Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6793BB90F3E711EFB983A75A762E951A.roa
File: 6793BB90F3E711EFB983A75A762E951A.roa (raw, json)
Hash identifier: XcC/rQQMid73YMGwwaexKSPvvexUaMkC5jZPiUXacjs=
Subject key identifier: 8D:49:CB:45:A3:29:05:53:9F:79:46:33:17:48:35:F8:8E:2E:3D:38
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01607E
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6793BB90F3E711EFB983A75A762E951A.roa
Signing time: Wed 26 Feb 2025 02:14:27 +0000
ROA not before: Wed 26 Feb 2025 02:14:23 +0000
ROA not after: Thu 19 Feb 2026 02:14:23 +0000
asID: 984
IP address blocks: 154.203.10.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 13 Apr 2025 00:12:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 90238 (0x1607e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Feb 26 02:14:23 2025 GMT
Not After : Feb 19 02:14:23 2026 GMT
Subject: CN=67be7903-13ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:09:af:2f:19:d4:66:06:c5:cf:a8:01:00:75:
c6:97:f9:20:dc:fd:ac:e8:e4:23:46:c4:b3:08:ed:
c5:56:fe:e6:71:ca:49:bd:5f:ca:48:35:85:54:2b:
70:00:c7:c6:a1:dd:b7:b3:57:ba:01:ef:5e:a3:d0:
2f:d6:e0:65:cb:ea:18:06:2e:01:5b:22:d5:0a:bf:
ee:f3:66:61:34:65:a1:f2:64:f7:52:6f:6f:04:36:
d2:b3:ab:87:b2:79:9f:91:7b:e5:4a:c6:e3:56:e8:
86:2a:94:dc:0c:c0:72:6e:a9:d4:bd:f1:e2:59:1d:
50:da:75:81:44:25:f9:48:53:52:5a:18:6c:1f:64:
93:2a:f8:9c:4f:af:5c:23:e8:00:e6:ab:48:4c:8f:
d9:24:6f:b9:29:19:c8:6f:43:14:c5:cb:03:f9:4f:
16:b3:ee:b1:7c:4c:47:5f:bd:c7:ff:e8:50:77:33:
38:8b:5f:b1:81:0d:1f:f0:0d:e9:e4:69:0b:63:e1:
76:03:da:79:d0:06:06:b2:50:57:7e:ce:54:51:92:
7d:3f:26:68:08:b5:63:9b:18:a1:61:20:01:b5:0f:
83:63:6e:2c:fa:80:1a:a1:8e:4e:af:b2:ea:7a:11:
c1:3d:e5:74:0e:a2:0d:a5:64:6c:a3:c3:71:07:4d:
9e:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:49:CB:45:A3:29:05:53:9F:79:46:33:17:48:35:F8:8E:2E:3D:38
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6793BB90F3E711EFB983A75A762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.203.10.0/24
Signature Algorithm: sha256WithRSAEncryption
2e:b3:45:b2:cf:fe:94:28:e3:64:47:d4:3a:3b:c3:ca:b2:a8:
15:29:e5:ed:12:22:8e:ea:43:b9:02:df:3d:ab:37:8a:fc:e7:
5c:77:e6:ab:9f:90:ba:41:ea:30:6f:0a:5f:8a:46:68:a5:0f:
ef:d9:da:2c:90:61:c7:62:8c:ab:c0:74:09:bb:e7:66:6a:65:
9b:f2:a8:4c:27:eb:2e:48:5e:df:07:7c:e1:3b:f0:e1:9e:2a:
c2:59:1b:7b:58:f4:77:c8:73:78:c8:a0:a7:65:88:83:0f:9f:
eb:6f:7b:68:4f:3a:bd:9d:f3:80:6e:fe:52:18:ae:22:57:86:
33:66:55:1c:75:1d:16:a7:9b:ed:b6:fd:76:40:e8:92:f0:f5:
8e:e0:d3:6c:2e:82:d9:fb:4d:c4:99:4b:9a:2e:4f:63:ce:17:
19:ff:5c:73:b9:6f:e8:2e:16:c6:6a:1e:3d:f2:60:2d:a0:31:
8b:05:03:59:60:09:1c:ef:ee:c5:bf:c0:05:6c:9b:c9:ad:ad:
f2:f4:26:6c:18:dc:07:46:34:4f:bd:df:9a:f5:e3:b7:81:b0:
00:4b:0d:94:d5:69:62:ce:b0:c1:5e:7b:12:e2:9f:89:e6:08:
5f:14:b2:bd:15:45:2a:0e:56:f6:37:d7:98:aa:f8:b2:fb:87:
d8:1c:83:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 11 03:43:57 2025 by rpki-client