Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/10285D8A070011F0A7CF7D80762E951A.roa
File: 10285D8A070011F0A7CF7D80762E951A.roa (raw, json)
Hash identifier: OWrOmkm1XS8RZlJtdso/frsI4wWwETDBxZwz38hf4LY=
Subject key identifier: 2A:57:03:25:45:00:3D:17:5E:11:18:CA:F5:0C:4B:34:2D:7E:7E:F3
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01756A
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/10285D8A070011F0A7CF7D80762E951A.roa
Signing time: Sat 22 Mar 2025 09:28:50 +0000
ROA not before: Sat 22 Mar 2025 09:28:46 +0000
ROA not after: Wed 09 Apr 2025 09:28:46 +0000
asID: 5065
IP address blocks: 154.94.32.0/24 maxlen: 24
154.94.34.0/24 maxlen: 24
154.94.36.0/24 maxlen: 24
154.94.37.0/24 maxlen: 24
154.94.38.0/24 maxlen: 24
154.94.41.0/24 maxlen: 24
154.94.43.0/24 maxlen: 24
154.94.44.0/24 maxlen: 24
154.94.46.0/24 maxlen: 24
154.94.47.0/24 maxlen: 24
154.94.48.0/24 maxlen: 24
154.94.50.0/24 maxlen: 24
154.94.52.0/24 maxlen: 24
154.94.53.0/24 maxlen: 24
154.94.56.0/24 maxlen: 24
154.94.60.0/24 maxlen: 24
154.94.63.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 09 Apr 2025 09:28:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 95594 (0x1756a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Mar 22 09:28:46 2025 GMT
Not After : Apr 9 09:28:46 2025 GMT
Subject: CN=67de82d2-5685
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:b9:4a:53:3f:a8:85:5f:6a:67:86:e8:70:e1:
f4:bb:90:3b:df:88:d4:42:bd:1e:69:97:e6:95:68:
15:22:8c:57:56:cc:81:66:5e:55:3c:50:d2:84:4f:
f2:6e:1c:67:45:de:27:8b:6f:da:c0:ea:67:70:15:
bb:61:a7:74:1a:f4:09:83:f2:a4:69:51:97:fe:da:
8e:2e:42:88:43:45:8f:a7:6d:f3:63:86:37:f5:f5:
b8:a8:d1:bf:99:95:ac:83:dc:83:a2:fe:c0:af:8a:
83:58:1c:a6:5e:40:91:82:cb:42:46:16:aa:32:9f:
28:67:55:36:74:99:d3:33:91:05:d1:2b:9b:9a:0e:
b7:b9:7c:80:7a:85:f0:73:fd:18:40:58:b5:36:bd:
c0:39:d5:cd:1f:7a:e9:bb:fc:c5:29:61:33:44:84:
03:7d:97:21:56:e3:83:49:d4:3a:ab:bf:8e:1f:0c:
40:9f:bd:17:ec:d8:50:a9:aa:27:ef:19:f4:c9:a3:
39:42:60:26:3e:f8:7a:60:8f:bc:2f:d9:14:44:b7:
40:38:c3:20:03:fd:9d:8d:b2:ef:4d:c0:6c:60:33:
3b:b5:40:4f:23:2f:8a:f8:61:92:82:6f:08:f8:97:
96:fe:ac:21:3c:51:cf:e9:ab:a7:60:13:35:22:3c:
bc:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:57:03:25:45:00:3D:17:5E:11:18:CA:F5:0C:4B:34:2D:7E:7E:F3
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/10285D8A070011F0A7CF7D80762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.94.32.0/24
