Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EE0559C0247C11F0AEA10D89DAE4EC9C.roa
File: EE0559C0247C11F0AEA10D89DAE4EC9C.roa (raw, json)
Hash identifier: DOapowYyGacWHPURZ0g5xtTFF0pYP7bMKFtv731WteU=
Subject key identifier: AC:DD:F0:89:C6:7C:FA:62:50:67:5D:B1:CC:89:D7:81:EF:08:23:0A
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 017C83
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EE0559C0247C11F0AEA10D89DAE4EC9C.roa
Signing time: Mon 28 Apr 2025 22:05:44 +0000
ROA not before: Mon 28 Apr 2025 22:05:39 +0000
ROA not after: Fri 13 Jun 2025 22:05:39 +0000
asID: 138915
IP address blocks: 154.95.76.0/24 maxlen: 24
154.95.77.0/24 maxlen: 24
154.95.78.0/24 maxlen: 24
154.95.79.0/24 maxlen: 24
154.95.80.0/24 maxlen: 24
154.95.81.0/24 maxlen: 24
154.95.82.0/24 maxlen: 24
154.95.83.0/24 maxlen: 24
154.95.84.0/24 maxlen: 24
154.95.85.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 11 May 2025 11:57:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 97411 (0x17c83)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 28 22:05:39 2025 GMT
Not After : Jun 13 22:05:39 2025 GMT
Subject: CN=680ffbb8-44c5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:a5:8a:b5:3a:d5:d0:89:02:08:47:37:ef:1f:
aa:90:c9:25:8f:bc:74:90:d9:2f:57:b4:30:1f:e9:
43:bb:a0:25:a4:58:a5:df:d6:76:69:d0:7c:bf:5d:
8d:fd:92:d4:40:b4:73:ba:3f:6a:b9:0d:9c:ce:25:
2b:f6:c8:e9:80:23:8b:c6:7f:2f:5c:e8:76:86:5a:
19:26:3c:f1:8d:68:1f:f2:1f:c0:d2:58:6b:99:80:
be:69:46:db:40:02:59:6f:49:dc:17:dd:d2:2e:f5:
f4:e6:ca:c1:a9:ba:50:5f:b0:ec:6f:17:15:9b:9a:
e7:ba:c3:da:13:f8:47:e4:d1:83:13:0b:16:21:48:
a2:43:d1:5b:c7:cf:5c:fa:2d:f8:e0:75:b9:a9:4b:
e3:bc:0b:db:4c:6a:2e:a4:17:88:93:20:f9:63:5f:
18:65:c7:13:51:81:33:eb:67:c1:4a:d0:93:19:d3:
4c:d1:53:18:20:ff:f8:98:5b:d7:6e:b0:e5:b7:48:
0e:40:ef:66:a7:6f:32:7f:ba:21:82:02:56:be:20:
c6:ba:a7:ae:c1:08:be:b1:50:ca:78:d4:0b:e8:de:
ab:5f:ed:57:51:11:73:a2:fd:6b:df:de:51:2d:16:
f4:c1:4a:67:27:4d:a7:d3:35:16:3e:8e:24:5a:e4:
03:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:DD:F0:89:C6:7C:FA:62:50:67:5D:B1:CC:89:D7:81:EF:08:23:0A
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EE0559C0247C11F0AEA10D89DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.95.76.0-154.95.85.255
Signature Algorithm: sha256WithRSAEncryption
c1:d0:1e:45:bc:e1:a1:2b:b2:6c:ce:d4:e5:67:26:22:10:cd:
60:d8:8f:5e:78:86:1a:03:ef:48:49:a0:85:35:09:c6:a9:44:
95:a5:7e:8a:b9:ec:4a:50:4d:57:d9:b3:cd:92:e1:9e:a9:6d:
1e:77:ed:6f:75:7a:f3:c2:a7:12:00:10:36:20:7f:c1:37:f3:
33:b7:61:23:4e:d0:0e:16:b2:85:13:c2:79:f4:7c:55:7e:8c:
d4:a6:2e:c4:7a:58:ba:63:c9:e9:c4:d1:75:5f:07:16:25:8a:
b3:76:c5:c1:27:81:89:f0:76:1b:1b:62:6f:61:0c:86:88:be:
a4:90:53:72:4c:4c:71:ab:c6:cc:51:b7:73:6e:c4:5c:22:a9:
67:72:3b:b4:d1:58:0e:7f:ff:87:54:e3:97:ae:90:bb:ec:f7:
62:d2:23:7f:4e:72:2d:ef:53:46:1b:d6:7c:06:d1:4b:3d:04:
83:c0:33:ee:3f:83:f4:7a:1a:bc:9f:ef:ef:44:9d:e2:b6:53:
e4:f0:dc:00:34:83:d9:a7:45:27:6a:25:c6:63:10:fc:a1:68:
28:75:57:10:b0:0a:46:94:86:fb:93:1c:9f:2e:c3:88:15:8b:
d6:86:6c:d9:61:41:62:90:88:f8:93:87:82:20:18:27:6b:4c:
a0:1e:b4:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 9 17:35:49 2025 by rpki-client