Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8536B2B60FA711F0B93C5057762E951A.roa
File: 8536B2B60FA711F0B93C5057762E951A.roa (raw, json)
Hash identifier: KHDi3Vi17qQKVCDgfht4tRBUd8QsOrmxP3dKFkA+lpQ=
Subject key identifier: 50:73:34:8E:CC:80:C3:23:D4:E9:2F:72:AF:35:52:84:98:82:EA:FA
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01774C
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8536B2B60FA711F0B93C5057762E951A.roa
Signing time: Wed 02 Apr 2025 09:47:42 +0000
ROA not before: Wed 02 Apr 2025 09:47:38 +0000
ROA not after: Fri 11 Apr 2025 09:47:38 +0000
asID: 200373
IP address blocks: 154.213.193.0/24 maxlen: 24
154.213.194.0/24 maxlen: 24
154.213.195.0/24 maxlen: 24
154.213.196.0/24 maxlen: 24
154.213.197.0/24 maxlen: 24
154.213.198.0/24 maxlen: 24
154.213.199.0/24 maxlen: 24
154.213.202.0/24 maxlen: 24
154.213.203.0/24 maxlen: 24
154.213.204.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 11 Apr 2025 09:47:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 96076 (0x1774c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Apr 2 09:47:38 2025 GMT
Not After : Apr 11 09:47:38 2025 GMT
Subject: CN=67ed07be-38a7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:d3:ac:b4:e1:5f:bc:99:2e:23:48:31:08:8b:
1d:aa:ec:99:e2:11:18:d0:71:ca:24:34:6d:af:3c:
95:35:e7:ba:96:ee:59:7f:42:49:69:1e:27:34:aa:
8e:63:9a:ba:13:ea:2e:a2:40:01:a9:b5:6b:5e:4d:
54:ac:98:b6:9b:e2:2a:e9:37:0d:60:ff:cd:61:31:
56:9c:5f:bd:03:af:d5:22:c1:47:b6:44:4e:53:c7:
51:88:14:22:82:13:ef:15:e8:2d:dd:2b:b3:c6:ba:
72:42:50:af:dd:00:c1:c6:d6:7a:b9:4f:61:58:59:
9c:3e:d3:21:b6:a7:8c:9b:50:03:92:1c:4e:93:a1:
bb:83:62:6e:2c:01:88:10:1b:86:3a:2b:f3:64:67:
07:7d:87:be:7e:d4:1c:a1:64:34:8a:2f:e3:40:85:
f4:ea:1f:d0:6d:af:ef:b9:1c:66:a8:df:4c:da:d0:
10:d2:60:74:7d:ff:19:a3:bd:4b:9d:a1:6e:cf:b8:
fb:dc:de:9c:27:59:a3:ae:a8:01:ca:3f:89:e1:6e:
a1:b6:0c:15:bb:00:06:35:d1:d3:20:30:37:ad:82:
b0:1a:26:4a:68:46:ff:c2:a1:d7:c2:68:bb:ec:d1:
15:40:e4:d8:33:69:77:a9:dc:bb:ec:de:0d:a5:cf:
84:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:73:34:8E:CC:80:C3:23:D4:E9:2F:72:AF:35:52:84:98:82:EA:FA
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8536B2B60FA711F0B93C5057762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.213.193.0-154.213.199.255
154.213.202.0-154.213.204.255
Signature Algorithm: sha256WithRSAEncryption
90:ab:b6:c5:fc:37:a1:8e:fd:0f:da:af:fc:dc:f0:72:61:ca:
d6:c7:eb:43:c7:d5:f1:c1:bd:71:c9:43:ab:f7:b3:a3:72:37:
57:3a:11:6d:3f:f4:88:13:55:83:b8:70:99:a0:7d:c4:ce:42:
26:31:1d:77:42:24:b3:0d:93:11:70:29:00:8a:01:39:10:8b:
c0:c3:2f:f0:cb:d8:0b:bd:bc:5e:81:b4:8a:54:ca:6a:86:3f:
4e:2e:40:c7:24:6b:6a:68:cc:7f:0e:65:67:5a:0f:ee:a2:66:
55:9a:81:e8:3f:56:f3:32:80:ab:1c:83:79:92:90:5e:99:13:
77:b6:9c:05:8e:77:cf:aa:23:2a:22:a8:1d:3d:da:76:45:83:
f7:aa:cd:69:d5:40:7b:48:e4:78:64:ee:63:79:40:15:0b:fd:
80:ad:9c:20:dd:4e:34:58:ec:06:64:4f:94:80:e8:69:6c:4c:
5e:d0:88:89:17:ff:76:60:50:ea:57:12:90:dd:60:68:fe:ae:
70:c6:97:de:67:be:02:44:36:82:24:3c:6a:7a:12:5b:03:75:
27:62:37:d8:38:3e:7b:35:f5:9f:bf:a9:48:6d:4b:14:3c:69:
49:4b:20:03:f1:b1:2b:55:38:9b:1a:00:a9:d8:f3:4b:a8:50:
6d:bb:47:69
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Fri Apr 11 06:27:55 2025 by rpki-client