Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8A579C50F57711EF948837A8762E951A.roa
File: 8A579C50F57711EF948837A8762E951A.roa (raw, json)
Hash identifier: 3/o4esGahc05I8M7VOilg1782+4Nrkvn8J/NSwn903A=
Subject key identifier: A9:C4:79:07:CF:F9:84:A5:25:B4:26:FB:B9:F0:8B:7E:CC:59:F2:3B
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0169B5
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8A579C50F57711EF948837A8762E951A.roa
Signing time: Fri 28 Feb 2025 01:58:44 +0000
ROA not before: Fri 28 Feb 2025 01:58:40 +0000
ROA not after: Thu 19 Feb 2026 01:58:40 +0000
asID: 984
IP address blocks: 154.88.84.0/24 maxlen: 24
154.88.85.0/24 maxlen: 24
154.88.86.0/24 maxlen: 24
154.88.87.0/24 maxlen: 24
154.88.88.0/24 maxlen: 24
154.90.129.0/24 maxlen: 24
154.90.130.0/24 maxlen: 24
154.90.131.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 07 Apr 2025 00:06:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 92597 (0x169b5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Feb 28 01:58:40 2025 GMT
Not After : Feb 19 01:58:40 2026 GMT
Subject: CN=67c11854-8fc5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:81:dd:87:c7:49:f0:1c:f7:9c:04:05:84:ff:
95:9e:84:34:85:93:9e:65:5b:bb:3c:58:30:3f:59:
01:4e:22:d0:99:4b:16:9e:d2:03:10:a8:e0:cf:d4:
03:65:60:a2:1c:b7:f8:26:9b:93:7c:4c:80:bc:df:
40:5c:ca:0f:3f:c5:9c:16:5f:2d:55:84:1f:46:9b:
ae:7c:e9:87:07:a0:84:59:68:91:b7:5e:c5:d1:e0:
08:18:01:ca:a4:43:b9:6a:d1:ae:fb:c4:17:6f:ac:
1f:de:74:c4:5e:fb:c7:8c:30:f9:0e:ec:04:63:d6:
dd:29:8c:cd:0f:fb:ca:83:2a:1f:00:31:d5:de:ee:
13:14:95:15:03:61:d5:e5:80:d4:d6:2c:05:52:50:
2c:eb:25:fc:90:35:7e:b7:11:1c:b3:d5:11:c4:b5:
a0:50:58:bf:7b:5e:02:fa:2c:f7:af:e2:0f:28:c3:
f2:28:9a:ed:10:20:4a:23:8d:ba:a6:00:0f:5d:09:
2a:db:93:62:d7:ce:3b:36:d0:88:a7:85:b6:af:96:
38:69:84:ff:2a:2d:f7:72:64:98:80:b6:7d:ae:61:
df:7d:a4:f9:3c:32:3f:23:17:53:36:dc:e3:08:78:
a3:1c:14:ad:f7:7c:14:78:1f:a2:0d:51:31:b4:a4:
e6:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:C4:79:07:CF:F9:84:A5:25:B4:26:FB:B9:F0:8B:7E:CC:59:F2:3B
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8A579C50F57711EF948837A8762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.88.84.0-154.88.88.255
154.90.129.0-154.90.131.255
Signature Algorithm: sha256WithRSAEncryption
c0:4a:c0:8b:04:b3:32:fc:f4:dc:1f:02:4a:64:1d:55:11:b6:
99:51:f0:6b:80:37:ec:d6:ab:cb:06:2d:22:6d:61:24:dc:de:
07:76:96:3e:3c:41:2f:18:21:a8:b6:55:92:cc:86:07:32:63:
80:bb:45:b9:84:89:a2:5d:8a:6e:60:cd:0f:ae:2b:1e:2c:db:
8b:7e:cd:e8:0a:aa:a6:53:30:ab:f4:87:f0:67:74:a8:38:24:
0e:0f:7d:de:14:03:a0:56:b7:00:12:eb:df:b7:5f:54:0b:16:
b1:c7:e2:7b:77:f7:84:af:6f:5e:67:80:1f:0d:45:40:96:a8:
d3:c7:41:1d:08:b7:12:59:17:db:77:da:12:77:72:c4:b4:51:
31:f7:dc:ab:5b:18:ca:2a:32:4c:fe:42:c2:fd:f4:3b:a8:a2:
5c:a7:fc:bc:f3:ac:65:c0:df:ba:32:5c:62:83:be:fd:4f:f3:
55:52:6f:59:a3:59:a4:93:1b:95:20:79:6e:1e:38:84:ef:21:
0f:ee:e5:7a:11:57:d5:4a:22:a1:bc:9e:35:5f:b5:92:16:d8:
db:ec:b1:b7:21:54:b3:15:01:04:ad:0f:5e:ba:05:24:a5:21:
f0:69:d6:1e:f6:20:82:63:e4:b9:55:72:d0:9b:73:06:b9:47:
d1:c3:23:ce
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Sat Apr 5 07:02:27 2025 by rpki-client