Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/48F318D2095611F0B945BB47762E951A.roa
File: 48F318D2095611F0B945BB47762E951A.roa (raw, json)
Hash identifier: 6bVsFKD8C0hSGKIkqAv1pd92mX3/ab/oslW7IKHaB0o=
Subject key identifier: 06:D1:60:11:16:B1:86:CB:2D:E1:ED:58:82:04:41:F0:F5:31:10:88
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 017601
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/48F318D2095611F0B945BB47762E951A.roa
Signing time: Tue 25 Mar 2025 08:51:04 +0000
ROA not before: Tue 25 Mar 2025 08:51:01 +0000
ROA not after: Thu 15 May 2025 08:51:01 +0000
asID: 63139
IP address blocks: 154.203.162.0/24 maxlen: 24
154.203.163.0/24 maxlen: 24
154.203.164.0/24 maxlen: 24
154.203.165.0/24 maxlen: 24
154.203.166.0/24 maxlen: 24
154.203.167.0/24 maxlen: 24
154.203.168.0/24 maxlen: 24
154.203.169.0/24 maxlen: 24
154.203.170.0/24 maxlen: 24
154.203.172.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 09 Apr 2025 21:23:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 95745 (0x17601)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Mar 25 08:51:01 2025 GMT
Not After : May 15 08:51:01 2025 GMT
Subject: CN=67e26e78-5acc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:19:27:97:28:32:ef:5e:3b:96:2d:e1:8e:84:
af:19:e2:a4:23:de:39:63:b1:3e:52:70:8b:0d:df:
6d:65:e3:20:74:18:da:78:43:bb:8e:01:7d:b9:af:
5b:14:d7:1b:1c:4c:1d:cb:00:c0:b7:04:4a:5c:3b:
42:1e:5a:12:55:80:ad:a5:ef:4d:a8:8f:0f:8a:d2:
a5:90:24:0f:bf:10:b6:94:9a:cd:06:df:ab:a9:f6:
21:f0:c2:3b:19:d8:63:6f:55:e3:0e:60:92:15:5c:
9c:b3:0d:32:b3:85:63:68:ae:f2:7a:be:2c:40:ae:
37:af:30:55:ff:33:b2:c5:f2:e5:b9:84:d1:99:6f:
9f:94:39:6e:74:d7:43:91:f1:fc:e7:6c:7e:25:23:
78:2c:bf:f9:25:3d:a3:f3:26:42:c1:ba:d8:9a:8c:
4f:a6:1d:83:9b:34:68:53:a2:0a:dc:b3:a6:f0:96:
8b:3f:20:19:81:c8:f3:42:6d:09:9d:4a:db:5b:ae:
92:c3:00:30:09:08:8e:ba:10:33:0e:56:ec:3d:ce:
68:49:3d:a6:eb:e7:04:43:67:d4:02:f6:2b:49:eb:
8e:66:76:da:98:63:a4:17:b3:bf:0f:59:d4:97:fa:
26:75:9f:56:89:4f:7e:d1:47:21:3f:6b:48:19:63:
5e:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:D1:60:11:16:B1:86:CB:2D:E1:ED:58:82:04:41:F0:F5:31:10:88
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/48F318D2095611F0B945BB47762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.203.162.0-154.203.170.255
154.203.172.0/24
Signature Algorithm: sha256WithRSAEncryption
a9:fd:cd:6d:2e:4f:2c:14:c4:0e:a9:7e:41:5c:c0:5f:57:c9:
a4:ed:df:1a:fa:93:7c:31:75:61:b7:de:f6:a8:4e:f3:2e:28:
ea:34:f3:55:03:da:f7:e8:82:ba:9c:f9:ff:dc:47:bc:a0:1a:
f8:07:8b:a2:b6:0f:31:d1:a9:d2:42:3e:92:9e:78:c2:07:d4:
66:89:eb:21:19:c8:3b:6d:5c:f6:64:ea:f1:07:2d:5e:44:27:
91:e3:9a:e6:8e:31:ff:89:14:5f:4b:9e:fb:f6:ee:0d:05:56:
70:1a:66:a5:a7:73:d2:1f:09:a7:78:b3:24:64:bc:a0:d0:fa:
6b:dd:2c:a4:d9:f7:be:54:3f:41:90:75:1a:ac:19:8c:2a:fd:
ba:f9:12:6a:f7:ab:7c:cb:b9:20:54:0a:43:4c:53:81:d5:db:
cb:e8:e3:cc:18:4e:8f:cf:84:63:79:9e:84:92:f0:25:4c:57:
4a:7b:63:59:24:b9:db:f4:33:d2:ab:0f:78:e5:45:fd:f2:3c:
de:87:d7:d8:6d:8c:53:88:aa:c6:72:a6:4f:8d:fa:2f:8c:4a:
e4:0e:15:b5:92:70:84:21:ad:f3:c1:85:2c:af:33:a9:fe:3b:
9e:bc:32:b8:2a:ae:5a:9b:73:f3:42:2f:00:a8:ff:0c:86:e8:
bc:d0:7d:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 02:08:40 2025 by rpki-client