Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/14C66B54151D11F0BDDCE1E96DB8BCC6.roa
File: 14C66B54151D11F0BDDCE1E96DB8BCC6.roa (raw, json)
Hash identifier: O34JIewDxH6PgWqMBfrYIXl17mPwC3nQS6LAIN+zago=
Subject key identifier: B2:1F:C0:E6:65:09:EB:F5:E2:D9:27:43:A5:41:A7:51:6A:82:87:22
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 017890
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/14C66B54151D11F0BDDCE1E96DB8BCC6.roa
Signing time: Wed 09 Apr 2025 08:31:50 +0000
ROA not before: Wed 09 Apr 2025 08:31:46 +0000
ROA not after: Fri 18 Apr 2025 08:31:46 +0000
asID: 5065
IP address blocks: 154.207.144.0/24 maxlen: 24
154.207.145.0/24 maxlen: 24
154.207.146.0/24 maxlen: 24
154.207.148.0/24 maxlen: 24
154.207.149.0/24 maxlen: 24
154.207.150.0/24 maxlen: 24
154.207.164.0/22 maxlen: 24
154.207.168.0/22 maxlen: 24
154.207.172.0/22 maxlen: 24
154.207.176.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 18 Apr 2025 08:31:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 96400 (0x17890)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 9 08:31:46 2025 GMT
Not After : Apr 18 08:31:46 2025 GMT
Subject: CN=67f63075-471a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:ea:52:17:d3:c8:06:d1:02:35:f0:b7:ae:e0:
fd:30:3c:bf:63:64:34:a8:d2:86:61:bd:ea:91:4d:
4b:76:6b:ad:3b:4b:f6:dd:f2:11:ca:7e:28:65:90:
37:3b:4c:87:de:00:ba:1f:60:06:cb:40:9f:14:1d:
12:a2:33:4e:aa:d6:e9:76:0f:2d:60:fe:b3:40:67:
53:1a:37:6a:aa:c8:7e:06:f4:90:77:86:21:8f:e1:
9d:2f:9f:d3:ca:9d:48:c1:e2:e7:e1:fe:52:b9:8a:
58:fd:a0:5b:20:07:39:b5:0a:04:35:18:c0:0d:58:
35:ca:b8:f7:ed:ad:07:59:0c:26:6b:fa:2f:2f:1c:
80:aa:f9:b0:d3:36:dc:bc:28:5e:2a:62:1d:f9:5e:
7e:e4:1c:ad:9b:d9:27:db:0a:c5:26:39:a8:2b:75:
ad:35:3d:8c:08:83:e1:8e:94:57:27:c3:2d:ba:37:
fd:bb:df:36:ac:84:d1:bc:15:70:47:4d:1f:c7:c5:
0e:34:22:05:6e:86:5e:9d:27:ef:1f:f8:af:1e:bc:
62:5f:76:56:63:8d:f9:54:fa:c4:ec:f7:46:3f:11:
8a:d2:19:65:01:5e:21:5b:42:6d:8d:d6:9e:bc:4a:
c2:5a:2f:80:76:a5:de:f0:a2:fb:1b:95:d7:fa:8b:
3d:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:1F:C0:E6:65:09:EB:F5:E2:D9:27:43:A5:41:A7:51:6A:82:87:22
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/14C66B54151D11F0BDDCE1E96DB8BCC6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.207.144.0-154.207.146.255
154.207.148.0-154.207.150.255
154.207.164.0-154.207.183.255
Signature Algorithm: sha256WithRSAEncryption
38:98:e7:02:89:6a:96:17:80:ac:33:e9:ca:5e:eb:86:0d:23:
fa:aa:d6:75:dc:7c:b4:f8:83:a3:2d:be:9d:2d:26:f3:9e:c4:
ac:5c:71:61:35:0c:56:29:d8:fc:0a:f7:b6:5e:57:d5:1e:cb:
05:9c:6d:9b:5d:ee:af:02:b0:a5:46:9d:b6:89:5d:eb:b0:8a:
27:57:9f:76:08:c6:29:fb:30:82:be:f3:c3:44:72:39:98:0e:
84:a5:d1:97:cb:1e:13:32:8f:e8:a2:15:e4:f2:2b:e6:ae:9c:
51:2e:90:bb:ff:83:ba:e1:92:bb:01:ee:6b:da:0a:2d:d1:2e:
50:49:1d:43:56:0f:b6:61:12:92:ff:b0:ea:fc:c4:dc:0c:48:
96:e0:94:5a:97:af:e7:a3:3a:1c:e0:06:2f:63:3d:d3:10:8b:
78:db:92:8a:63:79:7e:e0:be:74:0e:67:9a:47:68:35:25:4a:
11:08:68:3e:dc:64:4d:18:41:ab:c2:2e:99:e9:fe:4b:8a:2b:
dd:e4:6c:81:54:bf:88:03:36:7c:6f:90:7e:f9:70:0c:d8:29:
c9:87:46:17:4c:38:33:04:60:dd:cc:f5:12:39:bc:d6:bc:cd:
bf:a2:02:53:ee:37:bc:a1:e4:52:d1:87:bb:20:03:17:87:dd:
fc:c1:16:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 22:55:11 2025 by rpki-client