Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D57D8A96300011F0A4E7E39EDAE4EC9C.roa
File: D57D8A96300011F0A4E7E39EDAE4EC9C.roa (raw, json)
Hash identifier: pas9RrXcQ1GPjPcet3apAbl6yEnNKkL6hiZ1yOkEhxI=
Subject key identifier: 70:1D:09:77:3E:DD:11:53:37:8A:D7:51:12:39:0D:76:BC:64:AB:02
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 018076
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D57D8A96300011F0A4E7E39EDAE4EC9C.roa
Signing time: Tue 13 May 2025 13:47:39 +0000
ROA not before: Tue 13 May 2025 13:47:34 +0000
ROA not after: Sun 22 Jun 2025 13:47:34 +0000
asID: 133180
IP address blocks: 154.84.135.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 17 May 2025 09:29:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 98422 (0x18076)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 13 13:47:34 2025 GMT
Not After : Jun 22 13:47:34 2025 GMT
Subject: CN=68234d7b-ddd0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:a4:da:b4:9d:dd:c4:93:49:53:40:37:0b:94:
5f:69:e7:2c:4d:fe:0b:fc:5d:d3:5f:2b:ba:9d:f7:
8f:62:24:9e:67:2b:2c:2d:e6:b6:ca:63:bb:5b:0b:
74:24:88:9f:12:28:5d:65:77:5c:f8:b7:14:94:41:
e5:4c:ab:c6:4e:ad:fd:ae:1d:7c:3a:fe:2f:96:fb:
dc:7b:2b:eb:6b:23:26:02:f2:af:bf:e4:a0:51:c6:
8d:52:54:e8:e4:c2:d1:21:c2:07:1f:82:2c:60:08:
e3:fb:c6:68:14:61:dc:6e:71:8e:fc:75:8b:eb:93:
81:18:1e:b9:7b:9d:54:00:9c:7a:a0:d7:72:dc:17:
49:d1:90:47:cc:e6:7a:72:da:d0:5a:09:1b:6f:64:
05:49:22:29:91:a8:ea:c1:5b:c9:88:36:b5:30:3f:
a3:f3:46:24:88:71:f1:3d:b6:12:3e:69:2d:48:02:
ed:7b:91:28:e4:01:62:31:04:41:15:0e:01:e7:17:
3a:20:2a:ed:02:99:08:b1:38:a3:29:34:15:fb:36:
14:6c:59:fb:8a:71:c2:b6:00:e9:3b:56:ac:3b:ea:
24:61:de:9b:69:a3:db:d5:20:d6:e0:2a:70:3e:23:
d2:ca:58:d9:fd:36:28:fa:5c:38:af:29:0c:5b:4c:
63:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:1D:09:77:3E:DD:11:53:37:8A:D7:51:12:39:0D:76:BC:64:AB:02
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D57D8A96300011F0A4E7E39EDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.84.135.0/24
Signature Algorithm: sha256WithRSAEncryption
83:ac:84:7f:d8:c2:bd:cf:be:ac:ca:35:11:39:eb:b0:70:25:
00:8c:1e:a8:f5:75:a8:5d:e8:29:aa:33:18:30:6a:b9:6b:71:
a4:bb:84:ba:03:47:40:44:8c:82:43:bb:77:ba:51:b7:f7:44:
6e:2e:3d:dc:f1:ad:1e:0e:86:be:5d:f2:29:65:0e:31:07:77:
d0:54:c4:58:76:b6:94:fb:68:bb:8e:9b:f0:4d:c0:90:76:3d:
b9:53:a0:58:e7:73:36:3e:e2:f1:29:f7:10:b2:4c:e2:b4:da:
4d:7e:d0:05:61:85:df:01:94:19:33:f6:f4:a3:76:8d:a0:e2:
dc:3d:82:fc:c9:d3:f9:30:89:4d:a9:a6:88:a7:29:b9:ba:8c:
0a:7b:a4:e7:7e:c0:1d:dd:94:1e:2d:4e:da:53:5f:f5:de:25:
07:3d:00:dc:87:59:26:ba:77:ea:dc:92:23:ae:e5:d7:b2:d0:
7d:54:32:5a:a5:ef:2d:f4:4e:26:73:30:44:cb:d7:fc:32:04:
b1:69:a6:e9:a7:f9:65:7a:f5:14:5c:2b:e0:89:8e:fd:47:8e:
77:de:25:0d:8f:1e:06:d4:fe:3f:2a:65:ee:f1:9d:c6:e5:d9:
b1:c7:99:21:f5:d9:08:96:d0:7f:03:2c:a3:ff:ed:8a:74:c5:
22:7b:b8:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 16 00:01:06 2025 by rpki-client