Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1C8501FA03E511F098528772762E951A.roa
File: 1C8501FA03E511F098528772762E951A.roa (raw, json)
Hash identifier: m92hVfXTCS6jQh/URGeigRx9YPs5k+RvgjbcxVb84Vk=
Subject key identifier: E2:6B:4E:EB:0B:7C:AE:57:08:04:18:96:07:8D:6F:00:AF:EA:CD:81
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 017490
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1C8501FA03E511F098528772762E951A.roa
Signing time: Tue 18 Mar 2025 10:38:21 +0000
ROA not before: Tue 18 Mar 2025 10:38:17 +0000
ROA not after: Sat 19 Apr 2025 10:38:17 +0000
asID: 136501
IP address blocks: 154.92.205.0/24 maxlen: 24
154.92.206.0/24 maxlen: 24
154.92.207.0/24 maxlen: 24
154.92.208.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 06 Apr 2025 12:38:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 95376 (0x17490)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Mar 18 10:38:17 2025 GMT
Not After : Apr 19 10:38:17 2025 GMT
Subject: CN=67d94d1d-05eb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:e1:e0:d8:9e:63:1a:3b:26:25:e3:c2:1d:5b:
43:c2:a9:db:fa:73:a1:0d:cc:01:9d:66:72:4d:6a:
0d:bc:0a:a3:87:25:54:19:85:75:ad:60:d2:cf:aa:
5d:0f:e3:5a:32:f5:d0:e6:14:f0:b1:22:f3:d4:1c:
d5:63:fc:74:ff:6d:36:fc:25:71:c8:89:db:35:25:
c4:02:30:4f:f0:c8:1a:d7:57:7d:7c:3e:bd:28:e0:
1d:04:86:e8:07:e8:16:2f:f8:13:99:48:f6:ea:a0:
ba:e4:92:9d:92:55:b7:63:68:6d:f0:f6:1f:4b:a0:
04:31:7b:5a:cb:a5:67:7d:0e:67:3c:97:65:3c:99:
9e:1b:24:10:3b:bc:37:45:93:40:ce:e7:c8:5e:16:
9b:05:b5:ba:6e:ee:73:49:51:ca:d7:c9:c8:13:5e:
f2:da:fe:96:ec:c9:3f:65:40:c6:37:34:a2:b4:fe:
3d:93:b9:cc:37:51:56:d2:0a:7c:2e:4b:d3:cc:29:
68:97:d8:53:7d:31:d8:85:b4:df:9a:39:59:9f:3e:
f3:29:29:d8:d5:c9:58:6b:9c:a1:4c:a3:6a:d7:45:
29:dd:85:84:c3:cf:b5:64:9f:15:c0:a3:57:0e:02:
91:aa:26:be:d6:10:39:be:ad:c7:66:44:8d:ba:3f:
b1:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:6B:4E:EB:0B:7C:AE:57:08:04:18:96:07:8D:6F:00:AF:EA:CD:81
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1C8501FA03E511F098528772762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.92.205.0-154.92.208.255
Signature Algorithm: sha256WithRSAEncryption
ab:c6:7e:2a:b8:69:6d:d9:61:8f:75:66:32:c1:e4:ae:ae:13:
e1:8d:47:2a:ac:4d:41:03:db:37:74:ca:94:68:2f:7c:de:b7:
cf:2c:3d:ba:2a:3e:d1:19:11:56:1b:a2:36:94:f8:b5:93:92:
fc:06:ee:43:5a:fe:a7:a7:4b:6c:a8:30:60:f8:26:24:94:de:
d6:04:a2:ba:71:d5:7a:76:31:68:02:d1:3d:13:84:b0:34:5b:
a9:1b:26:55:34:69:15:8b:cc:fc:db:80:c4:88:80:2d:20:a4:
18:5f:99:57:7b:30:83:84:70:0d:4e:de:a6:f0:5b:56:c9:b4:
ae:4e:ab:28:9e:3d:49:7a:74:9d:74:25:12:d8:1a:5c:1b:f9:
50:33:0c:45:97:10:0c:ba:78:99:10:72:7d:d6:26:b0:9b:20:
3d:62:80:7c:30:fa:eb:0b:db:ed:9d:79:ee:95:ef:50:0a:fb:
08:62:9a:5d:5e:c6:de:d9:8b:2b:3c:91:e9:7b:cc:ce:52:c3:
40:83:74:8c:f0:f2:0b:40:6f:a1:da:87:69:db:2c:6d:a9:54:
57:23:24:65:63:4e:5a:4c:75:61:77:2a:d1:59:71:67:86:fe:
f1:d3:a2:a4:b6:aa:de:97:20:ab:42:4d:ed:ea:bb:36:c4:1b:
4b:3d:26:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 01:53:14 2025 by rpki-client