Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/847B2A78097611F0A5BC4B8A762E951A.roa
File: 847B2A78097611F0A5BC4B8A762E951A.roa (raw, json)
Hash identifier: T7SE+r99bgqmsdaIp70qQBnS7uTf9uSBzV5/bup4kig=
Subject key identifier: A0:5D:05:81:63:39:D6:2F:BC:76:FA:15:F9:6E:27:A0:BA:3D:29:3C
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01763C
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/847B2A78097611F0A5BC4B8A762E951A.roa
Signing time: Tue 25 Mar 2025 12:41:48 +0000
ROA not before: Tue 25 Mar 2025 12:41:44 +0000
ROA not after: Tue 03 Jun 2025 12:41:44 +0000
asID: 63139
IP address blocks: 154.93.64.0/24 maxlen: 24
154.93.65.0/24 maxlen: 24
154.93.66.0/24 maxlen: 24
154.93.67.0/24 maxlen: 24
154.93.68.0/24 maxlen: 24
154.93.69.0/24 maxlen: 24
154.93.70.0/24 maxlen: 24
154.93.71.0/24 maxlen: 24
154.93.72.0/24 maxlen: 24
154.93.74.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 06 Apr 2025 00:06:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 95804 (0x1763c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Mar 25 12:41:44 2025 GMT
Not After : Jun 3 12:41:44 2025 GMT
Subject: CN=67e2a48c-f559
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:64:a5:62:4d:3a:9a:90:a1:02:58:80:ce:f9:
04:fb:25:e3:34:4c:2a:c1:4b:9f:d6:7c:d2:43:25:
12:cd:f1:de:69:3f:fb:da:9e:43:eb:f0:cc:25:aa:
53:4a:a2:06:0c:a0:64:d7:c5:52:4b:34:86:3a:b4:
e6:23:b9:91:2f:07:40:14:68:96:0e:0e:46:d6:e0:
c8:b4:fe:04:73:b0:59:82:14:d7:b3:71:f7:fb:82:
1f:02:6a:9f:96:d4:6c:11:e6:0f:9a:18:ce:da:b3:
0f:02:4a:4c:44:aa:30:da:49:49:a1:36:8f:fd:ae:
e6:e8:67:73:c5:c1:34:9a:8e:b8:44:9f:68:1e:6d:
fd:38:59:6e:e3:d8:f5:7d:bd:4c:12:e0:a1:4e:48:
64:49:73:49:3f:e0:1f:17:be:de:a9:f6:f8:10:aa:
5b:91:6a:1e:99:09:7a:4a:14:a7:78:01:bd:3b:e8:
b2:fb:e2:13:91:02:7c:74:c8:76:b3:b7:c1:bd:d4:
16:49:04:ba:d5:5f:d6:d9:2b:5d:48:ad:80:81:64:
10:ba:9b:47:56:1c:09:a5:af:ed:58:ce:16:50:1c:
f4:4d:52:1b:e6:46:75:a0:a9:c7:5f:70:46:e8:43:
ed:68:ef:d1:8f:bc:33:74:3c:ea:31:e4:f4:45:ea:
5b:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:5D:05:81:63:39:D6:2F:BC:76:FA:15:F9:6E:27:A0:BA:3D:29:3C
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/847B2A78097611F0A5BC4B8A762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.93.64.0-154.93.72.255
154.93.74.0/24
Signature Algorithm: sha256WithRSAEncryption
bc:69:4c:93:be:6b:1c:33:34:9c:3f:0c:3b:82:c5:ec:f5:b4:
7e:e3:53:e5:63:19:b5:58:49:86:47:d9:c9:14:1d:7f:72:b5:
a3:a6:d4:9b:a0:20:cc:17:0c:24:8f:89:4c:ca:cd:9f:a8:be:
ca:81:01:01:b7:19:42:5b:88:4e:bf:a5:f6:7c:34:ea:33:81:
a3:cd:b7:aa:3e:4c:f5:aa:b4:c1:86:51:38:e6:a2:9d:0b:d9:
a0:52:1b:31:d5:ff:b1:2e:66:66:7f:09:40:a3:3f:11:c3:77:
26:c7:92:58:0f:ae:0c:84:65:ce:8f:0c:c5:9f:83:97:95:0a:
ee:d0:74:2b:7e:94:c8:81:c2:d5:8e:99:d0:0b:3c:a2:6e:2c:
7b:91:8d:72:27:7e:2a:32:72:b7:1e:1f:cd:70:6d:7d:24:a7:
95:b8:f9:58:9d:35:b0:ee:ae:40:74:c8:8b:f6:f9:b3:f4:65:
c1:97:3e:f8:c6:ed:bd:47:4f:db:80:c3:0c:f5:5b:52:bb:14:
b0:19:bf:d9:a0:bf:66:6d:ce:2c:72:5c:99:78:d1:c5:a0:44:
60:a0:3f:a1:d9:b8:7b:ce:b6:09:99:34:4e:fe:a5:b1:c6:7d:
b8:31:17:c8:36:31:b5:7b:e2:17:59:35:76:5f:4a:9f:07:2c:
91:63:56:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 11:00:21 2025 by rpki-client