Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/761155BA041811F0837F30AD762E951A.roa
File: 761155BA041811F0837F30AD762E951A.roa (raw, json)
Hash identifier: ymdLyWdpFKoaWnj4JWI5KnQP3mrxCYgyri+6dSlIlEg=
Subject key identifier: 42:B3:A7:7F:96:90:06:AA:F5:9F:38:2B:A7:C9:C6:FA:6F:2F:31:9D
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0174CE
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/761155BA041811F0837F30AD762E951A.roa
Signing time: Tue 18 Mar 2025 16:45:56 +0000
ROA not before: Tue 18 Mar 2025 16:45:51 +0000
ROA not after: Mon 05 May 2025 16:45:51 +0000
asID: 202656
IP address blocks: 154.218.30.0/24 maxlen: 24
154.219.17.0/24 maxlen: 24
154.219.18.0/24 maxlen: 24
154.219.19.0/24 maxlen: 24
154.219.20.0/24 maxlen: 24
154.219.21.0/24 maxlen: 24
154.222.193.0/24 maxlen: 24
154.222.194.0/24 maxlen: 24
154.222.195.0/24 maxlen: 24
154.222.196.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 06 Apr 2025 00:06:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 95438 (0x174ce)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Mar 18 16:45:51 2025 GMT
Not After : May 5 16:45:51 2025 GMT
Subject: CN=67d9a343-3d41
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:94:c3:96:b5:9d:7f:8f:e7:48:5f:2e:2e:eb:
de:70:58:0d:63:d0:7e:a9:a5:95:9b:b2:b0:79:57:
db:69:72:7d:62:8f:33:f8:8a:c8:2b:10:cb:17:c2:
98:bb:25:99:01:54:04:6f:07:10:c1:9f:95:5b:b3:
6f:d6:ff:59:05:a3:b6:3b:ba:07:43:98:03:c0:b1:
c7:6d:30:72:0c:58:f2:37:82:86:89:2f:56:21:e9:
f6:09:fa:ab:3c:8f:89:62:1b:91:78:75:83:06:ce:
16:54:78:cd:37:75:8c:71:f5:e9:c9:04:49:01:e3:
d0:d2:2f:04:f1:0e:59:50:11:20:0d:d3:ef:c0:53:
1b:20:f6:49:38:68:df:c0:57:50:31:cc:93:13:c0:
b3:79:e7:45:4b:ed:15:81:29:6c:58:bb:7e:45:ca:
a6:ae:7e:95:62:69:8a:86:bb:d4:c5:03:c9:dc:2b:
28:88:28:4a:70:8f:f1:e0:f0:f9:54:95:ef:ff:e9:
8e:ec:f0:a6:fa:b5:1b:b1:5f:a0:dd:ea:1f:a8:80:
f0:74:a8:90:b5:18:a4:b6:78:2d:c7:bf:b9:3f:31:
97:e8:c7:02:cd:84:36:ac:58:e5:1e:0a:c6:3a:f4:
7e:14:18:0c:c9:39:55:05:06:7b:e3:d0:8e:89:7c:
8c:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:B3:A7:7F:96:90:06:AA:F5:9F:38:2B:A7:C9:C6:FA:6F:2F:31:9D
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/761155BA041811F0837F30AD762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.218.30.0/24
154.219.17.0-154.219.21.255
154.222.193.0-154.222.196.255
Signature Algorithm: sha256WithRSAEncryption
bb:29:2a:12:c6:6e:e1:5b:0c:72:0c:e8:21:48:33:04:cb:4f:
e9:30:69:b0:5f:77:83:1e:61:60:2b:b4:1e:ed:32:e8:3c:42:
f5:a8:a0:4f:f1:23:71:11:a9:5f:63:4d:e5:90:d9:89:ef:7e:
d6:57:f8:7d:76:69:d0:5c:d7:cf:d2:97:95:a1:e7:aa:e2:48:
53:db:a1:b3:c4:6c:b3:82:0a:5b:59:a7:b5:0c:c2:93:41:68:
5c:55:9b:87:89:7c:21:f2:6f:03:f9:c0:12:e1:72:97:68:6a:
9f:8b:e7:fc:7a:df:fd:81:64:f0:e5:a5:56:5d:26:7f:f1:90:
f6:c0:73:3c:39:97:c9:b1:28:e7:ab:74:25:c4:0c:f0:e3:0d:
d6:47:b6:07:ed:54:ca:39:da:35:f1:9b:36:76:6c:ff:6a:84:
32:d0:ff:c9:da:29:1e:15:5a:da:17:d8:b3:94:0c:8d:b1:b7:
f2:0f:59:b7:aa:59:d9:e6:a0:95:8b:0f:2e:60:7a:35:6f:0a:
20:f1:c6:65:ab:cb:9c:02:08:55:60:c6:b3:bf:da:26:04:44:
97:c2:d2:bb:d3:b3:96:29:0d:b1:2c:4d:19:34:05:9a:c5:f7:
18:77:cf:a3:ad:b1:6c:27:21:ec:33:0a:57:3c:00:03:0c:80:
7e:5d:88:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 10:51:47 2025 by rpki-client