+qW0
yylgKzyhOw0l3Uaz/1jp/EDTdK0LqQIDAQABo4ICuTCCArUwHQYDVR0OBBYEFN7e
FukjItu5JehlDBhxJz284xJgMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9DMzZFODkyMDI0RDYxMUYwQjRDMjY2RUZEQUU0RUM5Qy5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMDMGCCsGAQUFBwEHAQH/BCQwIjAgBAIAATAaAwQAms2NAwQAms2QMAwDBAGa
zZIDBAGazZgwDQYJKoZIhvcNAQELBQADggEBAAvN8fXBfYaROQYxYDkCbw4UlgIr
Tprsf6KRx1e0z7guwVq9RlvmH8h5YN8SBHsimnPBhwvSbWje5UIR+sw3lRhpY7pc
xXBV9BCU8P5O7ZwO1P2yU/PgT50OHfZBKV2uu8AoBcTPkyu+pwBbdhBKW0CUfXmO
qZWZ34iR3Xz3Pz97u9MbHXLGEsr0VeIBmG1rh25w6UCimTCn8r/UMPxYisUNOhO0
/KbGKAi9BB6VKzblPPkFSnPKx0DvvitOAgI4ZToG0LeEa5Qn63T5c2xJ5cRVQAdQ
H9icNzZBzbFKz2OPhfK95gM+SCgx/JRm74xBTKejmlo+zQJFigQPyQ4O834=
-----END CERTIFICATE-----
Generated at Sun May 11 05:07:41 2025 by rpki-client