Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A22E718C151611F0A1D331C16DB8BCC6.roa
File: A22E718C151611F0A1D331C16DB8BCC6.roa (raw, json)
Hash identifier: +PBlCpx0Ek4GgWI+ow/1nOSeoHg75H2pnmRCJIAYyGw=
Subject key identifier: EC:E5:BA:46:E6:48:1D:73:F1:27:1F:36:B8:01:19:09:09:4C:5F:CE
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 017876
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A22E718C151611F0A1D331C16DB8BCC6.roa
Signing time: Wed 09 Apr 2025 07:45:40 +0000
ROA not before: Wed 09 Apr 2025 07:45:36 +0000
ROA not after: Sat 19 Apr 2025 07:45:36 +0000
asID: 5065
IP address blocks: 154.94.32.0/24 maxlen: 24
154.94.34.0/24 maxlen: 24
154.94.36.0/24 maxlen: 24
154.94.37.0/24 maxlen: 24
154.94.38.0/24 maxlen: 24
154.94.41.0/24 maxlen: 24
154.94.44.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 19 Apr 2025 00:06:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 96374 (0x17876)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 9 07:45:36 2025 GMT
Not After : Apr 19 07:45:36 2025 GMT
Subject: CN=67f625a4-2fb8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:55:b7:36:cb:36:a4:f1:3d:8f:f1:0a:17:4f:
26:38:80:fa:a0:e4:6b:da:81:8d:9f:5d:9e:4f:af:
be:d3:72:d6:e5:e1:9d:37:4e:61:93:d4:40:86:3f:
fb:81:77:10:2a:76:86:0c:c6:5d:3e:25:cc:cf:7c:
55:0b:b3:94:b5:a8:2f:43:86:cb:db:27:fe:3e:bd:
d2:55:e0:35:2a:74:22:4a:6b:17:30:0b:b3:24:f5:
e7:08:72:65:bc:d0:c3:e9:aa:dc:fb:70:f3:9a:03:
f3:a8:c5:92:3a:7d:86:7e:50:de:82:30:a3:32:56:
44:54:c5:6c:a2:a5:0e:60:46:a4:75:e3:9e:eb:a2:
e8:65:cd:02:7c:17:09:c1:98:62:68:d4:4c:bc:d8:
7d:bc:b1:de:65:d0:a0:ad:a5:52:09:77:0a:b6:a9:
0b:ce:b5:5f:f9:02:99:75:5c:71:10:5a:d0:0b:f6:
14:af:48:64:ac:1a:5d:12:61:3c:99:43:f4:0e:5f:
01:28:7c:ca:4b:83:61:a4:b0:04:1f:4e:eb:3d:2d:
ad:d7:5b:6f:aa:79:cc:d5:e4:30:98:81:2d:e8:3e:
31:ed:fe:fe:15:b6:e1:ee:1d:90:ab:12:58:ec:34:
bb:2e:07:be:f2:ef:4f:62:24:43:cc:69:a1:00:fc:
b8:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:E5:BA:46:E6:48:1D:73:F1:27:1F:36:B8:01:19:09:09:4C:5F:CE
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A22E718C151611F0A1D331C16DB8BCC6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.94.32.0/24
154.94.34.0/24
154.94.36.0-154.94.38.255
154.94.41.0/24
154.94.44.0/24
Signature Algorithm: sha256WithRSAEncryption
40:7d:67:f0:ef:2e:e3:ea:22:2d:b5:c7:81:04:3f:a9:00:40:
33:a8:3b:f2:72:6d:2e:35:9a:94:0f:96:f9:fb:64:2a:f3:3b:
43:ce:e7:85:50:00:ab:49:c6:42:a6:6b:0d:13:78:81:20:1d:
7d:00:59:e4:ab:8e:79:2c:eb:06:47:cd:75:07:f9:49:b6:31:
37:18:5b:4a:38:b3:77:d7:98:1b:ed:05:a0:8f:fc:bb:22:a4:
3c:2c:5a:20:d8:15:43:78:1c:0a:4d:12:0d:e9:94:81:a5:e4:
4a:2a:a4:1b:81:94:45:3a:5a:52:86:b7:01:c9:09:32:57:10:
5e:91:f6:86:61:ed:b6:c1:99:f6:70:d3:12:fe:58:32:cc:e4:
e6:ac:0e:db:27:6b:af:91:5c:86:da:05:69:a0:d8:75:b5:63:
a3:f3:8a:af:8f:ae:69:41:14:a9:3d:b7:a7:5b:6f:cc:7b:83:
5c:19:d3:6e:a8:06:21:1b:3d:22:f0:99:d8:0f:88:79:be:34:
59:6b:54:12:7b:67:a0:51:78:e6:a2:1a:fb:af:11:fc:4c:3a:
c2:e8:35:37:a9:51:82:72:69:fa:89:cc:72:bb:83:58:fb:b7:
39:59:94:b9:b3:67:c4:b8:57:79:e8:8b:f7:54:19:11:51:df:
49:73:27:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 22:57:34 2025 by rpki-client