Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B93B311C144E11F097617D056EB8BCC6.roa
File: B93B311C144E11F097617D056EB8BCC6.roa (raw, json)
Hash identifier: jxrtGcAd75wH+0z6j+0eVom6Sq0NqVFDQXMD5RUnHRA=
Subject key identifier: 01:A5:FB:81:87:62:77:BD:EC:FD:BD:80:E5:75:E1:3C:C4:A1:6C:6D
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01785A
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B93B311C144E11F097617D056EB8BCC6.roa
Signing time: Tue 08 Apr 2025 07:54:40 +0000
ROA not before: Tue 08 Apr 2025 07:54:35 +0000
ROA not after: Fri 18 Apr 2025 07:54:35 +0000
asID: 5065
IP address blocks: 154.207.144.0/24 maxlen: 24
154.207.145.0/24 maxlen: 24
154.207.146.0/24 maxlen: 24
154.207.148.0/24 maxlen: 24
154.207.149.0/24 maxlen: 24
154.207.150.0/24 maxlen: 24
154.207.164.0/22 maxlen: 24
154.207.168.0/22 maxlen: 24
154.207.172.0/22 maxlen: 24
154.207.176.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 18 Apr 2025 07:54:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 96346 (0x1785a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 8 07:54:35 2025 GMT
Not After : Apr 18 07:54:35 2025 GMT
Subject: CN=67f4d640-9ebd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:65:e9:bb:2d:b3:03:31:21:c0:0b:99:da:b2:
ae:13:84:91:25:66:47:18:25:63:fc:f2:cc:c0:66:
6d:38:31:cc:cb:f0:95:60:5c:86:e6:8a:2c:dc:d7:
ed:f8:32:d6:c3:0f:0e:36:c2:92:25:09:5b:92:9c:
2c:05:39:16:f0:b1:93:78:43:c7:49:e5:62:5f:8a:
38:18:17:54:a0:7d:c0:15:05:e8:ad:89:9d:19:91:
7a:7c:ea:75:73:fc:ca:06:ba:e3:79:fa:7c:5e:a1:
a6:4d:b8:6c:cf:bd:03:de:c4:51:41:82:94:f8:fe:
1a:f0:03:8b:cf:b7:bc:87:f2:8f:e4:e1:ab:f9:80:
0b:01:12:20:84:d6:5d:f0:9b:0d:f4:06:a4:a8:48:
2b:c5:f6:df:6f:c0:89:75:99:b0:e1:fb:f9:da:98:
cb:48:86:fc:3f:fd:a1:6e:5d:00:cb:43:c9:0e:8f:
63:b0:02:16:2c:73:72:74:1b:3f:78:73:14:46:c8:
1e:dd:18:bd:03:10:bc:30:ce:05:2b:33:9d:6c:92:
ad:8f:db:0c:9c:b3:93:bd:9b:c5:0e:c7:2c:5f:e2:
34:25:9c:05:9e:61:d0:43:88:5b:73:ad:3a:f9:ea:
08:50:b8:64:dd:f0:e3:62:31:37:a2:20:4e:38:90:
63:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:A5:FB:81:87:62:77:BD:EC:FD:BD:80:E5:75:E1:3C:C4:A1:6C:6D
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B93B311C144E11F097617D056EB8BCC6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.207.144.0-154.207.146.255
154.207.148.0-154.207.150.255
154.207.164.0-154.207.183.255
Signature Algorithm: sha256WithRSAEncryption
cd:a1:a7:b3:20:9f:7f:55:67:07:27:b8:2b:66:07:6f:11:9b:
59:5f:fe:27:9a:bf:70:f8:94:43:a2:8d:2d:df:b2:85:9b:92:
9c:26:50:f6:c4:72:fd:a2:41:84:86:c1:2a:ca:4b:74:71:60:
16:ab:0a:0b:e0:d4:22:68:7f:31:4c:71:55:21:43:fc:c6:a4:
e2:eb:33:e9:84:b2:82:b1:b9:de:69:19:e6:61:8f:83:b2:ee:
4e:7f:4e:8f:b3:da:52:21:79:ff:3d:30:f5:6b:e6:03:4c:3c:
fc:fb:7e:76:3c:42:96:69:33:60:43:54:dc:b6:c2:d7:04:70:
77:ec:99:03:ea:b8:83:2b:d0:e3:4e:6f:ce:ae:a8:43:e8:65:
e9:0f:98:ff:24:68:44:da:83:07:fa:d7:90:da:2e:bc:44:d6:
fe:c8:d8:49:91:71:c2:8a:02:79:49:a1:30:5c:78:c8:81:45:
00:9c:35:ad:4b:08:9b:d9:e9:b9:68:06:6d:7c:f9:46:0d:4a:
71:9e:91:24:96:ef:3e:8f:1c:32:12:48:3a:1e:97:80:94:a6:
e6:5b:4c:b9:93:84:3c:47:f6:0e:3c:70:e6:4a:b7:2c:e6:ce:
28:d6:56:3d:ef:8e:54:fa:14:00:ab:ab:50:b9:bf:0b:f3:b9:
30:4b:35:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 22:56:29 2025 by rpki-client