Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C968C7CA261911F08FC242D4DAE4EC9C.roa
File: C968C7CA261911F08FC242D4DAE4EC9C.roa (raw, json)
Hash identifier: rXZTKZo/p21m8ww0yzlM6jyITMght/JchasdaMFanSU=
Subject key identifier: 8D:95:75:E8:BC:1C:AB:DA:7B:EE:21:D5:0C:72:68:93:4B:36:EF:3B
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 017D9B
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C968C7CA261911F08FC242D4DAE4EC9C.roa
Signing time: Wed 30 Apr 2025 23:21:05 +0000
ROA not before: Wed 30 Apr 2025 23:21:00 +0000
ROA not after: Fri 14 Apr 2028 23:21:00 +0000
asID: 17561
IP address blocks: 154.85.145.0/24 maxlen: 24
154.85.146.0/24 maxlen: 24
154.85.147.0/24 maxlen: 24
154.85.148.0/24 maxlen: 24
154.85.149.0/24 maxlen: 24
154.85.150.0/24 maxlen: 24
154.85.151.0/24 maxlen: 24
154.85.152.0/24 maxlen: 24
154.85.153.0/24 maxlen: 24
154.85.154.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 09 May 2025 00:06:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 97691 (0x17d9b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 30 23:21:00 2025 GMT
Not After : Apr 14 23:21:00 2028 GMT
Subject: CN=6812b061-5015
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:c9:82:95:5e:9e:73:29:44:62:7d:b4:17:0a:
6d:bd:59:71:30:6e:32:a3:17:44:31:f8:dd:a6:e0:
34:8a:b2:0b:b8:9d:44:35:f4:0a:05:44:a1:c4:32:
42:b8:52:5b:c4:23:db:ef:03:3f:37:ff:79:c1:9e:
d4:c7:9e:d9:4d:7f:ab:f9:c3:fe:62:d2:ef:c9:85:
74:37:2f:28:b2:ba:4e:6f:f9:e2:b6:83:11:ff:03:
d5:13:9f:79:af:07:96:9e:53:77:7b:ba:7a:7b:ca:
25:e6:05:0d:b5:f0:35:df:f8:f4:dc:a3:23:81:e4:
90:0a:4e:d1:30:26:0a:22:90:3c:16:7a:ed:e9:cf:
e8:12:3a:8a:61:0e:cb:68:56:37:c0:2b:14:c2:fd:
d3:a3:11:0f:d7:cd:74:7e:fb:05:08:83:79:5e:e0:
04:2b:f8:a3:72:19:10:f3:44:15:f0:b3:6e:5a:2e:
f5:48:f5:93:76:06:b2:40:c7:db:d2:7c:10:c9:ea:
61:03:23:83:1a:83:b7:d9:02:47:74:e3:6e:75:e9:
86:74:b4:08:c6:bf:7a:4b:98:45:7f:c8:d9:f2:0d:
0e:4b:14:3b:ef:4f:74:7c:cd:7e:d7:15:04:53:f9:
d7:1c:fa:9d:11:b9:81:c3:7b:f1:b9:3c:d1:3d:f0:
6b:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:95:75:E8:BC:1C:AB:DA:7B:EE:21:D5:0C:72:68:93:4B:36:EF:3B
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C968C7CA261911F08FC242D4DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.85.145.0-154.85.154.255
Signature Algorithm: sha256WithRSAEncryption
44:c8:61:37:c9:89:9a:00:13:80:bc:20:a5:f6:dd:ae:29:a8:
35:bc:37:3c:e7:89:e5:ac:ea:8f:4f:39:8b:15:dc:27:72:17:
1e:41:42:28:9e:15:6d:14:2a:fa:55:ea:16:3c:0c:a0:95:35:
cb:61:cb:47:39:14:6f:a3:ee:b9:c2:48:fd:da:62:8d:25:88:
cb:1b:41:2f:0f:10:ce:c3:7e:23:27:33:9f:fb:5d:52:bb:1b:
7e:df:83:72:17:91:8e:c1:48:ff:0b:20:4f:90:1c:88:a5:d4:
40:53:1d:95:22:20:c3:99:5b:53:30:da:22:21:ae:84:c6:cf:
e1:59:8b:ab:f9:2f:ab:14:da:36:66:26:1b:e2:b8:96:b0:d8:
ab:6f:16:92:4d:85:32:b3:21:91:f2:38:0d:30:b2:06:3f:7e:
bc:d7:94:17:a1:8c:21:87:2a:65:3c:3a:31:67:3f:2e:a8:8d:
39:83:fa:7e:98:d5:1d:57:e5:b1:a2:54:86:ed:4e:38:2d:8a:
ff:81:9c:1d:66:dc:c9:45:3d:0e:a7:c6:fe:3e:b9:b6:03:e5:
3e:60:77:2d:84:cb:46:d3:33:c3:52:c9:b7:63:cc:c8:23:bd:
0a:fe:77:cc:17:0e:c8:9a:28:e4:ca:e4:ff:96:ab:40:44:84:
89:a4:71:04
-----BEGIN CERTIFICATE-----
MIIFjDCCBHSgAwIBAgIDAX2bMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjUwNDMwMjMyMTAwWhcNMjgwNDE0MjMyMTAwWjAYMRYw
FAYDVQQDEw02ODEyYjA2MS01MDE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAnMmClV6ecylEYn20FwptvVlxMG4yoxdEMfjdpuA0irILuJ1ENfQKBUSh
xDJCuFJbxCPb7wM/N/95wZ7Ux57ZTX+r+cP+YtLvyYV0Ny8osrpOb/nitoMR/wPV
E595rweWnlN3e7p6e8ol5gUNtfA13/j03KMjgeSQCk7RMCYKIpA8Fnrt6c/oEjqK
YQ7LaFY3wCsUwv3ToxEP1810fvsFCIN5XuAEK/ijchkQ80QV8LNuWi71SPWTdgay
QMfb0nwQyephAyODGoO32QJHdONudemGdLQIxr96S5hFf8jZ8g0OSxQ77090fM1+
1xUEU/nXHPqdEbmBw3vxuTzRPfBrVQIDAQABo4ICrTCCAqkwHQYDVR0OBBYEFI2V
dei8HKvae+4h1QxyaJNLNu87MB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9DOTY4QzdDQTI2MTkxMUYwOEZDMjQyRDREQUU0RUM5Qy5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMCcGCCsGAQUFBwEHAQH/BBgwFjAUBAIAATAOMAwDBACaVZEDBACaVZowDQYJ
KoZIhvcNAQELBQADggEBAETIYTfJiZoAE4C8IKX23a4pqDW8NzznieWs6o9POYsV
3CdyFx5BQiieFW0UKvpV6hY8DKCVNcthy0c5FG+j7rnCSP3aYo0liMsbQS8PEM7D
fiMnM5/7XVK7G37fg3IXkY7BSP8LIE+QHIil1EBTHZUiIMOZW1Mw2iIhroTGz+FZ
i6v5L6sU2jZmJhviuJaw2KtvFpJNhTKzIZHyOA0wsgY/frzXlBehjCGHKmU8OjFn
Py6ojTmD+n6Y1R1X5bGiVIbtTjgtiv+BnB1m3MlFPQ6nxv4+ubYD5T5gdy2Ey0bT
M8NSybdjzMgjvQr+d8wXDsiaKOTK5P+Wq0BEhImkcQQ=
-----END CERTIFICATE-----
Generated at Wed May 7 18:48:44 2025 by rpki-client