Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/ED3432CA247011F0960C90B8DAE4EC9C.roa
File: ED3432CA247011F0960C90B8DAE4EC9C.roa (raw, json)
Hash identifier: 7LcJFrMseG7SEv66p/va9ss0K/sDEr+BArhYiwwW8xk=
Subject key identifier: 06:53:D9:A7:CB:5B:41:2F:AF:6F:EC:44:5A:A9:3D:A4:A0:68:EA:F3
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 017C79
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/ED3432CA247011F0960C90B8DAE4EC9C.roa
Signing time: Mon 28 Apr 2025 20:39:49 +0000
ROA not before: Mon 28 Apr 2025 20:39:43 +0000
ROA not after: Wed 11 Jun 2025 20:39:43 +0000
asID: 138915
IP address blocks: 154.223.32.0/24 maxlen: 24
154.223.33.0/24 maxlen: 24
154.223.34.0/23 maxlen: 24
154.223.37.0/24 maxlen: 24
154.223.40.0/23 maxlen: 24
154.223.42.0/24 maxlen: 24
154.223.43.0/24 maxlen: 24
154.223.44.0/24 maxlen: 24
154.223.45.0/24 maxlen: 24
154.223.46.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 08 May 2025 00:06:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 97401 (0x17c79)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 28 20:39:43 2025 GMT
Not After : Jun 11 20:39:43 2025 GMT
Subject: CN=680fe795-ca9d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:9c:24:eb:f2:58:32:69:08:8a:20:a8:2f:d3:
a0:a8:e9:5b:b8:8e:54:c3:e6:f8:2f:d2:e6:d6:0c:
eb:c4:ee:17:4b:67:50:0a:94:9f:1c:46:75:0e:d1:
73:2a:b2:e6:c0:8e:08:af:4b:28:e1:0d:ff:59:69:
2d:8b:3e:d6:a1:8d:d8:53:c0:93:86:87:ac:81:4b:
e4:f6:e7:f6:42:f7:8d:8c:f0:75:e3:63:e7:13:b0:
bf:1b:eb:8e:6b:cb:d9:25:37:43:cb:28:61:ff:29:
f1:63:78:0d:21:30:7c:12:62:91:e2:2c:70:29:e4:
1c:71:b9:3c:ca:88:4f:b6:6b:e1:d1:46:3f:12:37:
c4:63:f4:bd:3d:90:bc:81:6c:68:90:73:56:11:72:
03:98:ba:e7:49:8a:1f:49:d6:07:79:cf:c6:81:7e:
7a:79:6b:24:f0:f2:97:97:5f:92:e0:fa:03:df:c1:
f6:03:a6:42:00:95:6f:60:93:b0:59:5e:ef:73:91:
d8:ad:59:52:26:94:2c:8a:70:4a:3b:de:5a:c5:03:
80:fc:e8:83:ff:78:6d:24:b5:44:db:11:12:2c:b3:
af:5f:1d:ae:32:34:08:3e:8b:07:cf:cf:55:89:89:
6f:af:85:d7:2c:b8:d1:70:40:b6:3e:40:d8:d5:82:
07:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:53:D9:A7:CB:5B:41:2F:AF:6F:EC:44:5A:A9:3D:A4:A0:68:EA:F3
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/ED3432CA247011F0960C90B8DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.223.32.0/22
154.223.37.0/24
154.223.40.0-154.223.46.255
Signature Algorithm: sha256WithRSAEncryption
28:ca:6c:dd:78:60:03:de:c8:5d:2c:67:a7:be:2e:e4:aa:1f:
c5:07:27:3e:b9:a4:c5:6d:f8:1e:96:da:77:85:c1:09:92:2e:
66:c9:03:e4:54:de:b0:24:f1:28:4e:9f:4c:4e:92:dd:14:64:
85:05:6e:b9:7f:ee:cc:0a:be:f8:c1:0a:e2:28:76:96:3b:97:
df:88:d1:11:89:4f:bd:b7:29:05:da:a0:c8:e4:14:c3:61:73:
ba:43:08:54:a4:e5:c3:49:7c:0f:ed:b7:d4:e2:85:24:b1:27:
bf:92:6d:ea:b1:7c:0e:ff:19:8c:ea:05:5b:33:4e:5f:33:4c:
16:66:e9:56:29:c0:b1:52:18:c0:c2:a6:89:e7:1d:1a:ca:c5:
ae:21:99:11:19:1d:2e:7f:eb:e9:72:3d:25:d8:6f:c2:18:d5:
24:8f:f9:4f:f6:a6:b6:88:da:8b:af:c7:f8:91:98:e1:fd:18:
e2:b8:1f:0e:de:63:69:45:58:23:0d:00:df:15:02:8b:90:33:
1b:37:f9:41:c5:f7:6c:12:23:77:eb:be:52:da:26:44:f2:92:
93:0b:2a:9a:6e:2b:71:e4:80:d4:2e:24:f5:2e:94:77:c9:6e:
7c:83:93:5c:0e:47:c1:d6:98:38:9a:ea:b9:29:e5:9c:21:a6:
65:55:83:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 6 08:28:15 2025 by rpki-client