Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/47FF5C1624F311F0B4575FACDAE4EC9C.roa
File: 47FF5C1624F311F0B4575FACDAE4EC9C.roa (raw, json)
Hash identifier: shqlDvF1hTFI9IR97Oaj/2OyAE0lKzXQI3vK+9MwT2I=
Subject key identifier: 10:9D:39:2C:63:CA:8F:52:63:0F:40:B2:51:E8:D4:41:45:DE:A3:3E
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 017CEF
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/47FF5C1624F311F0B4575FACDAE4EC9C.roa
Signing time: Tue 29 Apr 2025 12:12:56 +0000
ROA not before: Tue 29 Apr 2025 12:12:51 +0000
ROA not after: Fri 04 Jul 2025 12:12:51 +0000
asID: 63139
IP address blocks: 154.93.64.0/24 maxlen: 24
154.93.65.0/24 maxlen: 24
154.93.66.0/24 maxlen: 24
154.93.67.0/24 maxlen: 24
154.93.68.0/24 maxlen: 24
154.93.69.0/24 maxlen: 24
154.93.70.0/24 maxlen: 24
154.93.71.0/24 maxlen: 24
154.93.72.0/24 maxlen: 24
154.93.73.0/24 maxlen: 24
154.93.74.0/24 maxlen: 24
154.93.75.0/24 maxlen: 24
154.93.76.0/24 maxlen: 24
154.93.77.0/24 maxlen: 24
154.93.78.0/24 maxlen: 24
154.93.79.0/24 maxlen: 24
154.93.80.0/24 maxlen: 24
154.93.81.0/24 maxlen: 24
154.93.82.0/24 maxlen: 24
154.93.83.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 08 Jun 2025 00:06:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 97519 (0x17cef)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 29 12:12:51 2025 GMT
Not After : Jul 4 12:12:51 2025 GMT
Subject: CN=6810c247-e255
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:fc:2f:a1:73:5e:5c:fc:0a:8d:41:67:66:8e:
dd:44:2e:7e:6a:be:67:77:c7:5f:9f:df:bc:23:87:
72:7c:2d:4c:ec:fe:55:a6:87:be:1d:c7:f3:8f:f2:
07:7a:51:97:26:81:eb:c4:66:aa:45:a7:36:04:cc:
51:2d:be:a5:60:64:b0:e5:bd:16:29:c8:df:28:06:
e3:18:93:15:20:6a:19:ff:a9:cd:8f:66:cb:c3:ea:
7c:8a:63:d6:b2:98:fe:f0:72:e4:a6:f7:95:7a:13:
8b:3e:ea:cd:04:50:10:11:de:bf:2d:60:44:7e:a2:
43:41:e2:24:56:44:3e:11:63:dd:13:4e:ec:fa:a2:
51:15:a4:6b:4b:1c:53:9f:4f:2a:82:ea:2f:9e:c2:
c2:cd:f5:50:fb:ae:14:b9:11:bc:29:72:93:6a:c2:
9d:a7:9b:25:dc:dd:55:e5:c8:14:36:51:6f:10:f3:
49:96:04:25:9c:2c:70:11:1d:24:06:3d:f9:69:ce:
4d:b5:23:ed:5d:3e:3b:e8:6d:0a:2f:23:4a:b1:ef:
47:db:ed:eb:44:91:8c:8c:e5:af:1e:29:1b:b0:20:
dc:3a:d7:9f:97:8c:a6:8b:c8:f4:10:d9:94:12:2e:
9d:ff:83:c9:d0:89:96:05:49:8b:8e:ff:5b:42:b0:
26:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:9D:39:2C:63:CA:8F:52:63:0F:40:B2:51:E8:D4:41:45:DE:A3:3E
