Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4BD31198107B11F0B3787B55762E951A.roa
File: 4BD31198107B11F0B3787B55762E951A.roa (raw, json)
Hash identifier: q17K4ElqXKlS00gnXWI2Vb4MFUBK97OSnzQpYurRwgY=
Subject key identifier: 1A:C7:B0:4E:06:07:73:94:58:62:4D:F7:FA:9E:A8:F1:54:83:58:A5
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 017777
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4BD31198107B11F0B3787B55762E951A.roa
Signing time: Thu 03 Apr 2025 11:03:39 +0000
ROA not before: Thu 03 Apr 2025 11:03:35 +0000
ROA not after: Mon 14 Apr 2025 11:03:35 +0000
asID: 7018
IP address blocks: 154.82.8.0/21 maxlen: 24
154.83.192.0/21 maxlen: 24
154.83.200.0/21 maxlen: 24
154.83.208.0/24 maxlen: 24
154.83.213.0/24 maxlen: 24
154.83.216.0/21 maxlen: 24
154.83.224.0/21 maxlen: 24
154.83.232.0/21 maxlen: 24
154.83.248.0/21 maxlen: 24
154.84.182.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 06 Apr 2025 00:06:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 96119 (0x17777)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Apr 3 11:03:35 2025 GMT
Not After : Apr 14 11:03:35 2025 GMT
Subject: CN=67ee6b0b-d351
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:60:35:25:a5:0c:e1:1f:15:fe:0d:2a:72:50:
15:4a:89:57:c6:3c:55:d6:e0:1c:35:31:d6:0e:be:
a8:b4:cb:bd:27:79:b2:35:f8:82:ca:17:2e:92:33:
70:3a:b1:82:1e:f0:ed:c6:bc:45:93:65:07:bd:7a:
02:37:ca:3b:08:25:01:25:cc:07:dd:12:c2:1e:a4:
fc:b7:46:82:52:4c:2e:bc:6d:04:ac:99:77:fb:eb:
a9:1f:87:35:4b:c7:27:4c:fd:fd:fc:95:f9:98:b5:
e5:46:d5:7c:ed:72:af:3b:74:b9:48:74:ea:49:fd:
92:f9:51:fd:7f:fa:4f:5b:0b:be:4b:7d:f9:97:a8:
a4:fb:69:5c:74:3b:d9:91:46:db:32:97:e0:1c:c4:
44:a2:9d:2e:9c:d7:15:cd:8e:48:e8:6a:d9:f0:b5:
02:81:e3:a2:b3:40:72:e5:32:20:e1:94:23:01:43:
88:9b:c8:24:54:8b:42:3e:4e:7d:0c:c1:a0:83:02:
48:99:9b:51:8b:05:78:2c:16:46:d7:01:67:af:f6:
2a:69:6b:dc:39:de:4e:5d:74:f2:05:e7:58:65:c2:
da:b8:27:1a:fa:4d:21:cc:ee:6a:3e:79:b8:ee:b4:
9a:78:b6:16:7f:12:3d:cc:c9:f2:eb:ee:d3:f8:fa:
de:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:C7:B0:4E:06:07:73:94:58:62:4D:F7:FA:9E:A8:F1:54:83:58:A5
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4BD31198107B11F0B3787B55762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.82.8.0/21
154.83.192.0-154.83.208.255
154.83.213.0/24
154.83.216.0-154.83.239.255
154.83.248.0/21
154.84.182.0/23
Signature Algorithm: sha256WithRSAEncryption
77:18:f8:a1:07:9f:76:eb:f1:c8:28:e9:28:5e:c9:66:36:90:
d2:e6:53:fd:7a:16:48:d3:c2:68:2a:8a:b5:d7:e0:fd:bf:df:
32:4d:c7:01:ad:cb:9c:da:bf:ed:e4:54:49:4b:af:b2:ed:54:
1e:8b:45:53:af:d7:1d:3a:65:f1:9a:6e:23:a4:62:66:8a:cb:
0a:9a:4b:76:e0:ff:c3:40:66:d7:11:75:51:73:27:fe:2e:0a:
f7:2c:f2:ed:3f:e6:f1:98:55:a4:52:84:97:4d:60:b5:49:4f:
c0:ed:83:59:24:b3:ca:bd:55:a5:6a:3a:0c:d0:c5:c8:07:6f:
c8:27:fb:94:34:ef:8a:06:70:ba:92:18:39:0f:d9:8d:7f:24:
fe:d6:38:4b:ce:a2:6b:84:b9:80:5e:f1:3c:1c:bb:45:2a:d9:
99:1b:5a:61:31:9b:32:63:3d:4d:b0:55:56:07:1c:e7:34:1f:
cc:0b:a9:cc:ac:5e:7f:a4:fa:76:84:d0:05:d8:91:0f:b1:6d:
0e:58:3c:3a:03:23:46:8f:de:0b:21:7f:db:37:65:ba:06:b3:
f8:a4:52:b9:35:b4:eb:32:84:a9:c9:ed:61:ba:07:ea:de:bb:
3b:c3:85:26:e4:32:7b:e4:d8:15:9c:4d:e8:8d:f5:b3:ec:fb:
a4:ca:18:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 18:25:57 2025 by rpki-client