Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/82B54238F8DB11EFAA83D74C762E951A.roa
File: 82B54238F8DB11EFAA83D74C762E951A.roa (raw, json)
Hash identifier: YmUgoMVqSkbne2G6wx0CCIRav8t1dUeUOOcw6qh185g=
Subject key identifier: 0A:9E:14:DB:96:F7:A8:9B:1B:66:F3:2D:0D:93:16:E0:46:2F:CD:46
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 017194
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/82B54238F8DB11EFAA83D74C762E951A.roa
Signing time: Tue 04 Mar 2025 09:31:55 +0000
ROA not before: Tue 04 Mar 2025 09:31:51 +0000
ROA not after: Sat 19 Apr 2025 09:31:51 +0000
asID: 138915
IP address blocks: 154.93.32.0/24 maxlen: 24
154.93.33.0/24 maxlen: 24
154.93.50.0/24 maxlen: 24
154.93.51.0/24 maxlen: 24
154.93.58.0/24 maxlen: 24
154.93.59.0/24 maxlen: 24
154.93.60.0/24 maxlen: 24
154.93.61.0/24 maxlen: 24
154.93.62.0/24 maxlen: 24
154.93.63.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 06 Apr 2025 12:38:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 94612 (0x17194)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Mar 4 09:31:51 2025 GMT
Not After : Apr 19 09:31:51 2025 GMT
Subject: CN=67c6c88a-269d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:4b:8a:ad:76:88:67:19:6d:bd:61:e8:58:a0:
71:80:e6:bb:a0:e7:0e:2a:a8:53:c7:24:02:65:02:
83:69:cf:e3:bb:28:33:f2:a2:44:92:0b:b4:5b:44:
bc:a9:60:a7:84:7f:43:ae:3c:cc:51:03:b3:c2:e9:
3e:6d:5c:b0:65:6a:31:1c:b6:ed:58:87:be:c9:64:
c7:be:9a:4c:25:e8:10:b3:75:e8:85:47:2a:12:d5:
15:95:e2:c5:2d:71:4d:59:e0:2f:5c:2a:7e:56:e2:
c5:4b:9b:86:f9:41:16:8e:22:05:f8:e7:68:93:e3:
1f:b7:b8:98:6c:ce:a4:de:a5:95:08:7d:76:72:5d:
55:6c:9c:1a:e2:89:85:e8:38:09:f5:e4:51:74:cb:
6e:11:b2:0e:2f:b1:13:99:83:42:8d:34:4d:4e:e8:
98:a8:95:13:80:3d:bf:65:c9:a3:2f:f8:e4:a9:25:
70:1a:f7:9e:29:f6:b5:83:e9:0d:f6:91:fc:5a:4c:
61:62:97:85:b1:5a:c1:5f:50:7e:5d:bf:35:f7:80:
19:a8:ff:65:dd:51:91:c0:57:56:6d:72:e1:f4:cb:
21:9c:1b:7c:13:fc:59:cc:90:1a:0c:6b:36:f3:3f:
4b:b0:6f:01:e8:b3:56:12:2f:3d:02:f5:ed:50:7e:
eb:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:9E:14:DB:96:F7:A8:9B:1B:66:F3:2D:0D:93:16:E0:46:2F:CD:46
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/82B54238F8DB11EFAA83D74C762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.93.32.0/23
154.93.50.0/23
154.93.58.0-154.93.63.255
Signature Algorithm: sha256WithRSAEncryption
d5:bb:52:7d:bd:e1:3a:5b:26:57:34:93:56:d6:e1:a7:49:5f:
fc:da:83:e4:2d:b3:e8:bb:0a:b8:1a:56:d1:84:d6:ec:b4:20:
0e:91:95:25:3c:0c:d7:db:4f:6e:43:a4:0a:c5:ee:be:8f:ff:
d8:be:d4:fe:65:1b:71:ce:24:77:6a:d7:1d:7e:ca:f3:c7:fb:
08:c4:5e:05:94:29:84:08:0f:bb:2f:ff:55:46:69:7c:ee:c5:
d0:50:96:40:5f:27:05:34:3d:98:85:00:71:e6:b0:e8:69:6c:
d8:cb:a0:fc:c8:6d:08:40:c3:e3:0c:90:d7:90:3e:4e:12:3e:
7f:d6:85:2e:94:eb:1b:77:89:e4:7a:72:1f:fb:f6:f4:73:a6:
0a:fa:8f:2c:19:88:9f:15:ca:88:f2:97:ea:99:6b:60:ad:5f:
21:85:68:18:90:c2:2d:4f:7e:47:53:dd:d6:a4:03:d5:cd:f4:
5b:43:8d:6d:0a:93:01:6f:b4:dd:b7:81:8c:f1:89:09:0c:47:
9f:fb:f0:33:05:1e:ab:e8:f8:9e:d5:7e:25:7b:2a:84:83:08:
93:c2:d0:66:2f:d4:ff:e6:e6:06:aa:63:f8:1e:5b:5c:b7:6c:
3e:43:ec:f9:78:a3:35:84:76:86:48:80:a8:a7:27:80:a7:0c:
9e:92:46:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 01:53:05 2025 by rpki-client