Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/823A292A408B11F08C72A684DAE4EC9C.roa
File: 823A292A408B11F08C72A684DAE4EC9C.roa (raw, json)
Hash identifier: YeTcwIbB0XvXTTiIc2o/QqCZ51j4T/9IhBiGvesCMOE=
Subject key identifier: 97:33:0C:D7:A3:7B:04:EC:9B:EB:BE:9E:C7:09:BC:CD:70:87:ED:B3
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0184A1
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/823A292A408B11F08C72A684DAE4EC9C.roa
Signing time: Tue 03 Jun 2025 15:00:38 +0000
ROA not before: Tue 03 Jun 2025 15:00:33 +0000
ROA not after: Sun 03 Aug 2025 15:00:33 +0000
asID: 63139
IP address blocks: 154.93.64.0/24 maxlen: 24
154.93.65.0/24 maxlen: 24
154.93.66.0/24 maxlen: 24
154.93.67.0/24 maxlen: 24
154.93.68.0/24 maxlen: 24
154.93.69.0/24 maxlen: 24
154.93.70.0/24 maxlen: 24
154.93.71.0/24 maxlen: 24
154.93.72.0/24 maxlen: 24
154.93.73.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 07 Jun 2025 00:06:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 99489 (0x184a1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 3 15:00:33 2025 GMT
Not After : Aug 3 15:00:33 2025 GMT
Subject: CN=683f0e16-378f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:c5:4c:bb:66:5b:df:05:64:db:37:3b:c4:31:
e3:41:19:25:e5:d9:e5:3b:34:7e:a0:01:12:fc:37:
c5:d8:b8:6b:2b:3d:f1:5a:91:38:ad:85:47:76:1b:
0d:ba:fb:da:f6:06:bb:1e:69:0f:fd:aa:2c:1d:47:
e5:71:ff:b5:1e:3e:1b:89:e5:f9:f1:7c:94:e2:c8:
ea:64:6a:95:ba:fc:31:58:9a:51:45:bc:d1:db:3f:
da:63:47:e0:f6:ce:94:58:c1:db:e4:40:92:20:ff:
db:82:79:b5:82:ef:8f:83:fc:6c:42:49:44:9b:ab:
09:1d:69:f3:84:e4:fb:4d:7c:09:fa:0b:de:24:b0:
1c:1a:53:bb:f9:c5:c5:de:cf:df:bb:bf:55:0e:75:
37:f1:bf:8a:91:aa:fc:f1:11:96:41:24:5e:12:e9:
af:0f:9f:92:c3:65:e9:05:dd:23:d5:19:ec:b1:b6:
ab:ce:b9:26:30:aa:91:25:9e:06:4d:39:91:89:6e:
89:31:7a:fb:d4:70:57:73:47:f9:ad:06:8b:82:89:
88:55:12:67:16:09:ab:76:d2:21:19:c5:87:23:da:
45:53:58:9c:41:95:e2:5e:77:3f:4b:ef:79:5b:bc:
bb:b1:9d:28:f3:fb:2f:a3:aa:4a:75:4a:ba:b2:b3:
e2:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:33:0C:D7:A3:7B:04:EC:9B:EB:BE:9E:C7:09:BC:CD:70:87:ED:B3
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/823A292A408B11F08C72A684DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.93.64.0-154.93.73.255
Signature Algorithm: sha256WithRSAEncryption
9b:39:89:15:a2:a3:8b:ba:b1:6d:06:be:3a:02:c7:71:f4:ea:
ff:7e:3b:e7:41:64:03:26:af:ff:22:07:7c:ec:01:89:f4:7d:
05:2d:eb:f9:16:5e:78:96:06:f7:9d:cd:42:2c:39:a2:1f:3b:
c3:0f:19:38:b8:06:87:07:76:cd:cf:b1:99:9d:5a:5c:c6:e4:
70:30:95:91:ea:0d:76:ff:75:d5:35:1e:66:33:14:77:a4:a2:
e5:d9:8a:8f:7b:1c:d6:86:b9:8f:fe:2f:c9:e5:bb:64:37:ea:
7f:f9:81:fe:16:bd:27:7e:bb:4b:59:40:ff:b5:83:81:d3:47:
08:4a:f3:b4:ab:a8:d6:28:d6:ba:a1:a2:d0:07:f7:41:cf:ac:
f5:b6:70:53:52:a5:3a:80:54:1e:0c:e2:79:31:34:76:c9:b7:
21:1f:3b:fb:32:5e:d4:ba:a0:25:ed:4f:2b:3a:50:22:55:f8:
ee:2b:fa:0c:4b:40:21:6b:5b:d6:26:73:26:60:b3:6c:5f:a5:
4e:b8:3e:01:9e:e4:2c:ce:b5:da:df:90:59:ff:b2:f2:63:1f:
35:58:5b:dd:11:41:6f:81:04:f0:2e:c5:7f:93:61:de:be:0c:
b8:2a:20:00:97:0b:8e:f5:d2:31:94:41:3e:9f:b4:94:bf:d0:
4f:ca:79:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 5 19:02:47 2025 by rpki-client