154.94.34.0/24
154.94.36.0-154.94.38.255
154.94.41.0/24
154.94.43.0-154.94.44.255
154.94.46.0-154.94.48.255
154.94.50.0/24
154.94.52.0/23
154.94.56.0/24
154.94.60.0/24
154.94.63.0/24
Signature Algorithm: sha256WithRSAEncryption
38:00:aa:8f:f6:63:42:1e:da:21:a0:6e:a5:6d:9a:8d:0c:fd:
39:6f:a9:13:1c:de:e7:c6:d3:31:1e:67:a3:b3:d1:41:da:d6:
e8:75:9a:08:95:53:6f:fe:9d:f2:de:d0:72:86:c7:0a:22:0a:
d1:bb:63:f0:c5:d3:e9:4d:be:1c:46:3f:91:73:6e:b6:9d:8e:
9b:0a:37:64:44:21:c5:69:a3:a6:6a:f8:0a:4a:2f:3c:09:47:
6b:88:6b:24:48:53:d6:c3:52:cb:42:59:0d:1f:d4:c4:63:69:
87:30:11:21:db:12:75:ef:a2:03:36:2f:2d:8b:5f:53:4f:be:
2c:64:c1:42:f0:a3:95:e0:46:65:0a:6e:24:50:48:94:f8:12:
7f:cd:c5:1b:9a:b8:e8:5c:1e:f1:3d:19:6f:08:1a:ec:72:11:
5b:d2:79:b2:5a:50:1b:a4:fa:5f:c7:ed:e8:82:37:85:a3:a2:
39:54:48:2a:ed:39:46:c8:0e:d7:ee:2c:17:9f:7f:ae:20:a2:
dc:87:d5:6e:c4:20:bd:3d:b1:e6:11:81:f4:4f:a3:88:54:a1:
4c:57:9c:9c:27:45:e4:e3:37:d4:52:2b:33:06:67:a8:5a:2d:
24:88:19:8f:7c:dd:f3:32:18:3b:a0:1b:17:fd:06:54:07:96:
37:13:21:41
-----BEGIN CERTIFICATE-----
MIIF2DCCBMCgAwIBAgIDAXVqMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjUwMzIyMDkyODQ2WhcNMjUwNDA5MDkyODQ2WjAYMRYw
FAYDVQQDEw02N2RlODJkMi01Njg1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAoLlKUz+ohV9qZ4bocOH0u5A734jUQr0eaZfmlWgVIoxXVsyBZl5VPFDS
hE/ybhxnRd4ni2/awOpncBW7Yad0GvQJg/KkaVGX/tqOLkKIQ0WPp23zY4Y39fW4
qNG/mZWsg9yDov7Ar4qDWBymXkCRgstCRhaqMp8oZ1U2dJnTM5EF0Submg63uXyA
eoXwc/0YQFi1Nr3AOdXNH3rpu/zFKWEzRIQDfZchVuODSdQ6q7+OHwxAn70X7NhQ
qaon7xn0yaM5QmAmPvh6YI+8L9kURLdAOMMgA/2djbLvTcBsYDM7tUBPIy+K+GGS
gm8I+JeW/qwhPFHP6aunYBM1Ijy8kQIDAQABo4IC+TCCAvUwHQYDVR0OBBYEFCpX
AyVFAD0XXhEYyvUMSzQtfn7zMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC8xMDI4NUQ4QTA3MDAxMUYwQTdDRjdEODA3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMHMGCCsGAQUFBwEHAQH/BGQwYjBgBAIAATBaAwQAml4gAwQAml4iMAwDBAKa
XiQDBACaXiYDBACaXikwDAMEAJpeKwMEAJpeLDAMAwQBml4uAwQAml4wAwQAml4y
AwQBml40AwQAml44AwQAml48AwQAml4/MA0GCSqGSIb3DQEBCwUAA4IBAQA4AKqP
9mNCHtohoG6lbZqNDP05b6kTHN7nxtMxHmejs9FB2tbodZoIlVNv/p3y3tByhscK
IgrRu2PwxdPpTb4cRj+Rc262nY6bCjdkRCHFaaOmavgKSi88CUdriGskSFPWw1LL
QlkNH9TEY2mHMBEh2xJ176IDNi8ti19TT74sZMFC8KOV4EZlCm4kUEiU+BJ/zcUb
mrjoXB7xPRlvCBrschFb0nmyWlAbpPpfx+3ogjeFo6I5VEgq7TlGyA7X7iwXn3+u
IKLch9VuxCC9PbHmEYH0T6OIVKFMV5ycJ0Xk4zfUUiszBmeoWi0kiBmPfN3zMhg7
oBsX/QZUB5Y3EyFB
-----END CERTIFICATE-----
Generated at Tue Apr 8 01:42:04 2025 by rpki-client