Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E07BC79626A511F0A238A984DAE4EC9C.roa
File: E07BC79626A511F0A238A984DAE4EC9C.roa (raw, json)
Hash identifier: JAGV6XzqMIHtI9+PuXfgAKJ3UzPaIOECI0YAgldJPuM=
Subject key identifier: A6:D8:F1:EF:60:7C:46:A1:38:A2:C8:2E:CE:27:F5:49:9B:8E:43:58
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 017E32
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E07BC79626A511F0A238A984DAE4EC9C.roa
Signing time: Thu 01 May 2025 16:03:53 +0000
ROA not before: Thu 01 May 2025 16:03:48 +0000
ROA not after: Mon 01 May 2028 16:03:48 +0000
asID: 17561
IP address blocks: 154.208.230.0/24 maxlen: 24
154.208.231.0/24 maxlen: 24
154.208.232.0/24 maxlen: 24
154.208.233.0/24 maxlen: 24
154.208.234.0/24 maxlen: 24
154.208.235.0/24 maxlen: 24
154.208.236.0/24 maxlen: 24
154.208.237.0/24 maxlen: 24
154.208.238.0/24 maxlen: 24
154.208.239.0/24 maxlen: 24
154.208.240.0/24 maxlen: 24
154.208.241.0/24 maxlen: 24
154.208.242.0/24 maxlen: 24
154.208.243.0/24 maxlen: 24
154.208.244.0/24 maxlen: 24
154.208.245.0/24 maxlen: 24
154.208.246.0/24 maxlen: 24
154.208.247.0/24 maxlen: 24
154.208.248.0/24 maxlen: 24
154.208.249.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 12 May 2025 00:07:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 97842 (0x17e32)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 1 16:03:48 2025 GMT
Not After : May 1 16:03:48 2028 GMT
Subject: CN=68139b69-bd5a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:76:e9:46:20:9a:70:61:56:07:51:d5:90:a1:
06:92:34:a6:a7:fc:6b:b3:09:90:dd:3f:d8:ce:61:
02:af:9e:2c:3f:9d:aa:de:2d:62:29:e9:2a:df:65:
79:15:b3:a5:03:0c:2d:9d:7a:ce:b9:fb:d2:4a:8d:
1d:ea:a8:bd:52:e8:69:82:83:4c:15:48:41:f0:a8:
b5:70:c7:b3:d7:24:be:a2:94:11:8d:e7:0d:6a:51:
90:12:d4:58:c8:6a:88:ae:b4:96:19:eb:c8:65:db:
7b:77:e5:01:0c:14:91:2b:5f:bd:b7:01:91:33:a1:
71:b6:d1:6d:81:51:ed:8e:d7:9c:e8:10:e0:9b:f7:
a0:9d:a0:a1:9e:b0:cb:cb:7f:75:72:d8:60:8f:d9:
b0:cb:36:6e:30:fa:d0:7d:2b:0d:8a:7e:7d:83:fc:
f4:77:6e:de:c4:b0:3e:ff:fb:06:0c:1d:1f:f3:d4:
85:c6:6f:cf:f7:15:cb:24:6a:ec:96:28:22:b9:84:
47:e0:87:17:24:1f:14:8a:7e:44:82:d1:8e:09:b3:
11:3a:13:0f:32:d3:ba:94:d7:ee:f3:25:41:a1:4c:
7c:cf:3c:61:c9:b3:61:8b:02:c1:1c:b3:2f:e2:cf:
de:4e:29:ca:28:6a:3d:f7:9c:75:c9:55:ca:1f:a7:
5f:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:D8:F1:EF:60:7C:46:A1:38:A2:C8:2E:CE:27:F5:49:9B:8E:43:58
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E07BC79626A511F0A238A984DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.208.230.0-154.208.249.255
Signature Algorithm: sha256WithRSAEncryption
37:cc:f5:0d:66:30:01:fa:59:8e:7b:e8:40:c9:cc:25:eb:e3:
b4:a9:f8:91:04:4b:a2:44:f9:1d:76:6d:b5:39:e2:f5:da:7a:
db:58:1c:3e:3b:2d:db:91:64:ea:68:f4:9d:31:31:92:95:f9:
44:28:70:cc:df:41:a9:0c:1b:03:e6:fe:d6:37:b3:99:1b:49:
e3:54:35:c1:e1:7b:df:78:c1:d6:47:74:ea:b4:e1:40:f2:50:
bb:fb:b7:ac:7c:80:05:60:24:1d:7c:a4:54:7f:f2:69:06:19:
25:ac:e7:d4:0f:89:e7:34:c3:dc:3c:5c:21:3b:33:0a:e9:e4:
46:5e:87:0b:62:42:c1:71:74:4a:24:6f:c7:16:a4:72:d2:36:
52:d2:a0:29:7d:16:0e:51:c6:e5:d5:10:bd:33:5c:aa:1d:6f:
14:5d:83:bf:93:43:3d:72:dd:63:31:09:2f:1c:1a:dd:a9:5e:
5e:57:65:61:8c:57:d0:df:4d:3a:29:53:d2:f7:e4:01:9a:5e:
5a:84:99:42:d0:19:6f:f6:33:45:c5:1b:7c:f2:a7:f4:6c:9f:
ca:b7:73:e6:64:0b:5e:3b:aa:6a:49:45:35:dc:a6:5d:4a:4d:
d9:a3:77:23:77:79:9b:5c:9b:60:91:15:89:93:2d:34:17:d1:
96:b6:8c:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 10 22:17:30 2025 by rpki-client