Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F4D0C216300311F0B2A4F2B2DAE4EC9C.roa
File: F4D0C216300311F0B2A4F2B2DAE4EC9C.roa (raw, json)
Hash identifier: zVSoI2DfKAnKv+LG8z7M7qxIWUr/TEmzm/zr6hgxtMo=
Subject key identifier: 14:A9:8A:7E:2D:35:A2:DB:E0:F7:3D:C0:DF:C0:A9:F9:34:02:21:AF
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01807A
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F4D0C216300311F0B2A4F2B2DAE4EC9C.roa
Signing time: Tue 13 May 2025 14:10:00 +0000
ROA not before: Tue 13 May 2025 14:09:56 +0000
ROA not after: Mon 16 Jun 2025 14:09:56 +0000
asID: 57043
IP address blocks: 154.222.79.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 17 May 2025 09:29:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 98426 (0x1807a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 13 14:09:56 2025 GMT
Not After : Jun 16 14:09:56 2025 GMT
Subject: CN=682352b8-9bfc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:28:bd:b0:8e:ad:78:8b:4a:8c:cb:ee:d5:6f:
1e:ba:9c:fd:07:a0:71:ed:71:4e:ea:f9:bc:b7:fc:
d4:89:97:e3:d0:d3:c4:91:e7:df:6b:f6:92:b8:c0:
65:db:73:42:e8:5b:59:b6:48:63:17:5e:61:8b:82:
8d:df:7b:20:e3:7b:c7:cd:4e:85:a9:fe:8f:2d:e9:
a5:35:48:b0:07:48:a4:3a:f1:77:da:60:ce:55:b6:
f3:67:b7:ee:92:18:1c:09:df:1c:85:7a:19:83:76:
ad:56:b5:11:bc:37:b3:bb:d8:37:5b:32:49:39:07:
47:99:6c:eb:5f:66:a3:a0:1b:7b:c0:53:5c:60:ec:
84:2a:d1:18:e7:e5:c2:9a:ef:80:5a:5b:cc:e1:4c:
0c:b9:46:13:c5:04:a6:e4:4f:ea:08:3b:64:94:ce:
3c:2c:24:19:c7:34:f7:07:40:bc:ef:f3:4d:85:13:
20:54:62:ed:db:97:da:59:84:0d:e2:48:65:6d:10:
4a:6a:70:02:f5:71:c1:28:d8:f2:25:95:c8:73:59:
1e:73:1a:d7:c0:f2:b7:3f:7d:26:ae:da:ee:9a:5a:
c0:2a:ba:33:9d:f3:b8:b4:77:01:c1:88:0d:d6:ca:
b6:cc:4d:28:8b:0d:c7:2b:94:f4:d0:5b:3e:1a:5e:
9f:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:A9:8A:7E:2D:35:A2:DB:E0:F7:3D:C0:DF:C0:A9:F9:34:02:21:AF
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F4D0C216300311F0B2A4F2B2DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.222.79.0/24
Signature Algorithm: sha256WithRSAEncryption
40:26:7f:c8:de:33:f2:7e:b8:b1:d2:73:ab:af:4e:62:ca:27:
89:3b:e6:c3:c1:56:57:0f:64:ad:e5:f8:e2:2b:13:30:6a:cd:
a3:fb:82:62:8a:d6:f2:5d:12:b2:36:89:c0:56:5d:b4:04:b6:
c8:dc:3a:03:de:2e:99:bd:c6:f4:d0:ea:5f:92:83:f3:21:64:
95:b1:aa:e0:66:eb:db:bf:ad:86:70:b5:b3:f4:5f:28:28:ca:
1d:13:85:41:e6:73:61:75:45:df:44:48:80:88:01:a5:93:48:
76:3e:f4:30:35:33:c4:21:bc:ab:04:14:22:ea:3f:50:63:46:
bc:6a:b3:6b:1c:6a:cb:fa:95:d3:5b:52:d3:9b:12:ab:53:2d:
19:7e:87:69:91:08:25:36:a7:12:96:ae:d8:c4:5f:25:e1:85:
fe:20:46:51:41:e6:44:d8:b5:d2:35:ba:04:54:e1:c9:26:1e:
72:2a:2a:e1:1e:e9:e0:99:5e:c0:3f:ab:f7:28:f6:b5:25:17:
0b:64:bb:58:1f:0f:04:13:1f:2f:08:32:77:08:d7:b2:a6:eb:
b5:33:11:0c:00:19:72:a6:04:59:24:c4:e9:ac:e1:a3:5a:3e:
36:de:e7:ff:11:ff:b7:1e:64:89:8a:53:23:37:20:bc:f9:e5:
11:46:a8:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 15 23:58:16 2025 by rpki-client