Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/67FC583CF8E511EF9F23D78D762E951A.roa
File: 67FC583CF8E511EF9F23D78D762E951A.roa (raw, json)
Hash identifier: qUX4bLU1rGqenBfitO6/eaHUvuT4/mi1ygIYI9sSmbo=
Subject key identifier: 00:33:9C:E0:A0:DC:E0:1A:C3:12:35:32:8F:21:28:F5:39:DA:64:E8
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0171B4
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/67FC583CF8E511EF9F23D78D762E951A.roa
Signing time: Tue 04 Mar 2025 10:42:45 +0000
ROA not before: Tue 04 Mar 2025 10:42:40 +0000
ROA not after: Sun 06 Apr 2025 10:42:40 +0000
asID: 203020
IP address blocks: 154.217.16.0/24 maxlen: 24
154.217.17.0/24 maxlen: 24
154.217.18.0/24 maxlen: 24
154.217.19.0/24 maxlen: 24
154.217.20.0/24 maxlen: 24
154.217.59.0/24 maxlen: 24
154.217.60.0/24 maxlen: 24
154.217.61.0/24 maxlen: 24
154.217.62.0/24 maxlen: 24
154.217.63.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 06 Apr 2025 10:42:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 94644 (0x171b4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Mar 4 10:42:40 2025 GMT
Not After : Apr 6 10:42:40 2025 GMT
Subject: CN=67c6d925-6965
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:cb:6e:ab:e9:6a:65:7a:60:8a:75:7b:62:b2:
96:31:41:73:a9:a9:49:fd:9e:64:ed:75:fc:ff:dc:
f2:d3:86:0a:0e:8d:bc:e9:63:e2:cb:63:45:5b:9d:
40:97:f5:6d:fb:c8:b7:26:04:a4:5e:f5:9b:36:d7:
56:2b:25:54:6a:f9:1f:be:84:f3:5b:57:bf:79:2e:
f6:46:60:b5:4d:90:7c:ff:a9:39:24:b2:8a:a9:de:
98:98:d3:44:ea:4b:4a:96:1c:8c:68:71:35:14:2e:
82:2e:fb:47:5f:c5:ac:b9:be:15:d2:62:e5:92:86:
dc:81:da:c0:c0:70:b8:c6:ab:4c:0b:02:3d:52:8e:
08:00:00:dc:22:e0:b2:cb:de:9f:68:cb:ca:5b:74:
d4:2a:63:0b:e5:93:39:84:04:f8:38:97:85:55:2b:
75:cc:b3:54:df:d2:a7:d3:76:2a:80:b6:4a:6c:dc:
5a:06:7f:0b:7b:ba:7e:ed:8f:58:8e:b9:66:d0:0e:
06:4e:f8:89:84:4d:34:eb:d4:ce:e7:52:71:f3:0a:
47:0f:34:df:ae:f6:41:13:03:25:77:0a:ea:d5:06:
d1:b4:f2:c3:c9:30:3b:dc:0f:08:5d:a2:c0:ac:d6:
14:e0:b4:29:56:ec:b3:87:70:cf:f8:05:b1:6b:03:
b5:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:33:9C:E0:A0:DC:E0:1A:C3:12:35:32:8F:21:28:F5:39:DA:64:E8
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/67FC583CF8E511EF9F23D78D762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.217.16.0-154.217.20.255
154.217.59.0-154.217.63.255
Signature Algorithm: sha256WithRSAEncryption
02:6d:7b:19:da:43:84:a0:36:0c:90:36:94:8d:10:7e:86:be:
59:45:59:4b:84:07:12:df:ff:75:6e:16:66:e6:72:7c:16:76:
6e:db:c6:b7:d3:52:1b:50:68:45:0e:6b:65:c6:fe:73:bb:2d:
7f:a0:ac:03:5e:6b:cf:88:23:2a:9c:d5:78:0d:58:15:67:a5:
c4:6c:14:ed:b0:88:95:d4:c3:3a:5f:39:71:fe:19:30:67:79:
bf:bf:08:0b:b1:02:24:ea:81:3b:42:90:63:63:f6:47:b0:d3:
b9:2a:88:0a:f6:b8:70:ee:c2:59:e9:7f:81:67:a0:8d:d4:73:
36:ae:e5:cd:a5:e7:48:28:31:08:f2:6f:d5:c6:36:7f:7f:06:
b3:fa:3a:28:68:5a:dd:b8:21:55:38:44:fd:c8:f6:6f:d7:0d:
bf:bb:11:fa:80:a7:94:ca:5d:92:dd:e0:4a:42:e1:bc:c5:f9:
9c:c0:41:d5:04:8f:eb:7e:21:d7:23:d0:4a:51:64:5e:a8:cc:
a7:46:49:29:0b:dc:c6:1b:96:bf:1d:76:b2:50:7e:a3:8b:ef:
89:1b:15:b7:17:11:a9:3d:84:a7:e7:ba:e0:12:d5:d4:83:f6:
33:13:80:7e:73:d6:00:36:8d:85:be:2e:39:90:a4:5f:14:3c:
4f:50:4e:8d
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Sat Apr 5 01:53:00 2025 by rpki-client