Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1FA9C8AA042811F0B07A078D762E951A.roa
File: 1FA9C8AA042811F0B07A078D762E951A.roa (raw, json)
Hash identifier: f/XRTlMOz/aJ+5xuste9VsV91fpCaI80UYYrdUubUe8=
Subject key identifier: EC:1B:D7:75:35:DA:A8:06:F7:2B:D5:E3:F9:A2:D0:C6:61:66:EF:91
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0174EE
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1FA9C8AA042811F0B07A078D762E951A.roa
Signing time: Tue 18 Mar 2025 18:38:02 +0000
ROA not before: Tue 18 Mar 2025 18:37:58 +0000
ROA not after: Mon 05 May 2025 18:37:58 +0000
asID: 48031
IP address blocks: 154.213.6.0/24 maxlen: 24
154.213.7.0/24 maxlen: 24
154.222.248.0/24 maxlen: 24
154.222.249.0/24 maxlen: 24
154.222.250.0/24 maxlen: 24
154.222.251.0/24 maxlen: 24
154.222.253.0/24 maxlen: 24
154.222.254.0/24 maxlen: 24
154.222.255.0/24 maxlen: 24
154.223.80.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 08 Apr 2025 00:06:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 95470 (0x174ee)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Mar 18 18:37:58 2025 GMT
Not After : May 5 18:37:58 2025 GMT
Subject: CN=67d9bd8a-4685
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:59:9f:5c:2b:18:6f:be:3b:96:52:9b:af:c5:
f6:9f:36:bf:87:6d:54:c6:58:35:2a:45:67:a2:bf:
2e:34:63:d9:7a:8f:dd:ed:e3:fa:b7:25:fa:f5:aa:
bb:f5:67:87:6b:e4:d8:7f:75:ea:b7:26:6c:7a:25:
f4:34:6b:8e:46:13:04:ce:9b:e0:18:5d:f3:7a:39:
3a:71:36:c7:05:77:a2:1f:2d:a0:2f:9f:3e:76:ce:
8e:87:86:20:a6:ec:20:26:fc:c7:1e:eb:f1:57:4e:
10:c2:bc:35:f7:d0:d8:4d:80:5b:b5:d2:68:49:ee:
57:c8:c4:cd:c5:50:e8:bb:a2:c5:32:9a:c9:33:c4:
61:ee:14:f7:14:68:77:8e:59:bf:2f:70:ed:8a:17:
63:c4:a9:fd:f1:0d:6c:67:72:e0:ea:ec:7b:b0:ee:
a3:5f:16:fb:15:27:b7:bf:1d:9e:11:ee:33:db:99:
d6:e2:ce:c6:55:b9:f1:ad:4b:6c:e6:f4:75:f6:9b:
5d:b7:04:31:49:c3:11:00:9a:18:f2:06:b3:11:39:
c3:8a:07:8b:09:0d:0d:3a:eb:63:9b:a8:17:7b:9d:
79:fd:7b:a5:a1:60:07:16:94:9a:46:dd:b7:84:1f:
cc:81:26:ca:97:20:d5:5a:b6:a5:c8:58:e7:8e:03:
1c:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:1B:D7:75:35:DA:A8:06:F7:2B:D5:E3:F9:A2:D0:C6:61:66:EF:91
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1FA9C8AA042811F0B07A078D762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.213.6.0/23
154.222.248.0/22
154.222.253.0-154.222.255.255
154.223.80.0/24
Signature Algorithm: sha256WithRSAEncryption
99:dd:43:5f:5c:bf:4b:aa:b1:46:75:8c:51:7c:7c:b4:fa:8f:
6f:64:12:b2:16:0d:e4:55:d7:a1:7b:34:e3:5f:18:19:28:dd:
68:c1:fc:17:d7:e5:64:7c:37:e8:52:10:70:d6:55:89:cb:f5:
a4:e5:60:c7:12:51:22:7c:9a:04:23:62:da:cd:13:59:64:f4:
f3:a3:8f:75:0d:02:38:63:e5:79:23:f1:b8:47:ae:1a:f1:22:
5b:ea:a2:f8:16:8c:14:ec:fc:93:de:ce:db:91:99:47:b7:50:
f3:45:da:91:a2:74:b2:10:b7:f7:74:66:8f:f7:a3:bd:a4:6d:
87:9c:eb:de:e8:29:bb:85:c3:a1:bb:d1:4c:5c:75:14:04:25:
bc:40:96:c0:f9:07:04:4c:af:c4:8f:23:d6:d8:e2:04:77:8d:
70:95:87:04:b9:3a:76:26:0d:4a:43:24:54:2c:9f:d1:92:20:
f0:90:f8:4b:44:61:40:b7:88:97:1f:ee:89:f1:5f:c4:c7:68:
34:a3:f5:e2:ab:dc:91:d1:1d:03:d0:70:8c:6c:a0:f6:22:40:
21:5d:a3:24:93:ee:0d:fe:a0:de:68:4b:72:60:d3:e9:30:04:
10:2b:e4:11:1e:82:1a:e9:cc:eb:c8:69:e7:4e:c6:88:5d:17:
87:10:04:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 09:50:03 2025 by rpki-client