Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/05A02884332911F095788EBEDAE4EC9C.roa
File: 05A02884332911F095788EBEDAE4EC9C.roa (raw, json)
Hash identifier: S7obmRRYqaM5/vUZi3aRBcFP+nY/OljT5tG/y2HCKNQ=
Subject key identifier: 37:89:E4:21:7B:CA:03:39:AD:6F:2A:04:6C:B6:06:1D:5B:4E:6A:E1
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 018140
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/05A02884332911F095788EBEDAE4EC9C.roa
Signing time: Sat 17 May 2025 14:12:53 +0000
ROA not before: Sat 17 May 2025 14:12:49 +0000
ROA not after: Fri 04 Jul 2025 14:12:49 +0000
asID: 63139
IP address blocks: 154.93.94.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 08 Jun 2025 00:06:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 98624 (0x18140)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 17 14:12:49 2025 GMT
Not After : Jul 4 14:12:49 2025 GMT
Subject: CN=68289965-9228
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:41:12:9b:fa:06:e3:94:14:5e:e4:32:f9:83:
b3:e4:40:a6:ad:c1:61:45:09:80:62:08:d3:41:01:
88:bb:02:94:72:d9:b5:31:68:76:e4:ae:31:9a:fd:
68:64:34:63:3a:e8:53:d1:83:fc:da:e5:43:05:c0:
39:7d:45:0e:9b:9a:6d:26:2c:e8:7e:54:e2:88:37:
b9:5c:71:98:a0:62:21:fb:0e:1f:2a:e0:48:8b:95:
8c:1c:93:b3:08:a9:eb:97:34:df:b8:b4:d0:78:08:
75:4d:ae:b2:72:2a:81:0c:41:d5:8c:64:c3:e0:cf:
6c:8b:6c:31:02:d1:05:e0:91:bb:a5:ee:1f:3e:c6:
ff:2d:7e:2e:41:ef:d3:16:1a:79:8a:c8:cb:84:d4:
57:a6:63:8b:39:de:ee:9f:52:f8:92:ef:7e:48:63:
1d:4d:ad:1a:24:02:9e:2f:dc:e3:71:47:61:a6:94:
4a:1d:70:83:7f:67:71:ae:7a:03:03:53:82:92:71:
92:8e:f4:75:59:6b:73:2d:15:d4:8c:06:45:88:ae:
81:ad:c6:e4:85:5d:ce:72:52:41:1a:7b:23:a4:7a:
d6:f3:2d:bf:b3:33:4a:6c:72:37:be:86:5f:a7:66:
9c:f1:2e:bf:95:0e:41:1d:1f:fc:e7:41:73:37:01:
e5:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:89:E4:21:7B:CA:03:39:AD:6F:2A:04:6C:B6:06:1D:5B:4E:6A:E1
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/05A02884332911F095788EBEDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.93.94.0/24
Signature Algorithm: sha256WithRSAEncryption
97:08:2a:09:7b:56:a0:15:fd:bd:cf:f9:60:8a:2d:68:41:4a:
21:22:27:7c:13:82:d7:1a:5d:bc:cf:e9:2a:6e:07:ca:b3:e7:
11:0e:f1:b1:7b:d5:7b:a9:65:0c:71:30:f5:0c:40:6f:73:95:
db:48:b4:3a:7d:67:0f:ef:6c:95:47:0a:bf:6a:1f:86:38:b8:
ad:77:c9:59:fd:e0:e6:48:ad:2a:ec:49:51:06:a9:2e:ed:71:
06:76:87:09:0a:b4:53:8b:a4:7e:29:7e:9b:dd:1a:e6:80:0a:
ca:93:22:73:8c:36:34:27:6c:8c:73:c1:84:4c:af:c2:8c:38:
03:35:18:a7:3f:ad:58:8b:08:8e:2e:fd:9b:9b:b8:a3:cb:f6:
98:b2:32:97:6c:8a:7a:0e:8f:3e:b7:3d:0e:03:e9:01:a5:eb:
f9:28:65:25:7b:1c:7e:1d:02:db:74:ff:c1:fd:78:17:53:cf:
5e:f3:d0:14:8e:86:42:11:7b:4a:99:d3:50:50:e0:1d:dd:36:
e8:90:64:a4:ed:95:82:d1:51:6b:3a:60:02:b7:91:2c:d5:87:
aa:35:5e:11:23:6c:18:3d:1b:10:a3:06:57:d8:c3:3c:f1:50:
d7:5f:8c:80:bd:07:7a:81:a8:a8:9d:a9:5f:23:e5:84:ed:4b:
f0:e7:7e:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 6 16:52:33 2025 by rpki-client