Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7497551C408C11F092EA028BDAE4EC9C.roa
File: 7497551C408C11F092EA028BDAE4EC9C.roa (raw, json)
Hash identifier: Q3Kuu5v4V8EF4xyI3rO8tvgBl45ploKL1ObZ1dt8Q6A=
Subject key identifier: A4:15:CE:BA:E5:6E:DE:73:E5:45:BC:B4:CA:A0:63:CB:6E:09:8B:80
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0184A3
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7497551C408C11F092EA028BDAE4EC9C.roa
Signing time: Tue 03 Jun 2025 15:07:25 +0000
ROA not before: Tue 03 Jun 2025 15:07:20 +0000
ROA not after: Sun 03 Aug 2025 15:07:20 +0000
asID: 63139
IP address blocks: 154.93.74.0/24 maxlen: 24
154.93.75.0/24 maxlen: 24
154.93.76.0/24 maxlen: 24
154.93.77.0/24 maxlen: 24
154.93.78.0/24 maxlen: 24
154.93.79.0/24 maxlen: 24
154.93.80.0/24 maxlen: 24
154.93.81.0/24 maxlen: 24
154.93.82.0/24 maxlen: 24
154.93.83.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 10 Jun 2025 00:06:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 99491 (0x184a3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 3 15:07:20 2025 GMT
Not After : Aug 3 15:07:20 2025 GMT
Subject: CN=683f0fad-1fa6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:d7:cd:dd:fd:89:f0:19:71:c1:e5:2e:6a:a0:
90:90:83:5f:5c:5d:6a:06:36:78:b4:40:f4:18:09:
c1:6b:1e:a2:cf:e5:b3:98:6b:bb:0a:ab:a2:fc:cb:
98:ea:ad:3b:19:35:4b:b5:a2:91:68:f2:c6:d9:08:
fb:5e:22:6f:b7:e6:85:a6:5e:ac:9a:3b:3b:af:8c:
f9:5d:75:cd:fb:68:45:68:37:9f:4e:4b:9a:0c:22:
82:74:56:60:27:92:3e:6b:27:ae:c2:26:1d:38:fd:
f5:54:7f:86:27:e1:fa:7c:d1:32:48:fb:be:e6:37:
e6:01:2f:dd:68:e9:29:1c:78:e6:00:73:8d:6c:e6:
0b:3e:1f:3d:7c:93:bf:8e:7f:91:fb:19:ed:a0:3d:
5b:bd:db:00:a1:5e:21:50:f2:4a:b6:f7:48:b1:f8:
9c:72:2b:e2:df:60:2b:53:a2:cf:e4:54:39:fd:c6:
ea:26:5e:aa:72:91:f3:fc:a9:53:ed:69:b0:86:c0:
36:dc:9e:e8:cc:c6:69:09:72:c2:16:ee:ea:f4:68:
77:6e:78:c7:74:95:6a:92:fe:65:d9:68:6b:c7:09:
1f:83:c0:0a:fe:c2:60:1a:2e:d6:28:97:3d:a3:f6:
39:8c:5b:b7:9d:d0:de:04:55:dc:43:82:f1:3f:7b:
36:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:15:CE:BA:E5:6E:DE:73:E5:45:BC:B4:CA:A0:63:CB:6E:09:8B:80
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7497551C408C11F092EA028BDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.93.74.0-154.93.83.255
Signature Algorithm: sha256WithRSAEncryption
d3:43:fb:42:b0:51:ec:d6:97:7f:42:b2:fd:ae:0e:db:6f:42:
e3:cb:58:d3:db:00:a5:28:ee:8a:e3:a6:d7:88:d9:2b:9c:96:
ec:06:18:3d:08:e9:96:89:c2:81:96:a7:53:c6:e3:a6:d5:36:
a1:d3:8c:66:4b:d4:8d:e3:e0:9d:00:01:45:0c:5e:c4:b6:c8:
90:17:41:91:c1:2a:86:fa:72:c6:7f:7a:2b:33:e3:2b:d7:1c:
69:4a:b1:2f:81:c5:f1:2b:06:70:47:c6:dd:fb:9c:3f:40:97:
16:9f:50:e1:3c:d2:33:c5:fc:85:b8:da:cb:7d:aa:72:44:02:
d7:ce:aa:64:64:ac:d1:27:26:13:4b:42:08:7e:a0:dd:a0:1c:
fa:81:2d:28:64:49:3f:fa:17:4e:40:fb:a8:b7:c0:01:65:79:
b2:11:20:3a:74:b8:8f:78:22:4b:d6:c0:5e:ea:7c:12:35:13:
5a:4b:46:bf:93:97:7b:33:20:9f:58:0c:a7:7a:6b:6a:3a:36:
95:48:04:6c:0e:c5:2c:bf:79:7e:c2:83:09:5d:93:c4:6f:ad:
f7:85:33:5a:9e:94:52:87:c3:fd:68:48:49:c6:f5:03:aa:f0:
dd:8b:24:ad:c3:57:47:18:12:a3:20:85:35:57:9d:86:e6:b1:
e7:e6:c1:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 08:21:01 2025 by rpki-client