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/47FF5C1624F311F0B4575FACDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.93.64.0-154.93.83.255
Signature Algorithm: sha256WithRSAEncryption
72:88:65:e5:d3:d7:8f:18:b5:e2:61:d3:da:db:f2:32:13:13:
e4:4e:d8:33:fa:e7:ec:fa:97:d5:32:7e:d5:9a:7e:4c:22:c6:
36:5b:eb:92:2d:c6:bb:12:04:5f:ef:6b:6a:1a:dc:bc:0a:a9:
68:66:0c:e4:65:04:26:b4:c2:a2:33:71:f1:11:c4:1c:73:41:
fd:81:91:c5:50:d1:64:4a:92:4e:fb:ca:ef:6c:16:f1:0b:40:
cb:c7:07:28:2b:ef:84:97:34:eb:76:0c:48:bc:48:aa:8a:71:
83:ad:3d:28:33:91:10:66:63:a9:62:14:91:8f:5b:dc:d9:18:
2f:04:1b:09:27:13:6a:94:7d:65:f9:57:88:bc:a6:d7:93:cb:
ee:a6:c5:5a:76:80:cd:b0:3d:bd:6e:6d:37:b6:52:b8:97:31:
7c:bf:8c:23:9e:87:23:38:90:87:e9:f7:df:e3:d7:70:bf:f0:
5f:68:7d:53:59:5a:50:b6:06:45:c2:07:12:5c:ff:4d:d3:8d:
30:70:13:3a:10:64:29:d6:08:b1:d9:66:1b:32:c9:6b:81:c6:
1a:df:21:f3:35:6f:99:c6:70:fb:cf:3d:f0:48:77:84:fe:41:
bb:85:ef:74:b3:c2:80:7c:68:85:2b:cf:43:63:41:8e:e7:95:
6a:3d:cb:39
-----BEGIN CERTIFICATE-----
MIIFjDCCBHSgAwIBAgIDAXzvMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjUwNDI5MTIxMjUxWhcNMjUwNzA0MTIxMjUxWjAYMRYw
FAYDVQQDEw02ODEwYzI0Ny1lMjU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA7fwvoXNeXPwKjUFnZo7dRC5+ar5nd8dfn9+8I4dyfC1M7P5Vpoe+Hcfz
j/IHelGXJoHrxGaqRac2BMxRLb6lYGSw5b0WKcjfKAbjGJMVIGoZ/6nNj2bLw+p8
imPWspj+8HLkpveVehOLPurNBFAQEd6/LWBEfqJDQeIkVkQ+EWPdE07s+qJRFaRr
SxxTn08qguovnsLCzfVQ+64UuRG8KXKTasKdp5sl3N1V5cgUNlFvEPNJlgQlnCxw
ER0kBj35ac5NtSPtXT476G0KLyNKse9H2+3rRJGMjOWvHikbsCDcOtefl4ymi8j0
ENmUEi6d/4PJ0ImWBUmLjv9bQrAmKQIDAQABo4ICrTCCAqkwHQYDVR0OBBYEFBCd
OSxjyo9SYw9AslHo1EFF3qM+MB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC80N0ZGNUMxNjI0RjMxMUYwQjQ1NzVGQUNEQUU0RUM5Qy5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMCcGCCsGAQUFBwEHAQH/BBgwFjAUBAIAATAOMAwDBAaaXUADBAKaXVAwDQYJ
KoZIhvcNAQELBQADggEBAHKIZeXT148YteJh09rb8jITE+RO2DP65+z6l9UyftWa
fkwixjZb65ItxrsSBF/va2oa3LwKqWhmDORlBCa0wqIzcfERxBxzQf2BkcVQ0WRK
kk77yu9sFvELQMvHBygr74SXNOt2DEi8SKqKcYOtPSgzkRBmY6liFJGPW9zZGC8E
GwknE2qUfWX5V4i8pteTy+6mxVp2gM2wPb1ubTe2UriXMXy/jCOehyM4kIfp99/j
13C/8F9ofVNZWlC2BkXCBxJc/03TjTBwEzoQZCnWCLHZZhsyyWuBxhrfIfM1b5nG
cPvPPfBId4T+QbuF73SzwoB8aIUrz0NjQY7nlWo9yzk=
-----END CERTIFICATE-----
Generated at Fri Jun 6 16:56:57 2025 by rpki-client