Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/27543D16040911F0BA591F50762E951A.roa
File: 27543D16040911F0BA591F50762E951A.roa (raw, json)
Hash identifier: S4opEwr8IGEnbze8kLFFUwDI9HuHFA0wQVtybc8xQQg=
Subject key identifier: 51:7B:B8:42:74:F0:43:4D:52:56:E0:89:C7:CE:A2:FA:76:9A:01:02
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0174AE
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/27543D16040911F0BA591F50762E951A.roa
Signing time: Tue 18 Mar 2025 14:56:21 +0000
ROA not before: Tue 18 Mar 2025 14:56:17 +0000
ROA not after: Thu 01 May 2025 14:56:17 +0000
asID: 44559
IP address blocks: 154.198.37.0/24 maxlen: 24
154.198.39.0/24 maxlen: 24
154.203.206.0/24 maxlen: 24
154.203.207.0/24 maxlen: 24
154.203.212.0/24 maxlen: 24
154.203.213.0/24 maxlen: 24
154.205.28.0/24 maxlen: 24
154.205.241.0/24 maxlen: 24
154.205.242.0/24 maxlen: 24
154.205.243.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 06 Apr 2025 00:06:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 95406 (0x174ae)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Mar 18 14:56:17 2025 GMT
Not After : May 1 14:56:17 2025 GMT
Subject: CN=67d98995-4725
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:20:59:24:7a:47:3c:ff:6a:97:1b:c4:34:9b:
ce:f3:27:93:bf:53:7d:2d:51:5f:0a:d7:84:9a:a5:
5d:14:a8:aa:6f:0a:83:14:f6:a0:8a:0b:8f:f5:0e:
16:df:6d:2d:59:a1:44:4e:ab:0f:a5:32:7d:d6:69:
1e:83:5b:26:1d:90:f1:da:30:34:c2:7a:8f:0e:b6:
aa:6c:8a:b3:df:ed:31:7a:2e:8b:4d:6e:3f:c1:dd:
38:d9:21:ac:ca:7c:1e:08:70:0e:53:0c:32:e3:0c:
e2:c3:27:e3:70:bb:cd:49:63:73:d2:d8:98:50:18:
56:48:81:09:90:16:0e:74:b1:30:a4:f8:50:02:64:
e2:bf:73:29:5c:2e:da:30:47:c5:e9:d8:e4:eb:ab:
73:4c:8e:a1:a8:c8:69:fe:71:e0:bf:d2:93:7a:d0:
34:2a:2b:8d:4c:2d:6c:64:a8:77:99:10:7b:a1:b3:
fe:1d:8c:72:96:80:fe:aa:20:12:cb:24:c6:e5:56:
72:9a:77:87:6b:02:c3:2a:9f:fa:0a:98:1a:30:de:
2c:81:70:f9:46:69:44:09:9a:68:15:df:09:1e:79:
f7:96:34:7c:c2:4c:90:b5:83:3f:c3:d6:62:d9:34:
d6:a7:9c:82:b9:71:0e:88:cd:24:25:9d:0f:f7:c0:
23:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:7B:B8:42:74:F0:43:4D:52:56:E0:89:C7:CE:A2:FA:76:9A:01:02
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/27543D16040911F0BA591F50762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.198.37.0/24
154.198.39.0/24
154.203.206.0/23
154.203.212.0/23
154.205.28.0/24
154.205.241.0-154.205.243.255
Signature Algorithm: sha256WithRSAEncryption
bd:5d:c6:c2:3a:92:1c:0f:b5:1a:ee:77:78:bd:b1:90:df:c8:
72:f9:1c:2d:9c:d3:6b:3f:71:6c:db:a5:35:c4:62:ee:a0:72:
07:b8:64:5d:43:e0:b3:e5:37:8e:a0:03:ef:7f:7f:a7:43:42:
0a:de:8d:29:13:1c:3e:60:6c:3d:88:7a:59:46:bd:bd:0d:2f:
e5:63:a3:90:cb:4c:c9:87:41:da:b8:b4:13:91:30:98:cd:23:
e6:60:53:9f:39:cd:01:e0:2a:36:de:f9:44:2f:c7:e0:d7:6e:
22:28:a5:16:55:ac:69:da:32:28:24:45:4b:55:64:17:95:8e:
0a:04:1f:33:f9:51:d7:73:35:64:16:9c:97:55:e2:a9:29:da:
fe:bc:a2:03:95:ff:f6:e2:86:b3:aa:8d:2c:34:49:f1:9f:54:
31:7b:4f:20:1a:9c:b0:8f:9e:67:67:24:35:57:8d:c3:e3:ce:
01:9c:d7:2f:8d:72:43:a1:0b:0a:ad:8d:e7:44:85:74:cf:4c:
a3:e8:7f:23:4b:ee:d5:6a:70:27:5d:cd:43:23:b5:dc:2b:c4:
bb:f9:16:66:a3:65:66:f0:da:d0:51:85:cd:1d:63:bf:87:43:
d8:70:6c:fb:89:e9:43:40:e8:69:84:ab:78:a3:32:a5:74:86:
46:12:39:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 10:51:44 2025 by rpki-client